Permissions for Secrets

Permissions allow you to define which functions a user will be able to perform with a secret. There are three types of permissions:

• Owner: Allows the user to grant any permissions, view secret data (including the credentials of shared privileged accounts), delete the secret, edit the secret, use the secret, and configure remote password rotation.

• Editor: Allows the user to grant the Editor permission and the PAM User permission, view the secret data, edit the secret, and use the secret.

• PAM User: Allows the user to use the secret.

NOTE: If you define a permission for a user group, all users belonging to this group will inherit this permission.