Inheriting Permissions based on Folders
It is possible for Secrets in Secret Server to inherit permissions from the folder where they are placed. For example, if you install a new managed switch in your network, instead of setting an Active Directory group or users for every network-based Secret, you set the Active Directory group or individual user accounts to the folder. That way, when an admin enters a new Secret into Secret Server they don’t have to worry about selecting all the people that need access. Instead, they can place it into the correct folder that already has the correct permission level. Not only does it save time, but it also ensures that everyone who needs access to a Secret has it.
Adding Permissions to a folder
First, move your mouse to the Administration tab, then select Folders.
Then select the folder you want to edit permissions on, select edit
From here you can add Active Directory groups and individual Secret Server users. They will have access to any Secret that inherits permissions with the level you select.
Having a Secret Inherit Permissions From a Folder
Click to expand the Secret, and then select view.
Now, select share.
From here, select edit.
Finally, check the “Inherit Permissions from folder” box.
That’s it! Now any user in the Active Directory group or one you manually added to the folder permissions will have access. You can also turn on this behavior by default with the “Default Secrets Inherit Permissions” setting on the configuration page. It is important to note that a user with folder-based permissions will have that level of access to any Secret in the folder .
Latest posts by JordanTrue (see all)
- Streamline Compliance with your Internal Security Policy by using Secret Server - March 4, 2014
- Is Your Hash Being Passed? - February 25, 2014
- Sneak Peek: New Secret Server features only at RSA Conference 2014 - February 20, 2014