Secret Server ships with three roles: Administrator, User, and Read-only User. Each role contains various permissions to match the job function of the user. Every user and group is assigned to one or more roles within Secret Server.
Role Based Access Control ensures strict granular access to sensitive information. This feature makes it easy to assign responsibilities to third parties, such as consultants or auditors.
Multiple permissions can be assigned to a role. For example, you could assign Administer Users, Edit Secret, Share Secret, and View Active Directory permissions to a role. That role can then be assigned to a user or group.
Secret Server fits into your organization’s role management strategy by allowing custom roles to be created within the application that correspond to the organization’s structure