Secret Server - Shared Folders

Summary

Folders in Secret Server allow you to organize your secrets into logical groups and control access through permissions assigned to the folders. This article gives an overview of how shared folders are created and used.

Body

Overview

Folders in Secret Server allow you to organize your secrets into logical groups and control access through permissions assigned to the folders. Secret folders allow you to create containers of secrets based on your needs. Folders can be nested within other folders to create sub-categories for each set of classifications.

Shared folders are broken down by university campus. These folders are:

  • Shared - UNK
  • Shared - UNL
  • Shared - UNO
  • Shared - UNoP


Users with the Team Administrator role have Owner level permissions on the department folder and any sub-folders created within it. Users with this role can also create new Grouper groups to split their members into smaller teams as they see fit.

 

Secret Templates Allowed in Shared Folders

All templates are available to be used in this area, excluding templates used for Privileged or High Risk folders. These secret templates require additional policy settings and folder configurations to be in place.

LastPass Import templates should not be used outside of a LastPass Import folder. However, the templates are available to allow secrets to be moved from an imported folder before converting the secret's template to a regular one.

 

Default Folder Permissions

Upon a folder's creation, it will inherit the same permissions as the parent folder it is contained within. Team Administrators have the ability to alter the permissions on a shared folder to facilitate proper access privileges for their team.

Folders created for a department will typically contain the following permissions by default:

Default folder permissions
User/Group Folder Permissions Secret Permissions
app:delinea:service:policy:role:pam_admin Owner Owner
app:delinea:service:policy:role:pam_admin_approver View Edit
app:delinea:service:policy:access: <team name> Edit Edit
app:delinea:security: <team admin> Owner Owner
Folder & Secret Owner Owner Owner
Auditor View List

Any issues regarding access to a shared folder or secret should be discussed with the relevant Team Administrator or secret owner. Changes to team composition within Grouper can also be performed by the Team Administrator, including the creation/deletion of additional sub-groups.

If any additional assistance is required with configuring shared folders, please submit a Privileged Access Management Support Request.

Details

Details

Article ID: 345
Created
Wed 7/17/24 1:21 PM
Modified
Wed 8/7/24 2:04 PM

Related Articles

Related Articles (2)

This article explains the basics of creating, editing, and sharing secrets within Secret Server.
The Secret Template Compendium gives a comprehensive view of all secret templates available for use within Delinea Secret Server.

Related Services / Offerings

Related Services / Offerings (2)

Privileged Access Management (PAM) is a security solution that helps organizations manage and monitor privileged user access to critical systems and sensitive data. It helps prevent unauthorized access and reduce the risk of insider threats.
Request additional support for items that pertain to Privileged Access Management (PAM).