Adding folders for secrets

In addition to creating and storing secrets, you can create folders to categorize and manage text and file secrets. Folders can be one folder at the top level or multiple folders nested in a hierarchy. Similar to Sets, folders allow you to create secrets within folders as a way to logically group various secrets. Secrets that are not contained within a folder are shown on the top level of the Admin Portal Secrets page (see Managing secrets). If you do not have the proper permissions on a folder that contains a shared secret, the secret is also displayed on the top level of the Admin Portal Secrets page.

Any user with Privileged Access Service rights/roles can create a folder or a secret. If you are the owner of a folder because you created it, you have all permissions (Add, Grant, View, Edit, and Delete) enabled for that folder. In order to create a secret in a particular folder you need to have the Add permission for that folder. Users with the System Administrator role have Grant, View, Edit, Delete permissions by default for all secrets within folders.

Also keep in mind the following:

  • A secret can belong to only one folder.
  • You cannot create two folders with the same name and path.

  • You cannot add folders to Secret Sets.

  • Folder names are not case sensitive (in other words you cannot create two folders with the name Production and production).

You can also add folders when you add a secret, see Adding a secret for details.

To add a new folder:

  1. In the Admin Portal, click Resource, then click Secrets.
  2. Click Add Folder.
  3. Type the name of the folder and, optionally, a description to provide additional information about the folder.

    You can also type in a hierarchical path to create multiple nested folders all at once. For instance, in the name field you can enter, Production/DevSys/Temp to create two nested folders under Production. Each folder can contain any number of secrets of type text or file.

    Note:   If the folder name you type into the Name field already exists (even if the folder is not viewable), an error is displayed and the folder is not created.

  4. Click Save.

    For additional information on folders, see: