Using Bitium’s Key Vault
What is a Vault Item?
Vault Items are used to store secure information that is not web-based login credentials. Examples of information you can store as a vault item include:
- Credit card information
- Wifi network/password
- API keys
- Contact information
Vault Items are 100% customizable, so you can use them to store virtually any type of secure key-value pair.
Creating a Vault Item
From the “Manage Apps” area in Admin, click the blue “Add a Vault Item” to the top right.
Choose which template you would like to use.
We highly recommend starting from one of these templates, but you always have full control over the number of properties and what they’re called.
Select whether this will be an “Individual” or “Shared” Vault item
Use a shared vault item if everyone will have the same set of credentials.
WiFi passwords and office access codes fall into this category.
Use an individual vault item if everyone has their own credentials.
VPN credentials or a mobile app login, in which every user has their own account, would fall into this category.
Configure your property names and values
- A property name should describe the kind of information being stored. For example, “username”, “email”, “password”, “code”, or “token” are common property names. Property names are not secret.
- Values hold the credentials themselves – the actual username, the actual password, the actual code. You can either add values upfront for a shared vault item (everyone has the exact same credential set), or you can create an individual vault item where every user will have their own credential set.
- Hidden values are treated like passwords: they are masked by **** and you must click “Show” to see it.
- Shown values are displayed on the screen in plaintext by default.
For example, a shared “Wifi” vault item might be set up like this:
Assignment for Vault Items works just like it does for applications. You can either assign a vault item to an individual user or to a group.
When you assign users to an individual vault item, you can optionally fill out the credentials for each user. Each property that you created before will take a value:
Users can also enter credentials from the dashboard. They will only be able to edit values, but they can also add new key-value pairs:
Managing Vault Items
Vault items can have subscribers managed just like for any other app. Use the “Vault” filter on the Manage Apps section to only see vault items.
From the settings tab of a specific vault item, you can edit the properties. All subscribers to an installation will see the properties listed on this tab. (Users can add their own personal properties from their dashboards)
Enabling Vault for your users
By default, only admins can create new vault items. To allow your users to create their own vault items, enable the vault items setting from the “Organization Settings” page:
Every time a user creates a vault item, they will be creating a new installation. As an admin, you can assign other users to that installation. These new subscribers will have to add in their own credentials and will not have access to the original credentials that the installation creator entered.