Using Bitium’s Key Vault

What is a Vault Item?

Vault Items are used to store secure information that is not web-based login credentials. Examples of information you can store as a vault item include:

  • Credit card information
  • Wifi network/password
  • API keys
  • Contact information

Vault Items are 100% customizable, so you can use them to store virtually any type of secure key-value pair.

Creating a Vault Item

  1. From the “Manage Apps” area in Admin, click the blue “Add a Vault Item” to the top right.

    Add a Vault Item

    Add a Vault Item

  2. Choose which template you would like to use.

    We highly recommend starting from one of these templates, but you always have full control over the number of properties and what they’re called.

    Add a Vault Item

    Select a Template

  3. Select whether this will be an “Individual” or “Shared” Vault item

    • Use a shared vault item if everyone will have the same set of credentials.

      WiFi passwords and office access codes fall into this category.

    • Use an individual vault item if everyone has their own credentials.

      VPN credentials or a mobile app login, in which every user has their own account, would fall into this category.

  4. Configure your property names and values

    • A property name should describe the kind of information being stored. For example, “username”, “email”, “password”, “code”, or “token” are common property names. Property names are not secret.
    • Values hold the credentials themselves – the actual username, the actual password, the actual code. You can either add values upfront for a shared vault item (everyone has the exact same credential set), or you can create an individual vault item where every user will have their own credential set.
      • Hidden values are treated like passwords: they are masked by **** and you must click “Show” to see it.
      • Shown values are displayed on the screen in plaintext by default.

For example, a shared “Wifi” vault item might be set up like this:

Example Shared Vault Item

Example Shared Vault Item

Assigning Users

Assignment for Vault Items works just like it does for applications. You can either assign a vault item to an individual user or to a group.

When you assign users to an individual vault item, you can optionally fill out the credentials for each user. Each property that you created before will take a value:

Example Individual Vault Item

Admins Configuring Values for Individual Vault Item

Users can also enter credentials from the dashboard. They will only be able to edit values, but they can also add new key-value pairs:

Example Individual Vault Item

User Configuring Values for Individual Vault Item 1

Example Individual Vault Item

User Configuring Values for Individual Vault Item 2

Managing Vault Items

Vault items can have subscribers managed just like for any other app. Use the “Vault” filter on the Manage Apps section to only see vault items.

From the settings tab of a specific vault item, you can edit the properties. All subscribers to an installation will see the properties listed on this tab. (Users can add their own personal properties from their dashboards)

Enabling Vault for your users

By default, only admins can create new vault items. To allow your users to create their own vault items, enable the vault items setting from the “Organization Settings” page:

Enabling Vault Items for End Users

Enabling Vault Items for End Users

Every time a user creates a vault item, they will be creating a new installation. As an admin, you can assign other users to that installation. These new subscribers will have to add in their own credentials and will not have access to the original credentials that the installation creator entered.