Use Case
    • PDF

    Use Case

    • PDF

    Article summary

    Delegated Admin

    A tenant admin has all the access rights to all the consumers. A delegated administrator has restricted access specific to a consumer. In this case, the consumer is Secrets Manager. You can apply policies on the resources in this consumer. This admin can delegate another user to be a Secrets Manager admin and a Secrets Manager admin can then delegate other users to be node wise administrator.

    Steps to assign a delegated admin:

    1. Adding a User
    2. Delegating a Secrets Manager Administrator
    3. Delegating another user to manage a particular node in the vault

    Adding a User

    1. Login to Britive as a tenant admin.
    2. Click on Admin -> Identity Management.
    3. Click on ADD USER button.
    4. Enter the user details on Add User page for the delegated Secrets Manager admin.
    5. Click ADD USER.

    Delegating a Secrets Manager Administrator

    1. Login to Britive as a tenant admin.
    2. Click on Admin->Role & Policy Management.
    3. Click on Policies tab.
    4. Click Add Policy to create a new policy.
    5. Enter Policy Name.
    6. Click Members-> Users,
    7. Select a delegated admin user in the Select Users.
    1. Click Roles and select Add Role and select the predefined role SMAdminRole,
    2. Click Add.
    3. Click Save and Enable to enable this policy.
    4. Log in as a delegated admin user. In the navigation menu, you can see Admin along with MyAccess and My Secrets.
    5. Click Admin to see the Secrets Manager tile available to this delegated admin user to manage all the secrets.

    Delegating another user to manage a particular node in the vault

    1. Login to Britive as a delegated secrets manager admin.
    2. Click on Admin->Secrets Manager.
    3. Click on Britive Vault tab.
    4. Create Add Folder in the vault.
    5. Click Add Policy to create a new policy under this node.
    6. Enter Policy Name.
    7. Click Members-> Users,
    8. Select a delegated node admin user in the Select Users.
    9. Click Permissions. You can see permissions specific to Secrets Manager. Choose one of the following:
      • View: View the secrets.
      • Creat, Edit: Create and edit secrets.
      • Manage: Manage all the resources under this node.
    10. Click Save and Enable to enable this policy.
    11. Log in as a delegated node admin user. In the navigation menu, you can see Admin along with MyAccess and My Secrets.
    12. Click Admin to see the Secrets Manager tile.
    13. Click on the vault and see this particular node is available to this delegated node admin.

    Was this article helpful?

    What's Next