Jump to content

API key for adding Folders and Password Lists and no Password access


Recommended Posts

Folders can only be created via the system wide API key, same goes for adding Password Lists from a Template to the folder.

 

We need a way via API to add folders, add password lists from template, add/modify/remove password list permissions and have the API user NOT be able to read/change any passwords in existing password lists.

 

We tried the Windows Integrated Auth API, unfortunately to be able to see if the folder already had a password list required us to give that API user View permissions on the Password List Template or Password List which also allows them to view any password records in that list.  As a large organization, we try our best to follow the least privilege model including API users.

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...