Permissions can be set at two levels: system-wide and granular (certificate collection
The certificate search function allows you to query the Keyfactor Command database for certificates from any available source based on any criteria of the certificates and save the results as a collection that will be availble in other places in the Management Portal (e.g. expiration alerts and certain reports)., certificate store container, PAM provider). System-wide permissions provide broad access, while granular permissions allow targeted control.
Certificate Collection Permissions
-
System-Wide: Managed via the Certificates > Collections role permissions, controlling all certificates and collections. The Modify permission allows users to edit collection configurations.
-
Collection-Level: Allows control over certificates within specific collections. Without collection-level permissions, system-wide permissions apply.
Container Permissions (for Certificate Stores)
-
System-Wide: Governed by the Certificate Stores role permissions, controlling access to all certificate stores.
-
Container-Level: Allows permissions on specific certificate store containers. Without container-level permissions, system-wide permissions apply.
PAM Permissions (Privileged Access Management)
-
System-Wide: Managed through the Pam role permissions, granting access to all PAM providers.
-
Provider-Level: Specific permissions for each PAM provider, applying when configured. Without provider-level permissions, system-wide settings are used.
Permissions can be configured at both system-wide and granular levels (certificate collection, certificate store container, PAM provider). System-wide permissions apply globally, while specific permissions enable finer control over resources.
Was this page helpful? Provide Feedback