Groups relate together individual users and provide a scalable way to assign permissions, including access to collections and other access controls. When onboarding new users, add them to a group to have them automatically inherit that group's configured permissions.
Groups are available to Teams and Enterprise organizations.
Teams and Enterprise organizations can designate access to collections based on user groups, rather than individual users. Group-collection associations provide a deep level of access control and scalability to sharing resources. One common group-collection methodology is to create Groups by Department and Collections by Function, for example:
Other common methodologies include Collections by Vendor or System (for example, users in an Engineering group are assigned to a AWS Credentials collection) and Groups by Locality (for example, users are assigned to a US Employees group or UK Employees group).
Log in to your web vault and open your organization.
Open the Manage tab and select Groups from the left-hand menu.
On the Groups screen, select the New Group button:
Give your group a Name and assign the desired access control.
Access controls can designate that users can access all items (for example, all collections) or only specific collections, as well as whether passwords are hidden or logins are read-only.
Select Save to finish creating your group.
Once your groups are created and configured, add users to them:
In your organization vault open the Manage tab and select Members from the left-hand menu.
Hover over the user you want to add and use the gear dropdown to select Groups:
Select the group(s) to add this user to and Save your selection.
You can check which users belong to a group from the Manage → Groups screen by using the gear dropdown to select Users.
In your organization vault, open the Manage tab and select Groups from the left-hand menu.
Select the group you want to edit.
Configure the access control settings as you did when the group was initially created.