Skip to main content

Grant Trustelem Data Recovery Permissions

As an Vault Administrator, follow this procedure to Grant Data Recovery Permissions in the Trustelem application to an User.

Users with this permission can create data recovery requests.

Grant Recovery Permissions

Connect to Trustelem.

Select the User Menu on the top right-hand side of the screen. The User List is displayed.

Select the User to give Password Recovery permissions to and click the Modify button. The User Update screen is displayed.

image.png

In the Attributes section, click the Add an Attribute button. A blank line is added to the Trustelem Attributes table.

Complete the fields as follows:

  • NAME : recovery_data
  • TYPE : bool
  • VALEUR : true

Click the Save button to save the new attribute to the User.

The Trustelem attribute recovery_data displays in the Attribute List.

This User can now create data recovery requests.

To manage approbator groups for data recovery, user must have an attribute recovery_data_workflow. After that he can manage approbators groups.

Share cipher key

In order to enable completely the data recovery permissions, you have to share the cipher key.

Important: This step must be done after granting the recovery_data attribute.

Go to the recovery home page (Tools > Recovery in default navigation bar) and click on the "Share cipher keys" link as below:

image.png

The cipher key management page is displayed. You can now share the cipher key with any user who has the recovery_data attribute:

image.png

Congratulations! The user can now create a data recovery request for any vault user.