Grant Trustelem Data Recovery Permissions
As an Vault Administrator, follow this procedure to Grant Data Recovery Permissions in the Trustelem application to an User.
Users with this permission can create data recovery requests.
Grant Recovery Permissions
Connect to Trustelem.
Select the User to give Password Recovery permissions to and click the Modify button. The User Update screen is displayed.
In the Attributes section, click the Add an Attribute button. A blank line is added to the Trustelem Attributes table.
Complete the fields as follows:
- NAME : recovery_data
- TYPE : bool
- VALEUR : true
Click the Save button to save the new attribute to the User.
The Trustelem attribute recovery_data displays in the Attribute List.
This User can now create data recovery requests.
To manage approbator groups for data recovery, the user must have an attribute recovery_data_workflow. After that he can manage approbators groups.
Share cipher key
In order to enable completely the data recovery permissions, you have to share the cipher key.
Important: This step must be done after granting the recovery_data attribute.
Go to the recovery home page (Tools > Recovery in default navigation bar) and click on the "Share cipher keys" link as below:
The cipher key management page is displayed. You can now share the cipher key with any user who has the recovery_data attribute:
Congratulations! The user can now create a data recovery request for any vault user.