Personal vault
As a reminder, you have access to two types of vault:
- Your personal vault, to which only you have access.
- Shared vaults, enabling secrets to be shared between different people and teams.
On this page, we'll deal with generic information about using Enterprise Vault, like the authentication, then focus on your personal vault.
For simplicity's sake, the screenshots are taken from the web client, but most of the actions described can be performed on mobile or plugin clients.
For more information on shared vaults and plug-ins, please consult the following documentations:
Account management
Authentication, lock & log out
To access to your vault, you must perform 2 actions:
- Authenticate with WALLIX ONE IDaaS using your login, password and optionally 2nd factor.
- Provide your master password needed to decrypt your data.
When accessing the service for the first time, or during a reset procedure, you must first define a master password.
If a you have forgotten your master password, you can click "Get master password hint" to obtain the hint defined at the same time as your master password.
The reset case will be dealt with later.
Lock => provide the master password
If once authenticated you refresh the page or clicks "Lock now", you will have to provide your master password again.
Log out => perform a complete authentication (login, password and master password)
If you click "Log out", you will have to perform a full authentication: login, password and master password.
Locking or logging out can also occur after a period of inactivity.
Manage your authentication secrets
There are 3 secrets linked to the authentication which can be managed: the password and 2nd factor for WALLIX ONE IDaaS, and the master password for Enterprise Vault.
Each one can be changed if you know the current secret, or reset if you don't.
Reset WALLIX ONE IDaaS password
If you don't have access to your previous password:
- Access your WALLIX ONE IDaaS dashboard (like your_company@trustelem.com)
- Click Forgot your password?
- Enter the captcha then click Ask your administrator for a reset code
- Your admin will provide a code or a link to reset your password, or a temporary password
Change WALLIX ONE IDaaS password
If you still have access to your previous password:
- Access your WALLIX ONE IDaaS dashboard (like your_company@trustelem.com) and log in
- Click your profile then Security parameters
- Click the icon at the end of the line Password
- Change your password
If you authenticate through your company Identity Provider (Microsoft, Okta...) then you can't change your password with WALLIX ONE IDaaS.
Reset WALLIX ONE IDaaS 2nd factor
If you don't have access and will not recover your previous 2nd factor (for example, if your phone is broken), contact directly your admins: they will generate a new enrollment link, for a new 2nd factor.
Ask for a temporary WALLIX ONE IDaaS 2nd factor
If you're temporarily unable to access your 2nd factor (for example, if you've forgotten your phone), you can request an rescue code.
- Access your WALLIX ONE IDaaS dashboard (like your_company@trustelem.com) and provide your login and password.
- On the 2nd factor page, click Use an alternative method then Ask for a rescue code
- Your admin will provide a code to perform the authentication
Change WALLIX ONE IDaaS 2nd factor
If you still have access to your previous 2nd factor:
- Access your WALLIX ONE IDaaS dashboard (like your_company@trustelem.com) and log in
- Click your profile then Security parameters
- If you didn't use multi-factor authentication to get here, you'll need to click the green button to verify your 2nd factor
- Click the + button for a 2nd factor, then perform the enrollment
- Optionally, you can delete the previous 2nd factor
This feature can be disabled by your company.
If you don't have a + button, then you have to contact your administrators and they will generate a new enrollment link.
Reset Enterprise Vault master password
If you don't have access to your previous master password:
- Go to your Enterprise Vault login page and click Start a password reset procedure
- Define a 6 digits code, and don't loose it!
- Wait for the admins to validate your request: after that you will be notified by email
- Click the link on the email, then provide your code and define your new master password
This feature can be disabled by your company.
If you don't have the button Start a password reset procedure then there is no way to recover your account.
You must contact your administrators, who will create a new account, but all your personal secrets will be lost.
Before doing so, check if you can't find your master password, especially with the hint you can get by using Get master password hint on the login page.
Change Enterprise Vault master password
If you still have access to your previous master password:
- Go to your Enterprise Vault app then Settings and Security
- Provide your current master password, then the new master password
You should check Also rotate my account's encryption key, doing that the keys used to crypt your items will be changed too during the process.
Preferences
Go to your Enterprise Vault app then Settings and Preferences
- Timeout: set the length of time you can remain inactive before locking or logging out
- Vault timeout action: choose whether you want to be locked out (provide only the master password for next access) or logged out (performe full authentication for next access) when your session timeouts.
- Language: change the language used by Enterprise Vault (English or French)
- Show website icons: associate a recognizable image next to each login, if Enterprise Vault recognize the website.
- Theme: choose a light or dark theme, or leave the choice to your system's theme
Purge the account
Go to your Enterprise Vault app then Settings and My account
From here you can:
- Purge vault: delete all items and folders in your personal vault, it doesn't affect shared vaults items or rights
- Delete account: delete all items and folders in your personal vault, remove any rights you may have to shared vaults and erases all your settings
These actions are definitive; no restoration is possible.
Items management
Manage items
On your personal vault, you can create New Items.
An Item is a secret, you want to protect and keep for yourself in your vault.
Create login items
Login items are identifier to authenticate on websites or other services
- Name: used to remember what is the item, and to find it easily
- Folder: used to sort items
- Username: identifier used on websites or other services
- Password: password used on websites or other services
- Authenticator key (TOTP): second factor used for multi-factor authentication on websites or other services
- URL & Match detection: used for auto-fill with the browser plugins
- Note: used to add custom content associated to the item
- CUSTOM FIELDS: fff
- Who owns this item: used to create the item in a shared vault
- OPTIONS
- Master password re-prompt: used to secure the item, by requesting the master password before use
- Access logging: if not defined by your administrator, let you decide if you want to generate logs when you access the item
Manage login items
After the creation, you can edit the item, but also perform new actions clicking the 3 dots at the end of each lines.
- Copy username / password / verification code (TOTP)
- Add / Download / Delete an attachement to the item
- Clone the item
- Assign to collections = move the item to a shared vault
- Delete the item
If you change the item password, you'll find the previous password under the CUSTOM FIELDS, clicking Password history.
Create card items
Card items are credit card you want to store on your vault
- Name: used to remember what is the item, and to find it easily
- Folder: used to sort items
- Credit card information: cardholder name, brand, number, expiration date, security code
- Note: used to add custom content associated to the item
- CUSTOM FIELDS: fff
- Who owns this item: used to create the item in a shared vault
- Master password re-prompt: used to secure the item, by requesting the master password before use
Create identity items
Identity items are all the useful information about the people you want to keep. The identity may be for yourself or someone else.
- Name: used to remember what is the item, and to find it easily
- Folder: used to sort items
- Contact information: Title, Name, Company, Passport/License number, Email, Phone, Address
- Note: used to add custom content associated to the item
- CUSTOM FIELDS: fff
- Who owns this item: used to create the item in a shared vault
- Master password re-prompt: used to secure the item, by requesting the master password before use
Create secure note items
Secure note items are simple notes that you want to store in your vault.
They can be useful if you wish to store an item whose type is not the default one, for example for an attachment such as a certificate.
- Name: used to remember what is the item, and to find it easily
- Folder: used to sort items
- Note: used to add custom content associated to the item
- CUSTOM FIELDS: fff
- Who owns this item: used to create the item in a shared vault
- Master password re-prompt: used to secure the item, by requesting the master password before use
Manage the items
After the creation, you can edit the item, but also perform new actions clicking the 3 dots at the end of each lines.
- Add / Download / Delete an attachement to the item
- Clone the item
- Assign to collections = move the item to a shared vault
- Delete the item
For login items, you can also copy the username, password and verification code (TOTP).
Also for login items, if you change the item password, you'll find the previous password under the CUSTOM FIELDS, clicking Password history.
Folders
folder parent / folder children
move to folder