Quickstart

Content

Product presentation

Administration

End users

Product presentation

Entreprise Vault is a product which allows mainly to store users’ logins and passwords.

It provides security and a good user experience when it comes to storing and sharing credentials.

It is a cloud-based business tool, which means that the data is stored encrypted on a database accessible from anywhere and under the control of administrators.

User and permission management is based on WALLIX Trustelem.

So, to use the vault, there are 2 steps:

• Authenticate with Trustelem to access the application.
• Provide a master password to encrypt/decrypt the credentials

This master password is known only by users, but to handle its lost or the departure of employees, there is recovery mechanism.

There are 2 populations which interact with the product.

The administrators

• Setup the users, and the access using Trustelem
• Setup the vault with the organization parameters
• Manage users, and the recovery of their data
• Audit the vault

The users 

• Store items, mainly credentials
• Share items, mainly credentials
• Send encrypted information
• Get security status about the used password

Administration

The administrators have actions to do to setup the Vault.

Then, the work is punctual: it is about deleting the users who need to be, unlocking those who need help and finally check the status of the product.

Trustelem setup

The first step when you acquire Enterprise Vault is to set up Trustelem. The goal is to define which users will have access to the application and how.

There are therefore 4 main steps in the setup.

• Add users
  • Active Directory users (link)
  • Azure Active Directory users (link)
  • Google users (link)
  • Local Trustelem users (link)
    
    
• Add the Enterprise Vault app (link to a documentation not done yet, or write the details here)
• Define access rules (link)
• Optionally, define the 2nd usable factors as well as the enrollment methods (link)

Note: Trustelem administration page should always be secured using multi-factor authentication. To do so you need to enroll a 2^nd factor for the admin accounts, then enable multi-factor using the option "Authentication level for Trustelem admin console" on Security settings > General.

Vault setup

è Documentation not done yet, a summary can be produced here before it’s done

è It should contain the organization parameters which will impact the end users

Manage users, and the recovery of their data

è Documentation not done yet, a summary can be produced here before it’s done

è It should explain how to manage users (deletion, modification, help…)

è Then integrate the link to the recovery documentation, which already exists

è Don’t forget to speak about the consequences on the Vault, for the deletion/expiration/lost rights of the Trustelem user

Audit the vault

è Documentation not done yet, a summary can be produced here before it’s done

è It should explain what are the useful information on the admin dashboard

End users

The users journey begins when they have access to the External Vault application and define a master password to protect their data. They can then begin to store and share items like identifiers, or notes.

To use the product, they will have the choice of using the vault web page, browser extensions or mobile applications.

But it should be noted that certain operations are necessarily carried out via the web page.

Login to Vault

è Explain what it is about (login/pwd + master password. Speak also about the 1^st login with the definition of the master password) and provide the link to the documentation

Vault Home Screen

è Explain what is in this page (Vaults, Send, Tools, Reports, Shared vaults) and provide the link to the documentation

Create Item

è Explain what is an Item: Identifier, CB, Identity or Note, with the different important fields in these items and provide the link to the documentation

Create Folder

è Explain what it is (focus on what is the interest of folders) and provide the link to the documentation

Search an Item

è Explain what is searchable / how to do it and provide the link to the documentation

Use a Shared Vault

è Explain what it is (Items shared with other people inside the Vault) and provide the link to the documentation

è Explain how the creation/sharing/rights work

è Explain also what a collection is (folders at an organization level in a shared vault) and provide the link to the documentation

Other features

è Explain the basics of send/pwd generation/report and provide the link to the documentation

Reset Master Password

è Explain how to do it and provide the link to the documentation

Change the settings

è Explain what are the important settings and provide the link to the documentation

Install Browser Extension

è Explain what are the possibilities and provide the link to the documentation

Install Mobile Application

è Explain what are the possibilities and provide the link to the documentation