This short video demonstrates secure fields in Xton Identity Vault records and the process of unlocking these fields by the user with appropriate permissions. The video also shows the audit log about the unlock and lock events.
Secure fields in a record view are not visible by default. Moreover, the information stored in these fields does not even come from server to the client browser even in an encrypted form. If a user has permissions to see the information in a secret field (for example, a password in a Windows account record) the user needs to “unlock” the secret field. Unlock operation calls the server to transfer the information from the secret field to the client browser and it displays it to this user. In addition to that the unlock operation makes a record in an audit log (and sends a notification to subscribers) for administrators or auditors to see.
If a user does not have permissions to see secret fields in a record the unlock operation is not available. In this case the password (or a certificate) never gets transferred through the network to a client computer. Note that this user may still have permissions to connect to a remote computer described by this record even without the capability to see the secret password.
Watch the video below to see this process in action.
Xton Access Manager is an agentless, cross-platform privileged access management solution with unlimited licensing model built from the ground up with an enterprise feature set. Simple to implement, without your typical enterprise cost and effort.
Please fill out this form to receive a download link to get started today with free 60 days trial. Documentation is available to help. You can email or call us to request a trial extension, ask questions and share your feedback. We would love to talk to you.