Fine-Grained Controls
Zoho Vault offers a range of features designed to streamline and enhance password management for enterprises. However, not all users or groups may need access to every feature. To facilitate more precise control over user privileges, Zoho Vault allows admins and super-admins to limit access for specific users and user groups through Fine-grained controls. For instance, it is possible to restrict certain user or user groups, such as the marketing department, from storing personal passwords, accessing Zoho Vault's mobile applications, and more. The following outlines all the operations that can be executed for effective user privilege management.
Managing restrictions
Select Fine-grained controls from the Admin configurations section of the Settings tab. The majority of the restrictions, when activated, are applicable for everyone in the organization, including the admin and super admin, unless mentioned otherwise.
- Restrict users storing personal passwords: Prevent everyone in the organization from storing personal passwords. This only allows users to store the enterprise passwords, which can be viewed when necessary using emergency access.
- Restrict users from exporting passwords: Prevent everyone from exporting any passwords they have access to, to prevent your business passwords from going outside of Zoho Vault.
- Restrict offline access: Zoho Vault allows users to download their passwords as an encrypted HTML file in order to access them offline. Enable this option to prevent everyone from exporting passwords for offline access.
- Restrict access to passwords through mobile apps: Selectively restrict people from accessing company passwords outside the office network. Enable this option to prevent everyone in the organization from accessing passwords through mobile apps.
- Restrict users from sharing passwords with outsiders: Zoho Vault allows users to share passwords temporarily with trusted third parties. Enable this option to prevent anyone in your organization from sharing passwords with outsiders.
- Allow users to paste their master password: Zoho Vault does not recommend storing or writing down the Zoho Vault master password anywhere. However, for convenience, super admins can allow their users to copy and paste their master password while logging in to Zoho Vault. Enabling this option will allow all users in the organization to copy and paste the master password.
- Hide user-defined password categories from global view: Users can create custom password categories to organize their sensitive data. Some of these categories may be irrelevant to other users. Enable this option to ensure these categories are visible only to the respective users who had created them.
- Restrict users from adding new passwords: Prevent anyone in your organization from storing any new passwords. Enable this option to allow users to view, share, and modify only the existing passwords.
- Restrict users from sharing passwords: Prevent anyone in your organization from sharing passwords. Enable this option to allow users to create, view, and modify only their own passwords.
- Store multiple URLs for a password: Enable this option to allow your users to add multiple URLs corresponding to their passwords.
Restrictions handled only by super admins
A few of the restrictions are exclusively controlled only by the admins.
- Restrict users from receiving backup data when they forget their master password and reset it: Whenever users set their master password, an encrypted copy of their Zoho Vault data will be sent to their registered email address. This data can only be unlocked in the future with their old master password whenever they recollect it. You can prevent your users and admins from receiving a copy of this data by enabling this option.
- Allow users to export the passwords shared with them: Zoho Vault does not recommend allowing users to exports passwords that have been shared with them. However, if the business need arises, enable this option to allow everyone from your organization to export the passwords shared with them.
- Enable IP Restriction: Restrict access to your Zoho Vault account from malicious or untrusted IPs. Enforce IP restrictions to only allow users to access the application from selective IPs or IP ranges. By default, IP restrictions will be imposed on all users and admins, except the super-admin of the organization.
- Disable IP Restriction for Mobile Apps: Enabling this option will allow users to access Zoho Vault's mobile applications without letting the IP restriction affect them. This is helpful when your users travel for business purposes.
Exempting specific users from restrictions
Zoho Vault allows admins and super-admins to exempt specific users from the access restrictions mentioned above:
- Access Fine-grained controls under the Admin configurations section of the Settings tab, then click Manage exemptions corresponding to the restrictions.
- Select the users to be exempted from the restriction, then click Save.
Note: You can modify this list for any restriction at any time from Manage exemptions. All changes made are promptly recorded in real time under the Others in the Audit section. Access your files securely from anywhere
Zoho CRM Training Programs
Learn how to use the best tools for sales force automation and better customer engagement from Zoho's implementation specialists.
Zoho DataPrep Personalized Demo
If you'd like a personalized walk-through of our data preparation tool, please request a demo and we'll be happy to show you how to get the best out of Zoho DataPrep.
- Zoho Workerly Home
- Forums
- Connect With Us:
- Zoho Recruit Home
- Forums
- Connect With Us:
New to Zoho CRM Plus?
Deliver unforgettable customer experiences
New to Zoho CRM Plus?
Deliver unforgettable customer experiences
New to Zoho Marketing Plus?
Everything you need to run your marketing
New to Zoho Marketing Plus?
Everything you need to run your marketing
You are currently viewing the help pages of Qntrl’s earlier version. Click here to view our latest version—Qntrl 3.0's help articles.
New to Zoho Survey?
Zoho Sheet Resources
Zoho Forms Resources
New to Zoho Sign?
Zoho Sign Resources
Sign, Paperless!
New to Zoho TeamInbox?
Zoho TeamInbox Resources
New to Zoho ZeptoMail?
Zoho DataPrep Resources
Design. Discuss. Deliver.
New to Zoho Workerly?
New to Zoho Recruit?
New to Zoho CRM?
New to Zoho Projects?
New to Zoho Sprints?
New to Zoho Assist?
New to Bigin?
Related Articles
User Management
There are three main areas when it comes to user management: Adding users Creating user groups Assigning roles Adding Users Zoho Vault provides different options for you to add users into your account. You can manually add users by sending them an ...Real-time Security Audits
Users access multiple enterprise passwords and other sensitive data on a daily basis from their Zoho Vault account. This makes it vital to track every sensitive action made by them to track potential threats. With these audits, admins and ...User and User Group Sync
Organizations that already have existing accounts with identity providers like Microsoft Entra ID and Okta can easily import their users and user groups to Zoho Vault. Additionally, teams can now automatically sync users and user groups from their ...Alerts for Critical Actions
Get alerted instantly when critical events occur in your Zoho Vault account. Select the events important to you and configure alerts to receive instant or periodic notifications via email. These alerts can only be configured by a super-admin of the ...Can a single user be mapped with multiple user groups?
Yes, a single user can be a part of any number of user groups. Still can’t find what you’re looking for? Contact us. We will be happy to help.
New to Zoho LandingPage?
Zoho LandingPage Resources