What are the Best Practices for Security Groups and Folder Structure?

Security groups and folder structures should reflect you company's policy's and practices, as well as adhering to security requirements of your business, and potentially those of the client (which you may require to discuss with your client).

  • Create Security Groups that will be consistent with your company's policy's and titles

    • For example, if you have technician levels such as Senior, Intermediate and Associate, or perhaps 1st Line, 2nd Line etc.
    • Create Security Groups that reflect these levels, that grant access to Passportal feature and functions appropriate to those levels of responsibility / capability.
  • Create a Folder Structure that is easy to use and clearly defines what would be contained within

    • Depending on how you delineate between different use cases, you could create a Folder Structure to separate Application Credential types from Website credential types, etc.
    • As an example, the Folder Structure could be created to differentiate between client departments, such as Finance, Retail, HR, Managers, etc.
    • These could be further structured such that, if the client has multiple geographical locations, each location has its own subset of folders.
  • Apply Security Groups to relevant folders and assign clients to give appropriate access

    • Ensure appropriate user(s) have been assigned to the Security Group as well as the appropriate Client(s) and assign the Security Group(s) to the appropriate folder(s)