RBAC for Credential Vault credentials management in Enterprise 11

Credentials created in the Control Room are used across Bot Creators and Bot Runners.

These credentials are securely stored in the centralized Credential Vault. To further facilitate access control, credentials are further divided in logical groups called lockers. These lockers enable complete separation between the credentials of one department from another.

Permissions for credential management-related roles include the following:

Manage my credentials and lockers
By default, all users can manage their own credentials and interact with lockers they are given permissions for.
Manage my lockers
Allows the user to create and manage their own lockers.
Administer ALL lockers
User has limited actions on all lockers.

Each locker has the following permissions:

Credential locker permission image