Secret Access Monitoring

The Secret Access tab provides comprehensive monitoring and auditing capabilities for tracking all secret access events within the Password Vault. This centralized view allows administrators to monitor who accessed which secrets, when the access occurred, and whether any security exposures were detected.


Navigate to Password Vault > Secrets access to access the monitoring interface.

../../_images/pv-secret-access-main-view.png

The Secret Access interface displays a comprehensive table with the following information for each access event:

  • User: The user who accessed the secret (clickable link to user profile)

  • Secret: The name of the accessed secret (clickable link to secret details)

  • Collection: The collection containing the secret (clickable link to collection)

  • Start date: When the secret access began

  • End date: When the secret access ended

  • Status: Current status of the access (Ongoing or Ended)

  • Events: Security events detected during access

Event Types and Status Indicators

Access Status

The system tracks the lifecycle of each secret access:

  • Ended: The secret access session has been completed

  • Ongoing: The secret is currently being accessed

Exposure Detection

The Secret Access monitoring includes exposure detection capabilities. When a potential security exposure is detected, it appears in the Events column as “Exposure detected”.

Note

Exposure is detected when a user who has viewed a secret is blocked in Fudo Enterprise.

Hovering over an exposure detection event displays additional information about the exposure reason, such as:

  • User blocked: The user account has been blocked or deactivated

  • Suspicious activity: Unusual access patterns detected

  • Policy violation: Access violated defined security policies

Filtering and Reviewing Events

The Secret Access interface lets you filter events by user, secret, collection, time range, status, exposure, and alert handling.

../../_images/pv-secret-access-user-filter.png

Search Functionality

The search bar at the top of the interface allows for quick text-based searches across all visible data fields.

Note

The search is case-insensitive by default, with an Aa toggle button for case-sensitive searching.

Column Management

Administrators can customize the visible columns using the “Columns” button. This allows for showing or hiding specific columns based on monitoring needs.


Related topics: