1Password - FAQ

Table of Contents

• FAQ
  • Are we able to create groups?
  • How does vault sharing work?
  • Can groups or vault sharing be automated?
  • Are we able to access any of the audit information for our vaults?
  • Are we able to grant access to service accounts that need access for automation?
  • Can I have more than one TAMU account in 1Password?

FAQ

Are we able to create groups?

Group creation in 1Password is not enabled for end users.

How does vault sharing work?

Shared vaults can be created ad-hoc/self service for one off sharing of assets that do not need to be centrally managed. Managed vaults for teams or projects can be requested by emailing password-management@tamu.edu.

Can groups or vault sharing be automated?

Yes, vaults can be tied to Azure groups or AUTH groups synced to Azure, but only for flat groups, not nested group membership. If desired, a new Azure group can be created to be then loaded in 1Password and assigned to a vault. You can request an automated vault by emailing password-management@tamu.edu.  

Are we able to access any of the audit information for our vaults?

Access log and Auditing information is not available to individuals. This information can be requested from the security team by emailing password-management@tamu.edu.  

Are we able to grant access to service accounts that need access for automation?

Service accounts can be created on request by emailing password-management@tamu.edu. Requests are evaluated on a case by case basis.

Can I have more than one TAMU account in 1Password?

1Password will only allow you to be logged into one Single Sign On account at a time.