Aller au contenu principal
Version : la plus récente

I cannot see expected resources or safes

VaultPAM controls which resources and Safes each user can see through role-based access control (RBAC) and Safe visibility policies. If an expected resource or Safe is missing from your view, one of four causes is usually responsible. Role assignment gaps are the most common cause.

Symptoms

  • The Safes or Resources list is empty or shows fewer items than expected.
  • A Safe that was visible before is no longer listed.
  • A colleague can see a Safe but you cannot.
  • After an organisation change, your previous resources disappeared.
  • Resources from a specific connector are not showing up even though the connector is online.

Causes

1. RBAC role missing or not yet assigned

Access to Safes and resources is controlled by role assignments. If your user account has no role, or if the role does not include View permission for the relevant Safe, the resource will not appear in your list.

Check: Open Profile → My Access to see your current role assignments. Alternatively, ask a Safe admin to open Safes → pick Safe → Members and check whether your user or group is listed.

Fix: Ask a Safe admin or VaultPAM admin to add you to the Safe with an appropriate role. After the role is assigned, refresh the page — changes take effect immediately without a logout.

2. Safe visibility policy

Safes can be configured with a visibility policy that restricts who can discover them in the list view. Even if you have access to a Safe, a restrictive visibility setting may hide it from your sidebar until you are explicitly added or until an admin changes the policy.

Check: Ask a Safe admin to open Safes → pick Safe → Edit → Visibility settings and confirm the policy is set to allow discovery for your user or group.

Fix: A Safe admin must update the visibility policy to include your user or group. After the change, refresh the Safes list.

3. Connector offline — resources not discoverable

VaultPAM discovers resources (hosts, databases, applications) through the connector assigned to the network segment where those resources reside. If the connector is offline, VaultPAM cannot enumerate new resources and the last-known resource list may be stale or absent.

Check: Open Connectors in the sidebar. Confirm all connectors that serve the expected resource segment show Online. Resources under offline connectors appear with a warning badge or are hidden from discovery until the connector reconnects.

Fix: Restore the connector to Online state. See My connector is offline. Once the connector reconnects, resource discovery runs automatically within a few minutes and the resources reappear in the list.

4. Wrong organisation context

VaultPAM supports multiple organisations. If your account belongs to more than one organisation, or if you were recently transferred between organisations, you may be viewing the wrong organisational context.

Check: Confirm the organisation name shown in the top-left of the VaultPAM UI matches the organisation that owns the expected Safes.

Fix: Use the organisation switcher (click the organisation name in the top-left corner) to switch to the correct organisation. If you do not see the expected organisation in the switcher, your account may not have been added to it — ask the admin of that organisation to invite you.

Resolution steps

  1. Open Profile → My Access and confirm you have a role assignment that covers the expected Safes or resources. If you have no role, contact a VaultPAM admin.
  2. Ask a Safe admin to verify the Safe's visibility policy includes your user or group: Safes → pick Safe → Edit → Visibility settings.
  3. Open Connectors and confirm all connectors serving the relevant network segment are Online. If any are offline, follow My connector is offline.
  4. Check the organisation switcher (top-left of the UI) to confirm you are viewing the correct organisation context.
  5. After any change, refresh the Safes or Resources page. Changes to roles and policies take effect immediately.

Escalation path

If none of the above steps reveal the cause:

  1. Note which specific Safes or resources are missing, when they were last visible, and any recent changes (role updates, connector changes, organisation moves).
  2. Ask a VaultPAM admin to review the audit log for recent role revocations or Safe policy changes: Audit → Events, filter by the affected Safe or user.
  3. Open a support ticket with: affected username, list of missing resources, last-known access date, and the admin's audit log findings.