Skip to main content

Credentials

The Credentials section is your inventory of high-value accounts and secrets.

AccessLedger does not store the secret itself. It stores where it is kept, how risky it is, and how it should be rotated.

Create a credential

  1. Go to Credentials.
  2. Click Add Credential.
  3. Fill in the fields:
  • Credential Name: a short, human-friendly label.
  • System/Service: what the credential grants access to.
  • Account Identifier: username, principal name, account ID, etc.
  • Storage Type: password manager, cloud vault, physical, HSM, other.
  • Storage Location: the exact vault, safe, slot, or path.
  • Risk Level: Low / Medium / High.
  • Rotation Interval (days) (optional): leave blank for no schedule.
  • Notes (optional): access steps, runbook links, caveats.
  1. Click Create Credential.

View and edit a credential

  • From the credential list, click View to see the detail page.
  • Click Edit to update fields.

Edits are recorded in the audit log.

Rotation schedule

If you set a rotation interval:

  • The Rotation dashboard will classify the credential as overdue, due soon (next 30 days), or on schedule.
  • Marking a credential as rotated updates Last Rotation and writes an audit event.

If you leave the rotation interval blank, the credential appears under No Rotation Schedule.

Ownership and coverage

To track who is responsible for a credential (and who the backups are), use Credential Assignments.

See Credential Assignments.

Delete a credential

On the credential detail page, click Delete.

Delete is a soft-delete (credential is marked inactive and removed from lists).