.svg)
Groups in Enpass allow administrators to organize users into logical collections — such as teams or departments — and apply targeted policies to them. Groups work with both manually added users and those provisioned via an Identity Provider.
What Are Groups?
A group is a named collection of users in your Enpass organization. Groups serve two primary purposes:
-
Policy management — Apply or override policies for a specific set of users without affecting the rest of the organization. For example, enforce stricter security policies for your IT team, or apply different session timeout rules for contractors. See Managing Group Policies .
-
Filtered monitoring — Filter, track onboarding progress, and download reports for a specific group of users rather than your entire organization. See Tracking User Onboarding .
In This Section
-
Adding Groups Manually — Create groups and manage their membership from the Admin Console.
-
Sync Groups from Identity Provider — Sync groups automatically from your IdP via SCIM.
Example Use Cases
Policy overrides by role — Create a group for IT administrators and apply a stricter Enpass security policy exclusively to that group.
Controlled vault management — Create a group for managers or senior staff and apply a policy that grants only that group the ability to create and manage shared vaults. Other users can access shared vaults but cannot create or manage them.
Department-based policies — Create groups per department and tailor Enpass policies to match each team's security requirements.