What is Chamber (Vault)?

A Chamber in Zoho Vault is a named folder that groups related Secrets and applies a consistent set of access permissions and password policies to all

Chamber (Vault)

Technical Term

A Chamber is Zoho Vault’s organisational container, analogous to a shared folder, but with the key difference that adding a user to a Chamber instantly grants them the configured access level for every Secret inside. This means access management scales with the Chamber rather than requiring per-Secret configuration as your credential library grows.

How Chamber Works in Zoho Vault

A Chamber is created by an admin or a user with the appropriate Vault role, given a name and an optional description, then populated with Secrets. Users or user groups are added to the Chamber with a permission level: view, edit, or manage. When a new Secret is added to a Chamber, all Chamber members automatically gain the same access level to that Secret. A Single Secret can belong to more than one Chamber, inheriting the most permissive access from any Chamber that includes it.

When to Use Chamber

Chambers are best suited when a defined group of people consistently needs the same set of credentials, for example a DevOps team that manages all staging server logins, or a finance team that accesses all banking portals. Create one Chamber per functional group or project rather than one Chamber per department, so that access can be removed surgically when someone changes roles without disturbing unrelated credentials.

Key Considerations for Chamber

Chamber access is cumulative with direct Secret shares: removing a user from a Chamber does not revoke access if they also hold a direct share on individual Secrets within it. Always audit both Chamber membership and direct shares when revoking access. Chambers cannot be nested in Zoho Vault’s standard model; all Chambers sit at the same flat level. Password Policies applied to a Chamber override individual Secret policies unless explicitly exempted at the Secret level.

India Example: A Pune IT consultancy creates separate Chambers for each client, one for a textile client, another for a logistics firm. When the engagement with the textile client ends, the admin removes all team members from that Chamber in a single action, immediately cutting access to all 40 Secrets in it.

Can a user create their own Chamber in Zoho Vault, or is this an admin-only action?

By default, any Vault user can create a personal Chamber to organise their own Secrets. However, admins can restrict Chamber creation to specific roles if the organisation wants centralised control over the folder structure. Enterprise plans provide more granular role-based controls over who can create, rename, or delete Chambers.

If a Secret is added to two Chambers with different permission levels, which level applies?

When a Secret belongs to multiple Chambers, a user who is a member of both Chambers receives the higher of the two permission levels for that Secret. If one Chamber grants view-only and another grants edit, the user can edit the Secret. This additive model means you should design Chamber membership carefully to avoid unintended privilege escalation.

Need help implementing this in Zoho?

Aaxonix is a certified Zoho implementation partner based in Pune. Architecture-first, no surprises.

Book a Free Consultation →

← Back to Glossary