{"id":5758,"date":"2026-06-16T05:25:11","date_gmt":"2026-06-16T05:25:11","guid":{"rendered":"https:\/\/aaxonix.com\/resources\/?post_type=glossary&#038;p=5758"},"modified":"2026-06-16T05:25:11","modified_gmt":"2026-06-16T05:25:11","slug":"secret-zoho-vault","status":"publish","type":"glossary","link":"https:\/\/aaxonix.com\/resources\/glossary\/secret-zoho-vault\/","title":{"rendered":"Secret (Vault)"},"content":{"rendered":"<style>\n.gt-body{font-family:'Poppins',sans-serif;color:#111;line-height:1.75}\n.gt-def{border-left:4px solid #E8650A;padding:16px 20px;background:#fff8f4;border-radius:0 8px 8px 0;margin:0 0 32px;font-size:1.05rem}\n.gt-section{margin:0 0 36px}.gt-section h2{font-family:'Fraunces',serif;color:#0A1628;font-size:1.5rem;margin:0 0 12px}\n.gt-example-box{background:#f0f4ff;border-radius:10px;padding:20px 24px;margin:0 0 32px}.gt-example-box strong{color:#2563EB}\n.gt-related-pills{display:flex;flex-wrap:wrap;gap:10px;margin:0 0 32px}\n.gt-related-pill{background:#f7f4ef;border:1px solid #ddd8cf;border-radius:20px;padding:6px 16px;font-size:.875rem;color:#0A1628;text-decoration:none}\n.gt-faq-item{border:1px solid #ddd8cf;border-radius:10px;padding:16px 20px;margin:0 0 12px}\n.gt-type-badge{display:inline-block;background:#0A1628;color:#fff;font-size:.75rem;padding:3px 10px;border-radius:20px;margin:0 0 24px;font-family:'DM Mono',monospace}\n<\/style>\n<div class=\"gt-body\">\n<span class=\"gt-type-badge\">Technical Term<\/span><\/p>\n<div class=\"gt-def\">A Secret is Zoho Vault&#8217;s atomic unit of storage. Every credential you protect, whether a server login, an API key, or a database password, lives as exactly one Secret with its own access controls, audit trail, and sharing settings independent of every other Secret.<\/div>\n<div class=\"gt-section\">\n<h2>How Secret Works in Zoho Vault<\/h2>\n<p>A Secret is an encrypted record containing a name, URL, username, password, and optional notes. Vault encrypts each Secret using AES-256 before it leaves the browser, so only authorised users with the correct decryption key can read the plain-text value. Each Secret belongs to at least one Chamber (folder) and can be individually shared, tagged, or linked to a TOTP entry. Access logs record every view, copy, and edit against the Secret ID.<\/p>\n<\/div>\n<div class=\"gt-section\">\n<h2>When to Use Secret<\/h2>\n<p>Create a Secret whenever a credential must be stored, shared, or audited centrally rather than held in someone&#8217;s browser or a spreadsheet. One Secret per service is the correct granularity: avoid bundling multiple unrelated logins into one record, because sharing is controlled at the Secret level. If a credential is personal and never shared, a personal vault Secret still provides audit history and breach-alert coverage.<\/p>\n<\/div>\n<div class=\"gt-section\">\n<h2>Key Considerations for Secret<\/h2>\n<p>Secrets inherit the Password Policy of their Chamber unless a policy is applied directly. Moving a Secret between Chambers may change which users can access it, so audit permissions before migrating. Deleted Secrets are soft-deleted and can be restored by an admin within the retention window. The Secret count limit depends on your Zoho Vault plan; free tiers cap at a lower number than paid plans. Always verify the URL field is correct before enabling auto-fill, to prevent credential phishing via mismatched sites.<\/p>\n<\/div>\n<div class=\"gt-example-box\"><strong>India Example:<\/strong> A Hyderabad-based IT services firm creates one Secret per client server, placed in a Chamber named after each client. When a junior engineer needs access to a specific server only, the admin shares that single Secret rather than exposing all client credentials.<\/div>\n<div class=\"gt-related-pills\">\n<a href=\"https:\/\/aaxonix.com\/resources\/glossary\/chamber-zoho-vault\/\" class=\"gt-related-pill sp-content-link\">Chamber<\/a><br \/>\n<a href=\"https:\/\/aaxonix.com\/resources\/glossary\/password-policy-zoho-vault\/\" class=\"gt-related-pill sp-content-link\">Password Policy<\/a><br \/>\n<a href=\"https:\/\/aaxonix.com\/resources\/glossary\/access-control-zoho-vault\/\" class=\"gt-related-pill sp-content-link\">Access Control<\/a>\n<\/div>\n<div class=\"gt-faq-item\"><strong>Can a Secret store content other than a password?<\/strong><\/p>\n<p>Yes. A Secret can hold a username, URL, password, and a free-text notes field. The notes field is also encrypted and is suitable for storing supplementary information such as security questions, PIN codes, or setup instructions. However, for large binary files or documents, Secure Notes or external storage is more appropriate.<\/p>\n<\/div>\n<div class=\"gt-faq-item\"><strong>Does viewing a Secret in Zoho Vault create an audit log entry?<\/strong><\/p>\n<p>Yes. Every view, copy-to-clipboard, and password reveal action against a Secret is logged with a timestamp, user identity, and IP address. Admins can export these logs for compliance reporting. This audit coverage is one of the primary reasons organisations move credentials from shared spreadsheets into Vault.<\/p>\n<\/div>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>A Secret in Zoho Vault is the encrypted record that stores a single credential set, such as a username, password, and URL, within a secure vault.<\/p>\n","protected":false},"template":"","meta":{"seo_title":"Secret | Zoho Vault Glossary","seo_description":"A Secret in Zoho Vault is the encrypted record that stores a single credential set, such as a username, password, and URL, within a secure vault.","seo_keyword":"secret zoho vault","seo_faqs":"[{\"q\": \"Can a Secret store content other than a password?\", \"a\": \"Yes. A Secret can hold a username, URL, password, and a free-text notes field. The notes field is also encrypted and is suitable for storing supplementary information such as security questions, PIN codes, or setup instructions. However, for large binary files or documents, Secure Notes or external storage is more appropriate.\"}, {\"q\": \"Does viewing a Secret in Zoho Vault create an audit log entry?\", \"a\": \"Yes. Every view, copy-to-clipboard, and password reveal action against a Secret is logged with a timestamp, user identity, and IP address. Admins can export these logs for compliance reporting. This audit coverage is one of the primary reasons organisations move credentials from shared spreadsheets into Vault.\"}]","term_type":"Technical","glossary_related":"","glossary_links":""},"glossary_category":[1286],"class_list":["post-5758","glossary","type-glossary","status-publish","hentry","glossary_category-zoho-vault"],"_links":{"self":[{"href":"https:\/\/aaxonix.com\/resources\/wp-json\/wp\/v2\/glossary\/5758","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/aaxonix.com\/resources\/wp-json\/wp\/v2\/glossary"}],"about":[{"href":"https:\/\/aaxonix.com\/resources\/wp-json\/wp\/v2\/types\/glossary"}],"wp:attachment":[{"href":"https:\/\/aaxonix.com\/resources\/wp-json\/wp\/v2\/media?parent=5758"}],"wp:term":[{"taxonomy":"glossary_category","embeddable":true,"href":"https:\/\/aaxonix.com\/resources\/wp-json\/wp\/v2\/glossary_category?post=5758"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}