By default, which user does NOT have access to a newly created Safe by a user who is a member of the LDAP Vault Admin group?

The user role that does not have access to a newly created Safe, by default, is the Admin. In the context of Privileged Access Management (PAM), Safes serve as secure storage for sensitive accounts and information.

When a user who is a member of the LDAP Vault Admin group creates a Safe, the default permissions configuration typically grants access to certain roles, allowing them to perform specific actions within the Safe. The role of the Admin is traditionally associated with higher-level management and oversight capabilities, which might not entail direct access to newly created Safes unless explicitly assigned.

In contrast, users designated as Master, Auditor, or Backup generally have either broader access or specific permissions related to oversight or recovery tasks. The Master role often has comprehensive access to manage Safes, the Auditor role typically has access for review and compliance purposes, and the Backup role is intended for data recovery scenarios. Thus, it is the Admin role that, by default, does not receive access to newly created Safes unless additional permissions are explicitly granted.