TL;DR: n8n’s credential model can let project members and instance administrators use credentials created by someone else, even when those credentials were never explicitly shared, according to Linx Security’s experimentation in n8n Cloud. The key governance issue is that ownership, visibility, and effective control do not always align, which weakens attribution and auditability.
At a glance
What this is: This is an independent analysis of n8n credential sharing and the key finding that credential ownership and credential control can diverge in ways that reshape accountability.
Why it matters: It matters because IAM and governance teams need to know when a platform allows one identity to act under another’s authority, especially where workflow automation intersects with audit, separation of duties, and delegated access.
👉 Read Linx Security’s analysis of n8n credential sharing and administrative impersonation
Context
Credential ownership and credential control are not the same thing. In n8n, that distinction matters because credentials created by one user can still be available to other users or administrators under certain project and instance-level conditions, which creates an identity governance gap rather than a simple sharing preference issue.
For IAM teams, the problem is not just access. It is whether a platform lets one actor cause actions to occur under another actor’s identity without a clear ownership boundary, explicit consent trail, or reliable downstream attribution. That is a governance failure mode, not merely a usability quirk.
Key questions
Q: What breaks when workflow credentials can be used by someone other than the owner?
A: Ownership-based governance breaks because the person who created the credential is no longer the only actor who can exercise it. That weakens accountability, confuses audit trails, and can let privileged users act under another identity without obvious consent or notification. Security teams should verify who can execute, not just who can see or store, each credential.
Q: Why do automation platforms complicate identity governance in IAM programmes?
A: Automation platforms complicate identity governance because they often separate credential creation, credential storage, and credential execution. That creates a gap between stated ownership and effective control. When workflows can run under delegated tokens, IAM teams must govern the execution path as carefully as they govern the credential itself.
Q: How do security teams know if a workflow platform is creating impersonation risk?
A: Look for any feature that lets an admin or peer select another user’s credential, run actions under that identity, or bypass re-consent and owner notification. If the downstream system only sees the token holder, the platform can produce legitimate-looking activity with ambiguous operator identity. That is a governance red flag, not just a product feature.
Q: What should organisations do when admins can operate under user credentials?
A: Organisations should decide whether that behaviour is acceptable, then align policy, logging, and access reviews to the decision. If it is not acceptable, restrict who can run workflows with third-party credentials and add monitoring that links the initiator to the token used. The control objective is clear accountability.
Technical breakdown
How n8n credential availability crosses ownership boundaries
n8n separates where a credential is stored from who can use it. Credentials can be shared explicitly by the owner, but they can also become implicitly available through project membership or instance-admin reach across personal projects. That means the access path is not always a direct user-to-credential grant. Instead, platform authority can override user expectation, especially when credentials live inside a personal project but the effective control plane sits at the instance level. Practical implication: treat storage location as an indicator, not proof, of control.
Practical implication: Map who can actually execute workflows with each credential, not only who created or stored it.
Why downstream systems see the credential, not the operator
OAuth-backed credentials make this easier to miss because downstream services validate the token, not the human intent behind the click. If an admin selects another user’s valid token, the external system records activity as that user, because the token remains authoritative. The platform’s internal UI can therefore mask the real operating relationship. That creates an attribution problem: the log shows a legitimate identity, but not the actor who initiated the action. Practical implication: audit trails must distinguish token validity from operator identity.
Practical implication: Add controls that record who initiated execution separately from which credential was used.
Administrative impersonation as an identity governance failure mode
The deeper issue is administrative impersonation through delegated credentials. This is not a broken login or a failed authentication step. It is a governance model that permits one privileged actor to exercise another user’s authority inside connected systems without re-consent, re-approval, or owner notification. In practice, that collapses separation of duties and makes incident response harder, because legitimate token use and unauthorised operator use look similar once the workflow runs. Practical implication: define whether instance admins are allowed to act as end users, then verify the platform matches that policy.
Practical implication: Classify this as an authorisation and accountability control problem, not a simple credential-sharing setting.
Threat narrative
Attacker objective: The objective is to perform actions under another user’s identity while preserving the appearance of legitimate token use.
- Entry occurs when a user creates OAuth-backed credentials in a personal or project-scoped context that appears private but is still reachable through broader instance authority.
- Escalation occurs when a project member or instance administrator selects those credentials and runs a workflow, causing action under the original user’s identity without re-consent.
- Impact occurs when downstream systems attribute activity to the credential owner, obscuring who actually initiated the action and weakening auditability, separation of duties, and trust in logs.
Breaches seen in the wild
- MongoBleed breach — MongoBleed exposed secrets across 87K MongoDB servers.
- IOS app secrets leakage report — iOS apps leaking hardcoded secrets and credentials endangering user privacy.
Read our 52 NHI Breaches Analysis report for a comprehensive view of breaches impacting Non-Human Identities including AI Agents.
NHI Mgmt Group analysis
Ownership is not control when instance authority can override user intent. Credential governance fails when the person who created a credential is not the person who can actually exercise it. In n8n, that mismatch is not theoretical because instance administrators can act on credentials created elsewhere in the tenant. The implication is that access models built around creator ownership do not describe real control.
Administrative impersonation is a governance failure mode, not a platform convenience. A platform that allows admins to run workflows under another user’s token creates a hidden delegation path that undermines accountability. That is especially problematic where organisations assume admins manage infrastructure but do not become the end user in downstream systems. The implication is that separation of duties must be evaluated at execution time, not just at credential creation.
Credential storage location is a weak proxy for authorization boundary. Personal projects suggest individual ownership, but the effective trust boundary may still be the instance. That breaks common assumptions in IAM and IGA programmes that “personal” means private. The implication is that governance teams should classify some apparently personal credentials as instance-governed assets.
Instance-level credential reach: n8n’s model exposes a specific governance assumption that access remains aligned to the person who created it. That assumption fails when a privileged administrator can operationally become the user inside downstream systems without explicit sharing or notification. The implication is that organisations must rethink who is allowed to exercise delegated authority, not just who is allowed to store secrets.
This pattern belongs in the broader NHI and workflow-governance conversation. Automation platforms increasingly behave like execution layers, so their credential rules shape identity risk in the same way as service accounts, API keys, and workload identities. The implication is that IAM teams should govern workflow credentials with the same scrutiny they apply to other non-human identities.
From our research:
- Only 1.5 out of 10 organisations are highly confident in their ability to secure NHIs, compared to nearly 1 in 4 for securing human identities, according to The State of Non-Human Identity Security.
- A second finding from the same study shows that 85% of organisations lack full visibility into third-party vendors connected via OAuth apps, which is a useful benchmark for delegation-heavy workflow environments.
- For a broader control lens, read Ultimate Guide to NHIs for the lifecycle and governance patterns that help separate ownership from effective control.
What this signals
Instance-admin reach should now be treated as an identity governance design decision, not a platform edge case. When a workflow engine allows one actor to run under another actor’s token, the organisation has effectively created a delegated-authority zone that needs explicit policy. That is especially true where audit and SoD controls assume the operator and the credential subject are always the same.
Personal-project boundaries are not enough to prove privacy. A credential stored in a user-owned workspace can still become organisation-wide risk if instance admins or project peers can activate it. Teams should inventory these boundary mismatches early, because they often show up first in SaaS automation tools before they are recognized as a broader governance issue.
The pattern reinforces a broader identity trend: workflow platforms are becoming execution layers for both NHI and agentic use cases, so credential governance must move from ownership labels to effective authority. Programmes that already rely on NIST Cybersecurity Framework 2.0 and OWASP Non-Human Identity Top 10 will recognise the same control gap in different clothing.
For practitioners
- Define execution authority separately from credential ownership Document which roles may create, view, share, and execute workflows with another user’s credentials. If instance admins can run workflows under user tokens, state that explicitly in policy and onboarding material.
- Reconcile workflow logs with operator identity Require logging that captures the initiator, the selected credential, and the downstream identity asserted by the token. Use that three-part record for investigations and access reviews.
- Review personal-project credentials as governed assets Inventory credentials stored in personal projects and test whether administrators or project peers can still use them. If they can, treat those credentials as instance-scoped risk rather than private user assets.
- Adjust segregation-of-duties controls for automation platforms Update SoD controls so they cover workflow execution, not only platform administration. Where the same role can create, select, and run workflows under another identity, add compensating approval or monitoring controls.
Key takeaways
- n8n’s credential model can let one user or administrator act under another user’s identity, which turns ownership into a weak proxy for control.
- The practical risk is not a broken token but a broken accountability model, because downstream systems see valid credential use while the operator remains hidden.
- IAM teams should govern workflow execution, operator attribution, and delegated authority together, or the audit trail will not match the real trust boundary.
Standards & Framework Alignment
This section maps relevant standards and security frameworks to the operational risks and controls described in this guidance.
OWASP Non-Human Identity Top 10 address the attack and risk surface, while NIST CSF 2.0 and NIST Zero Trust (SP 800-207) set the governance and control requirements practitioners need to meet.
| Framework | Control / Reference | Relevance |
|---|---|---|
| OWASP Non-Human Identity Top 10 | NHI-03 | The article centers on credential sharing and effective control over non-human credentials. |
| NIST CSF 2.0 | PR.AC-4 | Identity and access management must reflect who can actually run workflows under a token. |
| NIST Zero Trust (SP 800-207) | PR.AC-1 | Trust decisions should be explicit when admins can operate with another user's authority. |
Map workflow execution paths to access controls and verify the operator is logged separately from the token subject.
Key terms
- Credential Ownership: Credential ownership is the person or team that created or administratively manages a secret, token, or OAuth grant. It does not always equal who can use the credential in practice. In workflow platforms, ownership and effective control can diverge once admins, projects, or shared execution paths enter the picture.
- Effective Control: Effective control is the real ability to exercise a credential, token, or account, regardless of who originally created it or where it is stored. In identity governance, this is the boundary that matters for auditability, accountability, and separation of duties because downstream systems only see valid authority.
- Administrative Impersonation: Administrative impersonation is when a privileged operator can act in downstream systems under another user’s identity by using that user’s credential or token. It is a governance problem because logs and application context show legitimate identity use while the initiating operator remains hidden from normal attribution.
- Workflow Execution Authority: Workflow execution authority is the permission to start or run an automation that causes actions in connected systems. In automation platforms, this authority can be broader than credential creation rights, which means security teams must govern who can trigger actions as carefully as who can store secrets.
What's in the full article
Linx Security's full blog covers the operational detail this post intentionally leaves for the source:
- The exact n8n Cloud experiments showing how unshared credentials could still be selected and executed by other users or admins.
- The OAuth Slack example that demonstrates how downstream systems attribute actions to the credential owner rather than the initiating operator.
- The documentation gap between what n8n states about viewing and sharing credentials and what the experiment showed about execution authority.
- The practical implications for organisations that need to decide whether admins should be able to act as end users.
Deepen your knowledge
NHI governance, agentic AI identity, and machine identity lifecycle are core topics in our NHI Foundation Level course, the industry's only accredited NHI security programme. If you are responsible for identity security strategy or NHI governance in your organisation, it is worth exploring.
Published by the NHIMG editorial team on 2026-06-24.
NHI Mgmt Group — the independent authority on Non-Human Identity, IAM, and Agentic AI security. nhimg.org