Feature Request

When using the PAM module in combination with password rotation it's very likely you will use the credential type DVLS privileged account for most of your assets in Remote Desktop Manager. This cedential type is not available/working in the web version of Devolutions Server. Because of this the web version of Devolutions Server is not usable. Can this be added in Devolutions Server?

It would be great to have Devolutions Send built in to DVLS so that we can't use our own branding and have a URL link with our own domain. https://send.devolutions.com/?utm_source=rdm&utm_medium=native&utm_campaign=default Pretty much this, but with our DVLS URL and our own internal company branding.

Hi! After seeing the warning "This entry type is deprecated and will eventually be removed ..." I converted all legacy Website entries using advanced search in RDM (filter by connection type) Select all > Right click > Edit > Edit (special actions) > Web > Convert Website (legacy) to Website That worked for shared vaults in RDM, but it doesn't work for user vaults, and especially not for users that don't use RDM. So my feature request would be a way in DVLS web to be able to search all legacy entries and if possible convert them. Currently you can't select the legacy connection type for filtering entries. Or, just do the conversion automatically during a database update, if that's possible. Thanks! Daniel

Hello, I am writing to request a feature enhancement for Devolutions Server. Currently, the system allows for exporting data in various formats, but I would like to suggest adding an option to export the data in JSON format with encryption. This feature would be incredibly valuable for users who wish to store their backups externally (e.g., in cloud storage or Blob storage) while ensuring that sensitive data is securely protected. By exporting the data in encrypted JSON format, users would be able to leverage both the flexibility of the JSON format and the security of encrypted backups, all within one solution. Moreover, having the ability to export backups in an encrypted JSON format would be particularly beneficial in emergency scenarios. If the entire system goes down, the backup could be quickly and securely loaded into Devolutions Hub for recovery, enabling businesses to resume operations with minimal downtime. The ability to export data in an encrypted JSON file would greatly enhance both the flexibility and security of backup management. It would also streamline the recovery process in case of system failure, ensuring that users can quickly access their critical data without relying on the entire Devolutions Server system being online.

Dear Devolutions team I was led here by one of your employees to submit the following two requests and feedback: View which template was used to create a password. Technically this is possible by using tags, but having the name displayed somewhere in the details would be nice Having a permission view within templates. This would be immensely beneficial to have. Currently, when looking at the permissions of a template, only the status of each permission is visible, altough as soon as there are exceptions made for a team, the status switches to "Custom". The passwords and vaults itself already have a clean view of the permissions, so this kind of view would suffice for the templates. The "Custom" status on permission within templates. Adding to the request from point two, not being to view the default and what exceptions were made from said default is a bit confusing. It would be nice if there could instead for example be a "Disallowed except for" status. Granted, as far as I know that's the only exception that can be made, since setting the default to "Allow" but deny permissions for certain teams isn't possible. If that is the case then that would be nice to have as well I thank you in advance for your time and wish you a pleasant day. Kind regards Nicola Rüegsegger

Hello, So we just recently started looking into reporting, trying to get data into Power BI. However, it turned to be a challenge. The PS command Export-DSPamAccountAccessReport did only dump the permissions on each PAM account, so we turned to the GUI with Reports - Scheduled reports . The content is what we are looking for, however, the only way of getting the data out is by e-mailing a file to mailbox. We would like to request either more of the GUI report content being available using PowerShell and/or if it's in the stars to add support for file share or Azure blob, for storing the Scheduled reports . Regards, Simon

Hi there We have quite a lot of users using a combination of Web/Launcher and they're quite often missing configuration options that are currently present in Remote Desktop Manager. Could more features please be allowed configurable via web? In this case, the Proxy tab from RDM is the most pressing one for us. Thank you

Hi There, I use the VMware Dashboard in the RDM client. It would be nice if this were also available via the Devolutions Server web interface.

In the example below, I want to give a group full access to change permissions on all connections and subfolders, but not the "New Zealand" folder itself, but I can't seem to do this. Windows has a similar feature. Is this something that can be added as a feature? [image] [image]

Hi, Could you allow us to set an expiration for users please? It could even be better if we could do it based on user tag or groups. Here is my use case: I have to give access to our infrastructure to many MSP (managed service provider) but we don't want them to be able to connect without asking. Their users are synchronized from Microsoft and we can't set an expiration in the Active Directory (since they need the account for other purposes). As an example, if someone need access for one day I have to assign him a Launcher license then remind me to remove it the next day. It would be more convenient to just set expiration date (with license removal eventually). Thanks

Hi. Currently we can assign priviledged and external tags to users in DVLS. It could be nice to allow us to create custom tags too. For an example, we work with a lot of external providers that use our DVLS servers and we could use this to tag these users as from their company or a certain level of access.

Hello everyone I am integrating the Devolutions Server to our company. We have a lot of users we want to give access to this system. For that I would like to create seperate tags to get a better overview which department the user is part of. Maybe it could be also an option to show which rights the users have without editing the users.

Hi, Could you allow us to create multiple lists of forbidden password with their own verification mode? Actually there is only one list and we've to chose between exact match and contain parameters. It could be great to use both because it's different use case: Exact match is perfect for weak and very known password like Topsecret, 1234567890 etc. But contain need to be used to prevent people from using some bad pattern like Company@CurrentYear! / Devolutions@2022! Another great addition should be a strict restriction preventing the validating an entry with a forbidden password. So if someone try to type one of them, it can't validate the credential. It might sound exagerated but in our personal usecase it will force the engineer to set a good one on the target then in DVLS. Best regards, Arnaud

I'd like to request the ability to manage my credentials for the following items in the DVLS Web version as can be done in current Remote Desktop Manager. I understand these accounts are available in Web version entries but, currently, you have to logon to RDM or Launcher to be able to "edit" those credentials My personal credentials My privileged account My personal SSH key (not currently used by our group, but also in RDM location so I request to add it)

Hi! I have created a doucument editor with a html page (with the rdm client) [image] But this page doesn't display correctly in the web interface. The text shows up, but not the images. The following message appears: This type is not supported. [image] Can you please fix this? A web interface should be able to show html pages ;)

Hi there Is there a way for getting notified by the action "Entry Export"? We have only a few admins which are allowed to export entries, but it would be nice when there is a way to get notified on entry export action. Thank you.

Hi there Due to the deprecation for Basic Authentication in Exchange Online, I would like to request a OAUTH Feature for sending E-Mails in DVLS. Best regards, John

Hey, because we are mainly using Powershell 5 we sometimes need to use the REST-API instead of Devolutions.Powershell (This module requires Powershell 7). It would be really usefull if you could add a connectionType Parameter for your Entry REST-API endpoints. Currently I am retrieving all entries and then I filter them with a Where-Object. Because we do have over 2700 entries this takes way to long. I would be glad if you could implement this :D Thanks a lot Sandro Widmann

Hello, I would like to request a feature that allows granting non-administrative users access to the System Vault with permissions to view, create, and edit scripts. Current Limitation: At the moment, access to the System Vault is restricted to administrators. This forces us to elevate users (e.g., editors or script maintainers) to administrator roles just so they can manage scripts. Problem: Promoting users to administrators solely for script management introduces unnecessary security risks and violates the principle of least privilege. These users do not require full administrative rights, only limited access to specific resources (in this case, scripts within the System Vault). Requested Enhancement: Introduce granular permission controls for the System Vault Allow delegation of script-related permissions (view/edit/create) to non-admin roles Ensure these permissions can be assigned independently of full administrative privileges Benefits: Improved security through proper role separation Reduced risk of privilege misuse Better alignment with enterprise access control best practices Thank you for considering this request. Benjamin Strohmaier

Notification mails are english even if the settings tell german language. Are there a possibility to get the notification mail in german or maybe a template system do do it our self ?

Hi! When you open the Entry security analyzer report with the Show compromised password (pwned) option, the list takes a long time to load because DVLS seems to query api.pwnedpasswords.com for each password sequentially. It's the same in RDM with the Password analyzer. I think this could be optimized. API calls could parallelized, if they are not already. Hashes could be cached for some time, so you wouldn't need to wait for the whole list to load every time you change the filter or switch pages. The query could run in the background and populate the pwned-status field of each entry as they come in, instead of the whole GUI becoming unusable for a long time. You can even download all password hashes and query them offline: https://haveibeenpwned.com/api/v3#PwnedPasswordsDownload Thank you!

Hey everyone, in Devolutions.PowerShell version 2025.3.3, the Restore-DSDeletedUser cmdlet was introduced. We also require the ability to restore roles from the recycle bin via PowerShell. Unfortunately, the Update-DSRole cmdlet does not support this, and Restore-DSDeletedRole does not exist. I would greatly appreciate the implementation of this functionality. Thank you very much. Sandro Widmann

The Certificate Template are not the same any more in de WEB and RDM if a certifcate is upload by RDM you can't open it or download any more in the WEB interface the old structure was beter then the new one. now certificate can be download and new password can be used to store the PFX. this is less secure because certifcate can be saved with new password who aren't stored or be verified please fix this

Hello all, Following a chat with support, it was suggested to create a feature request. This is something that you do with the Business Hub solution. Having an option where entries in a vault are "locked" behind some added security measure. In a SSO environment, using the DVLS Workspace, every entry stored in a vault (user or shared) is available. In some cases, mostly dealing with highly confidential credentials, we think it would be important to have an extra security step. Whether it's asking for the user password again, expiring/refreshing the MFA token or using a pin code. Thanks,

Hello, since it is not possible to access a DVLS if the first two numbers of the version do not match, I would like to suggest the following: When using a DVLS, there should be an option to define in RDM the maximum version for the first two numbers. Example: DVLS is at 2025.3.x RDM is at version 2025.3.x. If RDM is offline, it is offered version 2026.1.x as an update. This must be prevented. When an RDM connects to DVLS, the version number 2025.3.x has to be transmitted and stored. RDM should then only accept update versions 2025.3.x. Only when DVLS is updated to 2026.1 and RDM connects the next time should it receive the new version number and from then on be allowed to install any 2026.1.x version. A 2026.2.x version should also only be offered once the server runs that version. Since we run our DVLS in a highly secure environment, users only connect to the environment and DVLS via VPN from time to time. RDM therefore always starts offline. In our case, offline vaults are only retained for 7 days. Best regards Andreas