Feature Request

This feature request is not limited to RDM but this seemed like the right place to post this. There are currently 32 different types of `credential` entries. For example; Dashlane, Keepass, Keeper, Lastpass et cetera Some make a lot of sense to have special integration for. It helps people getting started without having to write their own implementation. What seems to be lacking is a basic "Custom credential" entry. On Windows, RDM does offer a credential type called "Custom". However, this forces the use of Powershell. In the Linux client this type of credential entry is not offered, despite Powershell being available for Linux. While enabling this type of entry on Linux (requiring pwsh) technically would make anything possible (you could spawn any other process from pwsh) it would still not be ideal. Powershell is incredibly slow to start, even without any profile. In the time it takes pwsh to just start and exit, without any profile, I can launch bash , which additionally calls my password manager to list all available passwords 100 times. It would be hugely annoying to have to constantly wait for a pwsh process to start. And I don't even have to launch bash in order to start my "pass" command. $ time pwsh -NoProfile -Command "exit" real 0m0.738s user 0m1.222s sys 0m0.156s $ time bash -c exit real 0m0.003s user 0m0.002s sys 0m0.001s $ time bash -c "pass ls >/dev/null" real 0m0.019s user 0m0.009s sys 0m0.014s $ time pwsh -NoProfile -Command "pass ls >/dev/null" real 0m0.672s user 0m1.081s sys 0m0.171s In DVLS this feature is missing entirely which would make it impossible to retrieve (add or update) credentials when just using DVLS. I propose to have a "Custom" credential entry which would launch any arbitrary process, with variable substitution and capture STDOUT. Use-case in general would be to allow anything to be run, to return credentials, without having to provide specific integration. For example: If using Linux Pass ( https://www.passwordstore.org/ ): CREDENTIAL_NAME="websites/devolutions/forum" pass show $CREDENTIAL_NAME | head -n1 pass show $CREDENTIAL_NAME 2>/dev/null | grep -e "^Username:" | cut -d' ' -f2 pass otp $CREDENTIAL_NAME Anything could be used to get credentials, secrets, otp et cetera. As long as you can write something for it, like a bash or powershell script, python code, or just a binary, you would be able to launch a process which returns anything. This custom credential entry would (should) have the following fields: Command to run, examples: /usr/bin/myvaultprogram get password $SESSION_ID$ c:\Users\Timmy\Myapps\myvaultprogram.exe get username MyUsernameForDevolutions Returns: (define what does the command returns) One of: Username, Password, OTP, Secret, URL, Domain, Email, UPN, Mnemonic Maybe even arbitrary, any other info field that may be useful (see below) Platform: Linux, Windows, DVLS RDM would pick the Linux or Windows command depending on platform This allows us to store two different commands, useful in Teams with mixed usage DVLS option would mean to run it on the DVLS server (see below) A "Custom credential" entry could have 3 tabs; Windows, Linux and DVLS Each tab would have one or more rows, with each row representing the command to run and the thing it returns Instead of a command, you would also be able to select "use command for <OtherPlatform> so someone could write Windows scripts to run and DVLS scripts to run, but for Linux choose the option "Run the DVLS command on Linux systems" Selecting "DVLS" as the platform on which to run the command, would mean the DVLS is instructed to run the command. If someone wants to use this, they could either change the base image if using a container, to include their code (or use a bind mount) or if running DVLS on a Windows Server they could make sure their code is available there. The option to run a command in the DVLS environment would be a fantastic addition because then clients do not have to have any local code at all. Which means if credentials are located somewhere else, clients would not require network access to that other location. A broader use would be to make RDM/DVLS run a command to get any type of info, for example a hostname Say the network team uses their own device and IPAM tool (could Netbox, phpipam, could be anything else) and we want to give more (support) people read-only access to switches. Having the ability to call an arbitrary command with variables, which could also return IP, Hostname, Documentation URL, whatever, from any external tool, would mean this networking team would not have to touch or use RDM/DVLS in any way. This would be good for adoption as it will not require everyone to completely switch their toolset. I am aware of the "Netbox synchroniser", but that is specific to Netbox, is only available on Windows clients and is limited in its scope. What I am proposing is much more middleware which would not be application-specific and means: "To get the IP for this device call: programX --get_ip --device_id=$SOME_UUID$" , where "$SOME_UUID$" could be a custom variable RDM session interface. Such a "Custom credential" entry would technically only have to exist once per repository and everything in that repository could link to it. Whatever program or script someone chooses to put in there could potentially make use of $SESSION_ID$ or any other available Variable. In case there are any concerns about adding programs to the DVLS server, instead of running a local binary you could also include the option to send an HTTP request which would return credential information. This should be kept simple and general. So just send GET to a provided URL, with basic token, custom request with variable substitution and potentially a template for the response, or option to specify json keys. It would be up to the customer to write their own simple webserver to act as proxy between DVLS and their own system. I understand that some of what I propose may invoke the question: "Why not use RDM for that, instead of external tools?" And the answer to that is that it would help transition, it would make more people open to the idea of using RDM in their team and allow them to make use of existing (credential) infrastructure and keep using their own tools. Also, think about what this could mean for the existing integrations and that it would open up the possibility for others to contribute code in a pluggable manner. You could write a small spec, and let people add a github url to extend the available (credential) integrations. This feature would be for "advanced" users, meaning you won't have to provide much in term of support, documentation or maintenance. Just run whichever process the user provided, the rest is up to the end-user.

I'd love to be able to manage DNS from within Remote Desktop Manager similarly to how Active Directory works within RDM. It'd make it a lot easier than using a jump server or RSAT tools (currently we have a few IT people using ARM laptops which RSAT Tools isn't even available for)

For an SSH connection under Terminal -> Advanced -> SFT settings one can configure Home directory Starting location Zmodem download directory None of these settings will in anyway allow you to change in which folder the local side (where RDM runs) will startup. It makes no sense to have the above 3 settings if none of them is able to change where I will start on my local filesystem. That said it also makes no sense for me to have the Entire "SFTP settings" within the Terminal Tab. It should have its own tab "SFTP" or "Filetransfer". I did not even recognize that there is an SFTP option in there for a very long time. Thanks in advance [image]

ssh host > open embedded SFTP\SCP - Select folder with files, at down menu Ctrl+A - only available options is download, no remove uvailable. - Impossible to disselect files. - F2 rename menu - can't close with Esc. - Can't leave home (connection) directory. - Edit\upload at not home (permissions) directory don't work. Nothing happens. This mode looks like WinSCP, but can't replace any of it functions. Literally only files download from home directory is working, but only if you are owner of them - never.

the Bitwarden entry is not currently supported directly in the Devolutions Hub Business web interface for launching and pushing credentials to an RDP session. To use this workflow, you will need to open the session through Remote Desktop Manager or, at minimum, Devolutions Launcher.

im using 2026.1.22.0 64-bit (PreJIT) Free Version and I have the synchronizer working and its syncing everything over but not ssh keys. My Vaultwarden server version is 1.36

Hello, can you add a set of predefined themes to the SSH connection in the application, similar to the Termius app. Additionally, you can create a theme switch, such as a dropdown list, on the top panel of the SSH connection.

Hi team, I'd like the following improvements to password list (the credential type "password list"): The ability to easily add/edit multiple password entries in password list. There are scenarios when some credentials are generated in bulk for many machines/services etc. for example by using the RDM's Password Generator. I'd like to be able to add them all to the single Password list entry (while preserving entries already existing in the password list). Maybe an editable table would do. Adding ~40 passwords by opening dialog window for every single one of them is extremely ineffective. It feels like using ERP software from '90s. The ability to easily bulk import password list data from CSV/XLS etc. Currently by importing "credentials" it wants to create 40 separate entries for me, not a single password list with 40 password entries. [Update]: I discovered the feature to convert individual passwords into a password list, that may be a solution for the time being. A documentation and examples for handling Password List from PowerShell. Missing the above abilities, I tried to invent a PowerShell way of doing that. Unfortunately I could not come up with my own solution, and all the greatest AIs hallucinated so much that the code was unusable :-) I got the existing Password List entry using Get-RDMEntry , but there was no easy way of managing the embedded password entries. [Update] I found out that it's hidden in the $entry.Credentials.PasswordList ... Please document it better with an example... All I could find was the official doc for the UI and the old blog post, nothing for PowerShell. [EDIT] Please also add in the example how to extract password from a password list entry. The following doesn't work: get-rdmEntryPassword $entry.credentials.passwordlist[1] Get-RDMEntryPassword: Cannot bind parameter 'InputObject'. Cannot convert the "RemoteDesktopManager.PowerShellModule.PSOutputObject.PSPasswordListItem" value of type "RemoteDesktopManager.PowerShellModule.PSOutputObject.PSPasswordListItem" to type "RemoteDesktopManager.PowerShellModule.PSOutputObject.PSConnection". Same for removing password list entry: $entry.credentials.passwordlist.RemoveAt(0) MethodInvocationException: Exception calling "RemoveAt" with "1" argument(s): "Collection was of a fixed size." Thanks.

Hi, Team Thank you to create such good production. Here is one area maybe you can make this product better: We could have macro button on terminal, but it has text context after each button, it takes quite some space, is possible change to only show button, the text will fly out when user click on it. It will save space and make GUI more clean and simple. [image] 2nd is possible add a folder selection at right, so user can select different script folder to run differnt script? something like this: [image] Thanks for considering.

Hello It's 2026 and we have databases which can handle millions of entries with no problem. In RDM when we have 4000 entries, we get messages, that the vault has a large number of entries and the performance is impacted. Is that something that could be enhanced in a next version, instead of bringing many new features. ;-) We think 4000 entries, are not to many today.

Hi, have done a bit of searching on this and it appears some versions of RDM allow for a Width/Height offset. I am unable to find this setting in 2026.1.19.0. Has it been deprecated? Looking for the possibility of creating a "margin/border" within the work area for RDP sessions. Illustrated in photo below. The custom resolution works fine for this on the main productivity "office" machine. When using RDM on laptops in the field, it gets a bit tricky. Ideally a -20 or 40px width/height offset would be fantastic. Thank you! [image] [image]

Hi Is possible to provide a side panel to display all inputted command history for terminal type connection, user can select it and run in terminal again ? It will be very useful for terminal users.

Hi, I have a setup where i have a vault per customer. In each vault we have a SSH VPN like this (including customer specific gateway config to connect) [image] I then have a customer specific template ie for ssh where i have the socks proxy configured [image] My question is then, would it be possible to somehow, have it so that i have the "proxy VPN" entry in the vault for creating the proxy like i have now. And then only have 1 SSH template which i can use for all ? I tried briefly to use dynamic port on the proxy entry, but i could not see a way to use the $DYNAMIC_PORT$ variable in the template. I also tried to create a variable in the vault with the customer specific port, but i then again ran into not being able to use it. I even tried to export the template and replace the port with the variable in the .rdm file, but then RDM do not want to import it. Do you have any suggestions for a way to achive this ?

Hi, I love the Entra ID dashboard and would love to use it to access our customers tenants. We have access to our customers tenants through GDAP and it would be fantastic if we could create users, groups and assign licenses through the Entra ID dashboard. We access all customers with the same user (like user@contoso.com) and that user has access to several tenants. So we would need some option to select or type in the specific tenant ID we would like to manage. This would be a great feature for us! [image]

Hi Is possbile to select template group when I create entries from network box synchornize? Currently it only allow me select template not template group? Thanks

Our most active external customer requires that we use the Juniper VPN ( Juniper Secure Connect | Junos OS | Juniper Networks ) to establish a remote connection with them. Would be good if this was supported natively.

Hello Devolutions Team, I just want to ask if there is an option to disable the "copy to yubikey" button from the "credential management" template via Group policy or Registry key. GPO would be preffered. Thank you in advance. Philipp [image]

Hello Devolutions Team, we are currently using a shared vault within our team and would like to suggest an enhancement regarding permission management and change control. At the moment, users with write access can directly modify or delete entries. Restricting those permissions completely is also not ideal, because it would require users to contact team leads or administrators for every small change. A more flexible and secure approach would be a built-in approval workflow or change request system, similar to how firewall or infrastructure changes are handled in enterprise environments. Example workflow: Users can propose changes to entries (edit, move, delete, etc.) The changes are submitted as a “Change Request” Designated approvers (e.g. team leads or admins) receive a notification The change only becomes active after approval Optional: audit trail/history of requested and approved changes This would improve: Security and governance Protection against accidental deletion or modification Delegation without giving full unrestricted write access Transparency and accountability within shared vaults Is something like this planned for future versions, or could it be considered as a feature request? Thank you!

Hi, We are in the process of introducing the Password Safe from Netwrix. The connection to RDM is very important to us. Unfortunately, all passwords are listed one below the other in the connection, which makes it almost impossible to assign the passwords (see screenshots above). Is there a chance to include the OU (organizational unit) here? This would make the plugin usable as it is with other plugins with the folders? Otherwise the connection with the plugin is totally pointless with several 100 passwords. Greetings Sebastian

I don't know if im just not seeing the right location to enable this or if its not a feature yet, but I have all my VMs stored in separate folders and all my users have access to just the folder groups they need. When I use the VMWare dashboard it does not show the folder groups and just lists all the VMs the user has access to in one large list. Is there a way to break this out into the same folder tree form that is shown in VMWare workstation and vCenter? [image]

Hi, when you have many entries that request a Jump Host to connect, RDM focus pointer always on the Jump Host on the navigation pane on the left. This is very annoying, especially when you have to scroll up/down through many entries. It should be better to stay on the selected entry because you can see the Jump Host on the right in the main part. Another annoying behavior is that when the login in the entry fails, for example because it doesn't exist anymore or it is not reachable or the password is wrong, RDM jump into the Jump Host and you have to re-search again to find the entry you need. Please try to improve this annoying behavior.

The ability to export complete vaults, including OTP secrets, would be extremely helpful. This feature is essential, especially when exporting customer vaults, for example, to hand them over to the customer. The export itself doesn't necessarily have to be done via the RDM client; using PowerShell would suffice, in my opinion.

Hello Devolutions Support, I would like to request an enhancement regarding the CyberArk integration in Remote Desktop Manager. Example : - Connection type: RDP entry - Entry settings: Advanced -> CyberArk - “Connect on double click” = Yes - “Preferred component” = PSM-RDP [image] Issue If the CyberArk Dashboard (in RDM) is not connected/logged in, double-clicking the RDP entry triggers a generic Microsoft RDP error message (e.g., “Remote Desktop can’t connect…” / “Remote access to the server is not enabled…”). This message is misleading because the real cause is that RDM is not authenticated/connected to CyberArk, so it cannot properly initiate the PSM-RDP flow. [image] Steps to reproduce 1) Ensure the CyberArk Dashboard in RDM is disconnected (not logged in). 2) On an RDP entry, set Advanced -> CyberArk: - Connect on double click = Yes - Preferred component = PSM-RDP 3) Double-click the entry. Actual result - RDM shows a generic RDP connectivity error (Windows/RDP), which suggests network/RDP configuration issues. Expected result - RDM should detect that the CyberArk Dashboard is not connected and display a clear message such as: “You are not connected to the CyberArk Dashboard. Please connect/login to CyberArk before starting this session.” Attachments - I attached screenshots showing the entry configuration and the misleading error message. Environment - RDM version: [2026.1.14.0 and 2026.1.19.0] - CyberArk integration/plugin version : PVWA 14.2 - CyberArk component: PSM-RDP but same issue with Web connector Could you please confirm if this behavior is expected today, and if an improvement like the above could be considered in a future release? Thank you, Brice Boyer

Hello, I’m writing to ask whether the integration of AWS Console sessions with Amazon’s internal authentication system ( AWS SSO ) is currently on the roadmap or already available. In our company, we need to manage multiple AWS tenants. To access them, we typically use AWS SSO, which allows a defined user to assume the corresponding IAM roles associated with each tenant. From what I’ve seen, the current RDM session only supports connecting to a specific tenant using an internal IAM user for that tenant. Will it be possible to manage access to multiple tenants via AWS SSO in the future? Thank you!

I cannot find any scenario where any $SITE_XX$ variables I've tested function. Based on the documentation below, I would expect an Entry/Folder would be able to reference the values of the Site entry associated with the entry under View > Asset > Location: Site entry If this is not the intended use-case for the $SITE_XX$ variables, it would be helpful for an explanation of where they can be used, because I can't think of another purpose for them. Access and manage variables - Devolutions Documentation