Feature Request

Hi there Is there a way for getting notified by the action "Entry Export"? We have only a few admins which are allowed to export entries, but it would be nice when there is a way to get notified on entry export action. Thank you.

Hi There, I use the VMware Dashboard in the RDM client. It would be nice if this were also available via the Devolutions Server web interface.

Hi there Due to the deprecation for Basic Authentication in Exchange Online, I would like to request a OAUTH Feature for sending E-Mails in DVLS. Best regards, John

Hey, because we are mainly using Powershell 5 we sometimes need to use the REST-API instead of Devolutions.Powershell (This module requires Powershell 7). It would be really usefull if you could add a connectionType Parameter for your Entry REST-API endpoints. Currently I am retrieving all entries and then I filter them with a Where-Object. Because we do have over 2700 entries this takes way to long. I would be glad if you could implement this :D Thanks a lot Sandro Widmann

Hi there We use intelligent folders to get an overview of all devices from a specific type (i.E. All Citrix NetScalers). We have several vaults and must create those intelligent folders in every vault. It would help to keep one intelligent Folder which queries all vaults for the specific tag to keep one Folder and get all devices across all (or selected) vaults. Best regards, John

I'd like to request the ability to manage my credentials for the following items in the DVLS Web version as can be done in current Remote Desktop Manager. I understand these accounts are available in Web version entries but, currently, you have to logon to RDM or Launcher to be able to "edit" those credentials My personal credentials My privileged account My personal SSH key (not currently used by our group, but also in RDM location so I request to add it)

Hello, I am writing to request a feature enhancement for Devolutions Server. Currently, the system allows for exporting data in various formats, but I would like to suggest adding an option to export the data in JSON format with encryption. This feature would be incredibly valuable for users who wish to store their backups externally (e.g., in cloud storage or Blob storage) while ensuring that sensitive data is securely protected. By exporting the data in encrypted JSON format, users would be able to leverage both the flexibility of the JSON format and the security of encrypted backups, all within one solution. Moreover, having the ability to export backups in an encrypted JSON format would be particularly beneficial in emergency scenarios. If the entire system goes down, the backup could be quickly and securely loaded into Devolutions Hub for recovery, enabling businesses to resume operations with minimal downtime. The ability to export data in an encrypted JSON file would greatly enhance both the flexibility and security of backup management. It would also streamline the recovery process in case of system failure, ensuring that users can quickly access their critical data without relying on the entire Devolutions Server system being online.

Hello, I would like to request a feature that allows granting non-administrative users access to the System Vault with permissions to view, create, and edit scripts. Current Limitation: At the moment, access to the System Vault is restricted to administrators. This forces us to elevate users (e.g., editors or script maintainers) to administrator roles just so they can manage scripts. Problem: Promoting users to administrators solely for script management introduces unnecessary security risks and violates the principle of least privilege. These users do not require full administrative rights, only limited access to specific resources (in this case, scripts within the System Vault). Requested Enhancement: Introduce granular permission controls for the System Vault Allow delegation of script-related permissions (view/edit/create) to non-admin roles Ensure these permissions can be assigned independently of full administrative privileges Benefits: Improved security through proper role separation Reduced risk of privilege misuse Better alignment with enterprise access control best practices Thank you for considering this request. Benjamin Strohmaier

Notification mails are english even if the settings tell german language. Are there a possibility to get the notification mail in german or maybe a template system do do it our self ?

Hi! When you open the Entry security analyzer report with the Show compromised password (pwned) option, the list takes a long time to load because DVLS seems to query api.pwnedpasswords.com for each password sequentially. It's the same in RDM with the Password analyzer. I think this could be optimized. API calls could parallelized, if they are not already. Hashes could be cached for some time, so you wouldn't need to wait for the whole list to load every time you change the filter or switch pages. The query could run in the background and populate the pwned-status field of each entry as they come in, instead of the whole GUI becoming unusable for a long time. You can even download all password hashes and query them offline: https://haveibeenpwned.com/api/v3#PwnedPasswordsDownload Thank you!

Hey everyone, in Devolutions.PowerShell version 2025.3.3, the Restore-DSDeletedUser cmdlet was introduced. We also require the ability to restore roles from the recycle bin via PowerShell. Unfortunately, the Update-DSRole cmdlet does not support this, and Restore-DSDeletedRole does not exist. I would greatly appreciate the implementation of this functionality. Thank you very much. Sandro Widmann

The Certificate Template are not the same any more in de WEB and RDM if a certifcate is upload by RDM you can't open it or download any more in the WEB interface the old structure was beter then the new one. now certificate can be download and new password can be used to store the PFX. this is less secure because certifcate can be saved with new password who aren't stored or be verified please fix this

Hello all, Following a chat with support, it was suggested to create a feature request. This is something that you do with the Business Hub solution. Having an option where entries in a vault are "locked" behind some added security measure. In a SSO environment, using the DVLS Workspace, every entry stored in a vault (user or shared) is available. In some cases, mostly dealing with highly confidential credentials, we think it would be important to have an extra security step. Whether it's asking for the user password again, expiring/refreshing the MFA token or using a pin code. Thanks,

Hello, since it is not possible to access a DVLS if the first two numbers of the version do not match, I would like to suggest the following: When using a DVLS, there should be an option to define in RDM the maximum version for the first two numbers. Example: DVLS is at 2025.3.x RDM is at version 2025.3.x. If RDM is offline, it is offered version 2026.1.x as an update. This must be prevented. When an RDM connects to DVLS, the version number 2025.3.x has to be transmitted and stored. RDM should then only accept update versions 2025.3.x. Only when DVLS is updated to 2026.1 and RDM connects the next time should it receive the new version number and from then on be allowed to install any 2026.1.x version. A 2026.2.x version should also only be offered once the server runs that version. Since we run our DVLS in a highly secure environment, users only connect to the environment and DVLS via VPN from time to time. RDM therefore always starts offline. In our case, offline vaults are only retained for 7 days. Best regards Andreas

Now that there is a docker deployment for the Devolutions Server, it would be great if there was documentation provided on how to deploy the container in a kubernetes deployment (and even providing a Helm chart would be great). This would help my team as we are wanting to put the Devolutions Server in kubernetes, however there is uneasiness about there being no official documentation on achieving this, thus there are questions regarding vendor support. Thanks

I see there is already an operator for syncing Devolutions Server credentials as Kubernetes secrets: https://github.com/Devolutions/dvls-kubernetes-operator I think another fantastic approach would be to integrate with the External Secrets Operator: https://external-secrets.io/ It has support for a number of other credential vaults and I would love to see Devolutions Server support.

Hello everyone, Here is the scenario: A user has 2 groups, which gives access to multiple vaults. He is set up as a default user (with write privileges, but without admin-rights). Group 1 has 1 vault assigned, this is the vault where import/export is enabled Group 2 has 5 vaults assigned, here import/export is disabled Unfortunately, when the user has the right to import/export from Group 1, these rights are also ENABLED for Group 2 and their respective vaults, which should not be the case. At the moment this is a system wide permission, which does not account for the fact, that the user should only be allowed to export/import in one group, but not the other. We would like to propose a change to this behavior: the system wide permission is fine, but there should be an additional option to enable import/export limited to a specific vault, so that users have the possibility to import/export (into) one vault, but not the other. At the moment, we use the workaround to set them as vault owners, but this gives users privileges, that they should not necessarily have. Please let me know, if further information is needed. Thank you very much in advance.

Hello We want to use the dynmic IP List feature. While it's working fine in RDM for Windows, RDM Web does not show any entries: [image] Thank you for fixing. Best regards, John

Hello, Would be handy if expired entries list would also contain the vault folder structure for easier entry identification. This field should also be visible in the scheduled report. BR VP

As a System Owner I want to show only the domain SSO login option when domain SSO is enabled so that I don't confuse my users by being forced to show domain login and domain SSO login options on the authentication page. When domain SSO is enabled, the SSO and regular domain authentication options are displayed. [image]

Hello, I would like to request a small feature: Can you please make Devolutions Gateway compatible with windows certificate store? It would be great if it could be enough to renew the windows certificate and DVG would simply use it, much like IIS does, without having to do an expert (no matter if manual or powershell). Thank you

Hi there I see the following added a while back: "Allow any additional hosts with Devolutions Gateway" option in website connection settings" This is a great option yet only configurable via RDM - I expect/hope that while the option can only be enabled via RDM, it actually works via Launcher as well. Please make the option available to be configured via Web, so it can be used with Launcher as well. Thank you

Hi, inside the RDM the Entry Security Analyzer has much more fields than inside DVLS. Could you please improve the report in DVLS? Would be great to define by our own which fields are shown. We miss the status for an entry for example. Regards, Ingo

Can we please get a sort priority option for vaults?

Could we have options to run Synchrnoizers that are scheduled from DVLS more than 1/day. I'd like to see an option for every X hrs starting at specified time. So you could say every 4hrs starting at midnight or something along those lines. My biggest complaint is from users who are building new servers and want the VMRC console before it syncronizes, which is running as a background job on my RDM instance, because the server-side scheduler has a bug that creates duplicates every time it has run. I've trained them to use the vmware dashboard and to connect that way for now. Thanks!