Auditor Role in Devolutions Server
0 vote
Hi together,
it would be very helpful to have a "auditor role" additionally to the 4 existing user types.
Auditors should be able to "see" everything, but should not be able to change anything.
Like an administrator of devolutions server, that can't change anything.
Maybe an admin can choose, what an auditor can see, for example vaults, and not settings.
Auditors should see the entries, permissions etc., but of course not the password itself...
Kind Regards and keep up the good work
Luke
All Comments (3)
Hello Luke,
Thank you for your suggestion. Have you try the read-only user ? Is it what you need ? Of course, you will have to give access to vaults. Let me know if it can help.
Best regards,
François Dubois
3b9c7008-3026-4457-8594-3e5a8540ae71.png
Hi François,
if i give the auditors that kind of right, they would need every available AD Group to get to the destinations in the Vault and also they could see every password.
In my understanding, a auditor role shoule be able to access every path, see permissions, usernames and descriptions, but not the passwords or the keys themselfes.
They should also be able to view logs, reports and settings (for example the "alerts" in the subscriptions)
They should not be able to change anything.
Kind Regards
Luke
Hello Luke,
Thank you for your answer. I understand your need, but we don't have a such feature planned short term. We are taking note of your request and we will follow this topic to see if there's any additional interest or input from other users.
Best regards,
François Dubois