Each Role in Devolutions Hub has its own set of Permissions.
Permissions
| PERMISSION | RESTRICTED | READERS | PRIVILEGED READERS | OPERATORS | PRIVILEGED OPERATORS | CONTRIBUTORS | vault OWNERS |
|---|---|---|---|---|---|---|---|
| View vault | |||||||
| View entries | |||||||
| Manage vault | |||||||
| Add entries | |||||||
| Edit entries | |||||||
| Delete entries | |||||||
| Connect (execute) | |||||||
| View password | |||||||
| View sensitive | |||||||
| View password history | |||||||
| View sensitive history | |||||||
| Manage attachments | |||||||
| Manage documentation |
Sensitive information permissions
In Devolutions Hub, all sensitive information is hidden by default. Some can be viewed by anyone that has access to the entry by clicking on the eye icon, and others require View sensitive or View password permissions to be viewed. The value of a hidden custom field is also encrypted and protected with the View sensitive permission.
The View sensitive permission is granted to Reader, Operator, Contributor, and Manager roles, while the Contributor or Manager roles are required for the View password permission. Therefore, even if passwords are indeed sensitive information, you will not be able to view them with the View sensitive permission alone.
You can see the difference between the View sensitive permission and View password permission icons in the image below.
