> For the complete documentation index, see [llms.txt](https://docs.devolutions.net/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://docs.devolutions.net/rdm/ribbon-menu-bar/administration/system-permissions.md).

# System permissions

{% tabs %}
{% tab title="Windows" %}
The ***System permissions*** allows to grant some administrative permissions to standard users without making them administrators. The ***default*** setting inherits the permission set on the user or user groups.

{% hint style="info" %}
This feature is only available when using an [advanced workspace](https://docs.devolutions.net/rdm/workspaces/workspace-types/native-workspaces/). For more information about permissions, consult [simplified security](https://docs.devolutions.net/rdm/user-groups-based-access-control/scenarios/simplified-security/) or [advanced security](https://docs.devolutions.net/rdm/user-groups-based-access-control/scenarios/advanced-security/).
{% endhint %}

### Entries

![](https://cdnweb.devolutions.net/docs/RDMW6100_2025_1.png)

<table><thead><tr><th width="164.99993896484375">OPTION</th><th>DESCRIPTION</th></tr></thead><tbody><tr><td><strong>Import</strong></td><td>Allow users / user groups to import entries in the workspace.</td></tr><tr><td><strong>Export</strong></td><td>Allow users / user groups to export from the workspace.</td></tr><tr><td><strong>Add in root</strong></td><td>Allow users / user groups to create entries in the root folder.</td></tr><tr><td><br><strong>Vault</strong> <strong>settings</strong></td><td>Allow users / user groups to access the vault properties.</td></tr></tbody></table>

### Miscellaneous

![](https://cdnweb.devolutions.net/docs/RDMW6101_2025_1.png)

<table><thead><tr><th width="224.199951171875">OPTION</th><th>DESCRIPTION</th></tr></thead><tbody><tr><td><strong>Activity logs</strong></td><td>Allow users / user groups to view the activity logs.</td></tr><tr><td><strong>Reports</strong></td><td>Allow users / user groups to generate and view reports.</td></tr><tr><td><strong>Deleted entries</strong></td><td>Allow users / user groups to view and restore deleted entries.</td></tr><tr><td><strong>Administration logs</strong></td><td>Allow users / user groups to view the administration logs.</td></tr><tr><td><strong>Check in (force)</strong></td><td>Allow users / user groups to check in entries with the checked out state.</td></tr><tr><td><strong>Flag as closed</strong></td><td>Allow users / user groups to mark terminated sessions as closed in the log.</td></tr><tr><td><strong>Entry security analyzer</strong></td><td>Allow users/user groups to use the Entry security analyzer.</td></tr></tbody></table>

### Tools

![](https://cdnweb.devolutions.net/docs/RDMW6102_2025_1.png)

<table><thead><tr><th width="244.99993896484375">OPTION</th><th>DESCRIPTION</th></tr></thead><tbody><tr><td><strong>Console management tools</strong></td><td>Allow users / user groups to use console management tools.</td></tr><tr><td><strong>Buit-in tools (Wake-on-LAN, NetStat, Ping...)</strong></td><td>Allow users / user groups to use session related tools.</td></tr><tr><td><strong>Macros/Script/Tools entry</strong></td><td>Allow users / user groups to use Macros/Script/Tools entries.</td></tr><tr><td><strong>Remote tools</strong></td><td>Allow users / user groups to use remote tools.</td></tr><tr><td><strong>Web management tools</strong></td><td>Allow users / user groups to use web management tools.</td></tr></tbody></table>

### Templates

![](https://cdnweb.devolutions.net/docs/RDMW6103_2025_1.png)

<table><thead><tr><th width="206.5999755859375">OPTION</th><th>DESCRIPTION</th></tr></thead><tbody><tr><td><strong>Templates</strong></td><td>Allow users / user groups to create and manage templates.</td></tr><tr><td><strong>Password templates</strong></td><td>Allow users / user groups to create and manage password templates.</td></tr></tbody></table>

### Management

![](https://cdnweb.devolutions.net/docs/RDMW6104_2025_1.png)

<table><thead><tr><th width="169.79998779296875">OPTION</th><th>DESCRIPTION</th></tr></thead><tbody><tr><td><strong>Users</strong></td><td>Allow users/user groups to access the user management.</td></tr><tr><td><strong>Vaults</strong></td><td>Allow users/user groups to manage vaults.</td></tr><tr><td><strong>User groups</strong></td><td>Allow users / user groups to access the user groups management.</td></tr><tr><td><strong>Licenses</strong></td><td>Allow users / user groups to access licenses.</td></tr><tr><td><strong>Systems settings</strong></td><td>Allow users / user groups to access the System settings.</td></tr><tr><td><strong>System images</strong></td><td>Allow users / user groups to access the System images.</td></tr></tbody></table>

### See also

* [Devolutions Academy - Managing system permissions and users](https://academy.devolutions.net/student/path/1925039/activity/2667178)
  {% endtab %}

{% tab title="macOS" %}
The ***System permissions*** allows to grant some administrative permissions to standard users without making them administrators. The ***default*** setting inherits the permission set on the user or user groups.

{% hint style="info" %}
This feature is only available when using an [advanced workspace](https://docs.devolutions.net/rdm/workspaces/workspace-types/native-workspaces/). For more information about permissions, consult [simplified security](https://docs.devolutions.net/rdm/user-groups-based-access-control/scenarios/simplified-security/) or [advanced security](https://docs.devolutions.net/rdm/user-groups-based-access-control/scenarios/advanced-security/).
{% endhint %}

### Entries

![](https://cdnweb.devolutions.net/docs/RDMM4059_2025_1.png)

<table><thead><tr><th width="165.79998779296875">OPTION</th><th>DESCRIPTION</th></tr></thead><tbody><tr><td><strong>Import</strong></td><td>Allow users / user groups to import entries in the workspace.</td></tr><tr><td><strong>Export</strong></td><td>Allow users / user groups to export from the workspace.</td></tr><tr><td><strong>Add in root</strong></td><td>Allow users / user groups to create entries in the root folder.</td></tr><tr><td><strong>Vault</strong> <strong>settings</strong></td><td>Allow users / user groups to access the vault properties.</td></tr></tbody></table>

### Miscellaneous

![](https://cdnweb.devolutions.net/docs/RDMM4060_2025_1.png)

<table><thead><tr><th width="219.39996337890625">OPTION</th><th>DESCRIPTION</th></tr></thead><tbody><tr><td><strong>Activity logs</strong></td><td>Allow users / user groups to view the activity logs.</td></tr><tr><td><strong>Reports</strong></td><td>Allow users / user groups to generate and view reports.</td></tr><tr><td><strong>Deleted entries</strong></td><td>Allow users / user groups to view and restore deleted entries.</td></tr><tr><td><strong>Administration logs</strong></td><td>Allow users / user groups to view the administration logs.</td></tr><tr><td><strong>Check in (force)</strong></td><td>Allow users / user groups to check in entries with the checked out state.</td></tr><tr><td><strong>Flag as closed</strong></td><td>Allow users / user groups to mark terminated sessions as closed in the log.</td></tr><tr><td><strong>Entry security analyzer</strong></td><td>Allow users/user groups to use the Entry security analyzer.</td></tr></tbody></table>

### Tools

![](https://cdnweb.devolutions.net/docs/RDMM4061_2025_1.png)

<table><thead><tr><th width="244.20001220703125">OPTION</th><th>DESCRIPTION</th></tr></thead><tbody><tr><td><strong>Console management tools</strong></td><td>Allow users / user groups to use console management tools.</td></tr><tr><td><strong>Buit-in tools (Wake-on-LAN, NetStat, Ping...)</strong></td><td>Allow users / user groups to use session related tools.</td></tr><tr><td><strong>Macros/Script/Tools entry</strong></td><td>Allow users / user groups to use Macros/Script/Tools entries.</td></tr><tr><td><strong>Remote tools</strong></td><td>Allow users / user groups to use remote tools.</td></tr><tr><td><strong>Web management tools</strong></td><td>Allow users / user groups to use web management tools.</td></tr></tbody></table>

### Templates

![](https://cdnweb.devolutions.net/docs/RDMM4062_2025_1.png)

<table><thead><tr><th width="203.4000244140625">OPTION</th><th>DESCRIPTION</th></tr></thead><tbody><tr><td><strong>Templates</strong></td><td>Allow users / user groups to create and manage templates.</td></tr><tr><td><strong>Password templates</strong></td><td>Allow users / user groups to create and manage password templates.</td></tr></tbody></table>

### Management

![](https://cdnweb.devolutions.net/docs/RDMM4058_2025_1.png)

<table><thead><tr><th width="177">OPTION</th><th>DESCRIPTION</th></tr></thead><tbody><tr><td><strong>Users</strong></td><td>Allow users to access the user management.</td></tr><tr><td><strong>User groups</strong></td><td>Allow users / user groups to access the user groups management.</td></tr><tr><td><strong>Vaults</strong></td><td>Allow users/user groups to manage vaults.</td></tr><tr><td><strong>Systems settings</strong></td><td>Allow users / user groups to access the System settings.</td></tr><tr><td><strong>Licenses</strong></td><td>Allow users / user groups to access licenses.</td></tr><tr><td><strong>System images</strong></td><td>Allow users / user groups to access the System images.</td></tr></tbody></table>

### See also

* [Devolutions Academy - Managing system permissions and users](https://academy.devolutions.net/student/path/1925039/activity/2667178)
  {% endtab %}
  {% endtabs %}


---

# Agent Instructions
This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com.

## Querying This Documentation
If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.devolutions.net/rdm/ribbon-menu-bar/administration/system-permissions.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.