Permissions, roles, and role based access control (RBAC) in Devolutions Server define who can see or modify system settings, vaults, folders, and entries. Permissions are granular rights such as View, Edit, or View password, applied at vault, folder, or entry level, while roles group permission sets so administrators can assign access by job function instead of per user.
A typical design links directory groups to roles like Help desk, Auditor, or PAM admin, then lets vault owners use those roles when configuring permission sets. This keeps least privilege manageable and ensures changes to group membership automatically flow into Devolutions Server access.
Share your feedback