Daniele Posted May 2, 2019 Share Posted May 2, 2019 Hi everyone, I've already read this post: and I've updated my Passwordstate to the latest build (v.8679). I've applied the restriction as shown in the image below: and actually, now, users not included in the "Hosts Home Button Permissions" have no access to the button "View All Hosts Records" in the hosts statistics. But, unfortunately they are still able to see all the hosts searching them in the search bar typing part of their name. Example: a user with no access to any hosts' folder can still search the string "." (dot) in the hosts tab and the browser will create a "Temporary Folder Access" with all the hosts whose name field has a dot inside. User with no host's folder access and without "Hosts Home Button Permissions": Once he search "." in the search bar he sees this: And if he clicks on a host shown in the "Temporary Folder Access" he can actually see all the host's details: Is there a way to avoid this kind of information disclosure for certain users/groups? Am I missing something in the correct implementation? I really appreciate how Passwordstate manages policies on the passwords side, but it's very important for an organization with contractors/freelances not to give them unwanted information about hosts. Thank you. Link to comment Share on other sites More sharing options...
support Posted May 2, 2019 Share Posted May 2, 2019 Hi Daniele, Sorry about this, and the reason this is possible is because we're trying to change the software for you to meet your requirements, and it's not really designed to do exactly what you want. We do not have the concept of permissions on Host records, but possibly the following option will help. With the feature below, if you remove permissions to this feature, then that 'Temporary Folder Access' folder will no longer be shown. This means you must use 'Remote Session Credentials' for user's to login to Hosts, and you will not be able to use any local login accounts from within the Passwords tab. Does this help at all? Link to comment Share on other sites More sharing options...
Daniele Posted May 4, 2019 Author Share Posted May 4, 2019 Hi, thank you for your fast support. Your hint actually solves the issue! Regards, Daniele Link to comment Share on other sites More sharing options...
support Posted May 5, 2019 Share Posted May 5, 2019 Excellent - thanks Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now