Set permissions for Disk Encryption Manager

Permissions in RMM are a method of controlling access to customers, devices and RMMfeatures based on the roles of the user. Users with the Managed Antivirus – Settings & Policies permissions will be able to enable or disable Disk Encryption Manager. You can also set the Disk Encryption Manager Recovery Key retrieval and associated reporting permissions separately.

The permissions associated with Disk Encryption Manager are enabled by default for users with the default Administrator or Superuser role.

Setting Recovery Key Retrieval permission

Once logged into the RMM dashboard, to allow or deny a user role permission to retrieve the Recovery Key:

  1. Select Settings > Users > Roles and Permissions
  2. The Roles and Permissions dialog opens. Highlight the target Role in the left-pane
  3. In the right-pane, scroll to the Features section
  4. Click the radio button next to Recovery Key Management in the relevant column to Allow or Deny (The user role must already have the Managed Antivirus permission enabled)
  5. Click Save when you have set the permissions

Setting Disk Encryption Manager Reporting Permissions

Once logged into the RMM dashboard, to allow or deny a user role permission to run Disk Encryption Manager reporting

  1. Select Settings > Users > Roles and Permissions
  2. The Roles and Permissions dialog opens. Highlight the target Role in the left-pane
  3. In the right-pane, scroll to the Reporting section
  4. Click the radio button next to the Disk Encryption Report in the relevant column to Allow or Deny
  5. Click the radio button next to the Recovery Key Report in the relevant column to Allow or Deny
  6. Click Save when you have set the permissions
  7. Both reports can be denied or allowed simultaneously by clicking the radio button in the relevant column to Allow or Deny next to Disk Encryption.