Granular scope controls for Enterprise Policies

Currently, Bitwarden’s Enterprise Policies feature can only be applied on a global basis, but for some policies it would be useful to be able to limit their scope to either a specific group or user(s), such as the policy to disable personal vaults.

The intent for this change request is to enable flexibility for businesses to set up environments tailor made for accounts with special requirements, like managed role-based accounts that should only have a specific set of organisation logins available and no option to save accounts of their own.

As it stands a lot of trade-offs have to be made for clients due to the all-or-nothing setup, and it makes it difficult for us to prepare solutions that address edge cases.

1 Like