Hi @dfsense and welcome to the community,
As of now I do not believe there is any ability directly to transfer the entire vault contents of a user to someone else such as a manager, or even for that matter directly into a shared Organization collection for access.
The best recommend I can give currently would be the use of Admin Password Reset, coupled with your standard Employee succession and off-boarding procedures.
As an example,
- Receive HR notification of employee off-boarding
- Reset login/email password and disable on your IDP
- Reset user Bitwarden password with Admin Password Reset feature
- Use new password to login, and change User Bitwarden password.
- Depending on your configuration with 2FA you may need to access your email system, IDP for SSO, or you can use the Bypass option for a user 2FA if you use Duo for Organizations.
(If none of these work, you will have to resort to deleting the account detailed in Step 7 to delete without logging in) - Audit vault items, and move them to a shared Organization collection (Best option here is to create a specific collection for that user)
- When you are satisfied and wish to delete the account, follow the steps in the Help docs.
All this being said, this is the best flow I have found currently. As I understand the Roadmap has a currently planned expansion for better Account management and deprovisioning so hopefully many more things to come. 