Collection Management
Collections gather together logins, notes, cards, and identities for secure sharing from an organization. Think of collections as organization-equivalents to folders, with a few key differences:
Organization users control access to organization-owned items by assigning users or groups to collections.
Organization-owned items must be included in at least one collection.
tip
Collection management settings will be available for self-hosted Bitwarden servers in a subsequent release.
Collection management settings can be customized to best fit the needs of your organization. Specifically, there are options located in the Admin Console on the Settings → Organization info view which you can use to:
note
Starting on 03/07/24, organizations that haven't turned on collection management will begin to be migrated in batches to an updated permissions structure. If not migrated yet, your organization will be within the next few weeks or if you manually turn on collection management.
During migration, all Managers are migrated to members with the User role and automatically provided with a new Can manage permission over assigned collections. They will retain the ability to fully manage those collections, including the ability to assign new members or groups access. This will also:
Migrate members with a custom role that includes Edit assigned collections to the User role with Can manage permission over those collections.
Migrate members with a custom role with only Delete assigned collections to the User role with no permission over those collections.
Deprecate the Access all existing and future collections permission and granted all users that had this permission Can manage permission for all existing collections.
Limit collection creation and deletion to owners and admins
This option will dictate whether organization members with the User role are provided with the ability to manage collections.
With this option turned off, users will be freely allowed to create, manage, and delete collections for themselves and their teams. Members who create a collection will automatically have Can manage permission over that collection. They can therefore assign new members or groups access, including adding other members with Can manage permission.
With this option turned on, your owners and admins will be required to create your organization's collections infrastructure on behalf of your users but can also assign individual users to manage the items and people in those collections once created.
tip
Even if turned on, any user can still be granted Can manage permission for a collection so that they can manage its members and contents once created.
For the time being, owners and admins will retain access to all collections that organization members create, however an option to change this behavior will be made available in a subsequent release.