System Administrator Portal
The Bitwarden System Administrator Portal can be used to:
View and delete registered users.
View and delete registered organizations.
note
The System Administrator Portal does not provide access to the protected data (for example, vault items) of the server's users or organizations.
Configure user access
Users will log in to the System Administrator Portal using a secure magic link sent to their email inbox. To configure who has access, add authorized email addresses:
tip
Because the System Administrator Portal uses email to facilitate access to authorized users, you are required to setup an SMTP mail server prior to any user attempting to log in to the portal.
Also note that emails authorized to use the System Administrator Portal are not required to have Bitwarden accounts on your server that use the same email addresses.
Add authorized email addresses in a comma-separated list to the adminSettings__admins=
variable in your global.override.env
file:
BashadminSettings__admins=john@example.com,bill@example.com,tom@example.com
Whenever you make changes to global.override.env
, perform a ./bitwarden.sh restart
to apply your configuration changes.
Access the portal
The System Administrator Portal for your server is available at https://<your.domain.com>/admin
. When a user attempts to log in, a secure link is sent to their email address only if that email address is authorized using the process documented above.
Clicking this temporary link, which is active for 15 minutes following the login attempt, will log that user into the System Administrator Portal.