Segregation of duties

Hi folks,

Due to segregation of duties, we have this scenario:

“Developers” are allowed to push deployments to any non-Production environment, but will have no access to deployments done to Production, apart from view-only.
“Approvers” are the only people allowed to promote releases to Production (with access to non-Prod environments also, although this will rarely be used).

What’s the best way to set this up within the Octopus permissions system?


Feel free to close this - I’ve found the answer on your site elsewhere. Thanks!


i am glad that you were able to find what you needed. Please don’t hesitate to reach out if you have any further questions or issues.