Multiuser password management for organizations
April 23, 2014 11:57 AM
I'm looking for a secure method for storing a large collection of passwords for things like vendor websites, pieces of equipment that don't support multiple user accounts, and other situations where each employee of our company having an individual account would be impractical or impossible. The password solution itself can be cloud-based (preferable) or locally hosted but should be accessible from anywhere by relatively non-technical end users.
I use 1Password personally and would love to see that basic functionality extended to an interface that is shared among multiple users, with administrators having the right to add/revoke access to collections of stored credentials on a per-user basis.
I know that ideally we would use RADIUS wherever possible and otherwise set up an individual account on every device or service for each user that needs to access that thing, but please take it as given that this is not feasible for some cases. I'm looking for a password vault to mitigate the risk involved in having shared credentials that must be used by multiple people, not suggestions for ways to stop sharing credentials.
Does such a thing exist?
I use 1Password personally and would love to see that basic functionality extended to an interface that is shared among multiple users, with administrators having the right to add/revoke access to collections of stored credentials on a per-user basis.
I know that ideally we would use RADIUS wherever possible and otherwise set up an individual account on every device or service for each user that needs to access that thing, but please take it as given that this is not feasible for some cases. I'm looking for a password vault to mitigate the risk involved in having shared credentials that must be used by multiple people, not suggestions for ways to stop sharing credentials.
Does such a thing exist?
We were discussing last week in our staff meeting. Apparently LastPass Enterprise does that sort of thing. You can set up very secure passwords that the end users never actually know, thus if somebody leaves the company your risk is significantly reduced.
posted by COD at 12:12 PM on April 23, 2014
posted by COD at 12:12 PM on April 23, 2014
Take a look at Passwordstate. It works fairly well for us with things that need to be shared across departments.
posted by Nonsteroidal Anti-Inflammatory Drug at 12:16 PM on April 23, 2014
posted by Nonsteroidal Anti-Inflammatory Drug at 12:16 PM on April 23, 2014
We use Secret Server. I'm not a super fan of it compared to LastPass or 1Password for personal use, but it's self hosted, which we needed/wanted.
posted by togdon at 2:32 PM on April 24, 2014
posted by togdon at 2:32 PM on April 24, 2014
Check out Rattic -- it does exactly what you want.
posted by nonspecialist at 3:16 AM on April 25, 2014
posted by nonspecialist at 3:16 AM on April 25, 2014
This thread is closed to new comments.
posted by Cosine at 12:00 PM on April 23, 2014