Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


488 posts

Ultimate Geek
+1 received by user: 80

Trusted

Topic # 193606 16-Mar-2016 21:28
Send private message

Hi

 

What password safe do you use at work and what is great about it?

 

I have started work upgrading an environemnt and one of the risks we have identified is the password sharing and management is 1990. They use a program called RDM (Remote Desktop Manager) it has a database plugin and can be saved offline, encrypted. It has multi user capability but that is not being used and seems pretty complex to setup. Seems this app is ideal for a small IT shop as it also includes clients like SSH, MSTSC etc, such that any user can select a password and go to that place and be logged in automatically. Nice, but makes admin and security lazy becasue now everybody just logs in as root or local admin.

 

I'm looking for some experience feedback and suggestions for a simple app I can share on a network, offline cache (encrypted) has multiple levels of security, multiuser and possible even notifications.... This will only be for a few passwords as we are going to consolidate everything to work under AD as the source of truth and we only have a few devices and services that need to be recorded someplace.

 

Your feedback and discussion is gratefully acknowledged.

 

Thanks

 

 

 

Gund

 

 

 

 


View this topic in a long page with up to 500 replies per page Create new topic
 1 | 2 | 3
876 posts

Ultimate Geek
+1 received by user: 572

Trusted

  Reply # 1514736 16-Mar-2016 21:34
One person supports this post
Send private message

We use Password Manager Pro for our team of 30.

3119 posts

Uber Geek
+1 received by user: 1663

Subscriber

  Reply # 1514740 16-Mar-2016 21:39
Send private message

Excel spreadsheet.

 

Yes it's on my list of things that REALLY need to be changed, but I'm kinda holding off because the bosses preferred replacement is storing on Sharepoint.. in the cloud...

 

 

 

 

 

 

 

 





Information wants to be free. The Net interprets censorship as damage and routes around it.

 

Thinking about signing up to BigPipe? Get $20 credit with my referral link.


What does this tag do
947 posts

Ultimate Geek
+1 received by user: 192

Subscriber

  Reply # 1514742 16-Mar-2016 21:44
One person supports this post
Send private message

For a small team I've used LastPass Enterprise and been pretty happy with it, Multifactor etc. It doesn't quite fit your simple app which can be shared on a network though,




488 posts

Ultimate Geek
+1 received by user: 80

Trusted

  Reply # 1514763 16-Mar-2016 22:17
Send private message

Andib: We use Password Manager Pro for our team of 30.

 

 

 

I'm impressed with the features and facilities of this app. I have request a quote and downlaoded the eval.

 

Thanks for the tip.




488 posts

Ultimate Geek
+1 received by user: 80

Trusted

  Reply # 1514767 16-Mar-2016 22:27
Send private message

Lias:

 

Excel spreadsheet.

 

Yes it's on my list of things that REALLY need to be changed, but I'm kinda holding off because the bosses preferred replacement is storing on Sharepoint.. in the cloud...

 

 

I don't think there is ever a 'stupid' move, but there are some really high risk ones and as long as everybody making the decision understands the risks involved and you have evidence you 'told them so'...

 

 

 

 




488 posts

Ultimate Geek
+1 received by user: 80

Trusted

  Reply # 1514768 16-Mar-2016 22:28
Send private message

jnimmo:

 

For a small team I've used LastPass Enterprise and been pretty happy with it, Multifactor etc. It doesn't quite fit your simple app which can be shared on a network though,

 

 

I have used LP Pro for years personally and I like it very much, but it is not really designed, I think, for IT professionals. I do recommend it to everybody I see saving passwords into a browser becasue it's free version is still so much better and the paid version is literally a few dollars.


2917 posts

Uber Geek
+1 received by user: 276


  Reply # 1514787 17-Mar-2016 00:56
Send private message

I've been meaning to try this one out but just haven't got around to it.
https://www.clickstudios.com.au/




3119 posts

Uber Geek
+1 received by user: 1663

Subscriber

  Reply # 1514921 17-Mar-2016 10:50
Send private message

So this started a bit of a conversation at work. 

 

Different need from the OP, what do people do in large (by NZ standards anyways) enterprise environments.

 

Our IT team is ~80+, supporting ~5000 users. What sort of tools do people use to store passwords in big environments like this. Different teams within IT would need different access to different accounts, granular control etc.

 

My manager wants to know what other large enterprises are doing before he even talks to a reseller about costs/licensing.

 

 

 

 





Information wants to be free. The Net interprets censorship as damage and routes around it.

 

Thinking about signing up to BigPipe? Get $20 credit with my referral link.


956 posts

Ultimate Geek
+1 received by user: 346
Inactive user


  Reply # 1514936 17-Mar-2016 11:17
Send private message

Keepass


1558 posts

Uber Geek
+1 received by user: 352


  Reply # 1514941 17-Mar-2016 11:30
Send private message

JamesL:

 

Keepass

 

 

KeePass Password Safe is free and open source with many ports to other platforms as a lot of people use Keepass on multiple platforms which is a similar issue to multi-user. You can save direct to cloud storage.

 

http://keepass.info/help/base/multiuser.html is worth reading.

 

 


6186 posts

Uber Geek
+1 received by user: 1013

Trusted
Lifetime subscriber

  Reply # 1514946 17-Mar-2016 11:48
Send private message

We wrote our own tongue-out


876 posts

Ultimate Geek
+1 received by user: 572

Trusted

  Reply # 1514947 17-Mar-2016 11:50
One person supports this post
Send private message

Lias:

 

So this started a bit of a conversation at work. 

 

Different need from the OP, what do people do in large (by NZ standards anyways) enterprise environments.

 

Our IT team is ~80+, supporting ~5000 users. What sort of tools do people use to store passwords in big environments like this. Different teams within IT would need different access to different accounts, granular control etc.

 

My manager wants to know what other large enterprises are doing before he even talks to a reseller about costs/licensing.

 

 

 

 

 

 

Sent you a PM


155 posts

Master Geek
+1 received by user: 61

Subscriber

  Reply # 1515022 17-Mar-2016 13:50
One person supports this post
Send private message

Lias:

 

So this started a bit of a conversation at work. 

 

Different need from the OP, what do people do in large (by NZ standards anyways) enterprise environments.

 

Our IT team is ~80+, supporting ~5000 users. What sort of tools do people use to store passwords in big environments like this. Different teams within IT would need different access to different accounts, granular control etc.

 

My manager wants to know what other large enterprises are doing before he even talks to a reseller about costs/licensing.

 

  

 

 

 

 

Start with User Requirements - who needs (that's "needs" not "wants"!) access to what, &c.?

 

Then do Design of the groups and permissions in your Identity & Access Management (IDAM) system - Microsoft AD is amazingly adequate for this
In my experience, nobody should need more than two access IDs and therefore no more than two passwords - one ID is for their 'regular' persona, the other is for their Privileged User role. Typically, a PU logs in with their regular credentials, then uses the 'sudo' / 'access as' facility supported in their operating environment to execute privileged commands.

 

The password for 'root' or 'can do anything anywhere' userID is a very long and really hard to remember string. It is written down on paper, put in an envelope which is sealed and has '"root" password' written on the outside. That is put in another sealed envelope emblazoned "For Emergency Use Only" "Master Password" and put in the locked filing cabinet of the IT Manager / IT Operations Manager.  There will be a second copy in a different location - in one case I caused it to be stored in the Company Solicitor's office off-site. The attached process says that after each use (recorded in a Major Incident log, of course) it must be changed. There should be no 'root'-equivalent accounts

 

Make sure that there is only One Source Of Truth - ideally the HR / Payroll system which feeds the IDAM system automatically.
Do not permit direct manipulation of user details in Exchange / AD - make people change the HR system data then feed through.

 

 


3119 posts

Uber Geek
+1 received by user: 1663

Subscriber

  Reply # 1515027 17-Mar-2016 14:10
Send private message

Andib:

 

Lias:

 

So this started a bit of a conversation at work. 

 

Different need from the OP, what do people do in large (by NZ standards anyways) enterprise environments.

 

Our IT team is ~80+, supporting ~5000 users. What sort of tools do people use to store passwords in big environments like this. Different teams within IT would need different access to different accounts, granular control etc.

 

My manager wants to know what other large enterprises are doing before he even talks to a reseller about costs/licensing.

 

 

 

 

 

 

Sent you a PM

 

 

 

 

Ta, appreciated that.





Information wants to be free. The Net interprets censorship as damage and routes around it.

 

Thinking about signing up to BigPipe? Get $20 credit with my referral link.


913 posts

Ultimate Geek
+1 received by user: 222

Subscriber

  Reply # 1515030 17-Mar-2016 14:14
Send private message

JamesL:

 

Keepass

 

 

We use this too, but we're only a team of 8 people. The built in webdav sync works quite well with multiple people editing the file.


 1 | 2 | 3
View this topic in a long page with up to 500 replies per page Create new topic

Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

N4L helping TAKA Trust bridge the digital divide for Lower Hutt students
Posted 18-Jun-2018 13:08


Winners Announced for 2018 CIO Awards
Posted 18-Jun-2018 13:03


Logitech Rally sets new standard for USB-connected video conference cameras
Posted 18-Jun-2018 09:27


Russell Stanners steps down as Vodafone NZ CEO
Posted 12-Jun-2018 09:13


Intergen recognised as 2018 Microsoft Country Partner of the Year for New Zealand
Posted 12-Jun-2018 08:00


Finalists Announced For Microsoft NZ Partner Awards
Posted 6-Jun-2018 15:12


Vocus Group and Vodafone announce joint venture to accelerate fibre innovation
Posted 5-Jun-2018 10:52


Kogan.com to launch Kogan Mobile in New Zealand
Posted 4-Jun-2018 14:34


Enable doubles fibre broadband speeds for its most popular wholesale service in Christchurch
Posted 2-Jun-2018 20:07


All or Nothing: New Zealand All Blacks arrives on Amazon Prime Video
Posted 2-Jun-2018 16:21


Innovation Grant, High Tech Awards and new USA office for Kiwi tech company SwipedOn
Posted 1-Jun-2018 20:54


Commerce Commission warns Apple for misleading consumers about their rights
Posted 30-May-2018 13:15


IBM leads Call for Code to use cloud, data, AI, blockchain for natural disaster relief
Posted 25-May-2018 14:12


New FUJIFILM X-T100 aims to do better job than smartphones
Posted 24-May-2018 20:17


Stuff takes 100% ownership of Stuff Fibre
Posted 24-May-2018 19:41



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.