How does your company do "Enterprise" Password Management?

security passwords enterprise
30,058

Solution 1

We have managed to plan our company applications so they are mainly web based and open source or in-house developed. This then allowed us to use LDAP to hook into active directory for logging into our intranet. From there we modified the logins into various products we use (MediaWiki, Wordpress, SugarCRM etc.) so that if the user is authenticated in the intranet, they are automatically logged into these other products as well.

This has taken some time setting up the process and creating a script to set all the appropriate user details in each system when someone joins the company, however now we have a situation where everyone only has to remember one password, removing the need for managing a growing list of passwords.

Obviously this may not be viable in many companies, but now that we have it setup it was worth the effort.

Solution 2

I thought I'd report back after my week of searching...

I've settled on PassPack I've been using it for a few days now for my personal passwords and I'm a total fanboy.

They use the Host-Proof Hosting pattern so the only one that can access your stuff is you and if you forget your password they can't help you.

They have some nice Offline apps written with Adobe AIR and Google Gears.

But, best of all, they fit my "enterprise" requirement because an upcoming release will support sharing within a trusted group.

Plus, I learned about The "Blog" of "Unnecessary" Quotation Marks in their forum.

Solution 3

We maintain an in-house Lotus Notes database that stores absolutely everything from passwords to server change records. It is big, cumbersome, takes an age to load, and is generally not, uh, nice.

No, this is not a sane way to do it. :-|

Solution 4

We use Password Agent: http://www.moonsoftware.com/pwagent.asp

It stores everything from PC admin logins to website logins and product keys for products we all use.

Solution 5

We use Active Directory to store user credentials, and developed custom library for Desktop and Web

Share:
30,058
JJohnson
Author by

JJohnson

I'm a developer at One Cow Standing in Durham NC. We do all types of development: J2EE, Flex, Android, etc.

Updated on October 17, 2020

Comments

  • JJohnson
    JJohnson over 3 years

    We've talked about personal password management here but how do you guys manage your passwords at a company wide level?

  • Calvin
    Calvin about 15 years
    I'm also looking for a good password management system, but I can't trust a site that won't let me see their privacy policy or terms of service. I went as far as creating a packing key, but when it asked me to confirm that I've read and agreed to their terms of service/privacy policy, I tried clicking on the link. Each time it just logged me out and sent me to their login page. So either their programmers are incompetent, or the company has something to hide. I won't agree to a contract that I can't read, and I would advise others not to either.
  • Aaron Hoffman
    Aaron Hoffman over 14 years
    This is more of a "password architecture" solution, than password management. This does not solve the need to share individual passwords for applications between two users (which can not always be solved the "correct" way. ex: for App DB accounts, Admin accounts, etc.)
  • coreyward
    coreyward about 12 years
    It looks like @Calvin's concerns have since been addressed.
  • qrtLs
    qrtLs about 7 years
    Could you elaborate on the personal security model? Put the passwords.txt into a veracrypt volume?
  • Greg Hewgill
    Greg Hewgill about 7 years
    @ItsmeJulian: I use KeePass (and other compatible programs such as MacPass) for personal passwords.
  • qrtLs
    qrtLs about 7 years
    is there a measure on how to trust the sourcecode, especially guis are errorprone?
  • wst
    wst about 6 years
    Looks like it's Windows only. Big disadvantage for me.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Is the c++ hash function reasonably safe for passwords?
password limitations in SQL Server and MySql
Determine password expiry date
How to hash a password with SHA512
Why not use MD5 for password hashing?
Obfuscating password in batch script
DoD Password Complexity: Users cannot reuse any of their previous X passwords
Admin Account Keeps Getting Locked Out
How can I reset the password on a Windows 7 VM under VMware 4 on Mac Lion?
John the Ripper: Crack ZipCrypto password