Networked Password Manager?

Avathar77 · 9 Jul 2012 at 07:23

Needs to store some passwords that is used by a group of people in a network.
They use these passwords to log in to some web sites with sensitive data.

Rather than giving the user name and password to every one in the group, is there a way to use a password manager that supports network functionality?
Ability to change the password in a given period is a must and rather than changing it in every PC I would like to change it in one place so it will take effect to all the PCs it is installed/run in.

img · 9 Jul 2012 at 09:01

I use secret server in enterprise but have used key pass for few users

Avathar77 · 9 Jul 2012 at 09:40

Reading about key pass's sync feature now! Seems like it can be done. Will have a look at secret server as well, thanks!

Linkex · 9 Jul 2012 at 09:41

You could look at something like lastpass, and have everyone on the same account. Of course, theres no way to stop some numpty changing the password. I would seriously consider unique accounts if its an option.

When I did service desk support, there was an application in the business that had no username and a single password for all, which was used by call center staff. Considering it was a/. Lockable b/. could be changed by the users c/. couldn't be unlocked or reset by the service desk, you can imagine how much time it was actually accessible.

Avathar77 · 9 Jul 2012 at 09:45

Oh yes there are "numpties" in this situation!

morfmedia · 9 Jul 2012 at 13:56

img said:
I use secret server in enterprise but have used key pass for few users

+1

Latest version of John the Ripper now has GPU cracking of Keepass files so worth being as careful as possible although used this previously.

Hostile-17 · 10 Jul 2012 at 12:15

think you can do this in Key Pass

anything I don't mind · 10 Jul 2012 at 16:25

I just use keepass. I don't even use the sync feature. I just put the keepass file on the network, on a nas secured by domain account permisions. For added security you can create a keyfile and distribute that to users who can put it in to their mydocuments folders. But the people i work with are dim so i just put the keyfile on the same nas just in a different folder. For another layer you could add a windows domain account but i just use key file and a password. I am the only one who updates the keepass db so not sure what would happen if multiple users tried to update and the implications on other users who have it open etc. May be this is why the sync feature exists. But I just tell people not to modify it.