Are you having challenges getting users to create strong passwords? Tired of seeing sticky notes at users’ workstations? Having a corporate policy in place to create strong passwords and keeping workstations secure isn’t much use if it’s not followed.
Implementing an enterprise password manager helps to ensure that users comply with the corporate policy. To help enforce your corporate policy, you need to use at least one of these three top enterprise password management products.
Pros: Quick and easy to install, Dashlane Business offers a password changer that will automatically change all or the selected passwords with just one click. The ease of use and user interface has helped this product rise to the top.
The business version gives you complete access control at the user and group level. To help you set up the product, there is an onboarding consultant assigned to you.
Like most enterprise password managers, the master password is not stored. If the password is forgotten, it can’t be reset. The recommendation is to use the Emergency Contact feature to ensure continuity of a user’s work. This feature allows the user to set an emergency contact to someone the user trusts so they can temporarily access a user’s accounts.
Cons: The multifactor authentication is not self-explanatory. This could trigger some help desk calls but can be circumvented if covered in your user security training. If your company is using IE8 or a 64-bit IE version, your options are to either upgrade or this isn’t the product for you. Dashlane also does not provide Active Directory support.
Pros: LastPass Enterprise has a large selection of security policies to choose from. You can install silently or with an executable on Mac or Windows. It can manage passwords from servers to devices to SaaS applications. Passwords are encrypted and stored in the cloud where they can be accessed from each component. LastPass supports the largest number of multifactor and you are able to run numerous multifactor methods at the same time unlike many of its competitors.
Cons: LastPass had a security breach in June of 2015. The LastPass organization was confident of their security measures in place to protect its customers. They feel they are even more secure as a result. Despite the incident, LastPass is still a top contender as an enterprise password manager.
Pros: KeePass is a free, open source easy-to-use password manager. In addition to the master password, you can use a key file stored offline in an external device for another layer of security. A hacker would need the key file to access the password database.
Auto-Type is designed to enter username and password information. It uses a unique technique called Two-channel auto-type obfuscation” to fool keyloggers. For example, “Michael123” would display as “hal321”.
If you are not comfortable with passwords being stored in the cloud, KeePass stores your encrypted passwords on your computer.
The major difference between KeePass and the other contenders is that it’s free and you can view the source code yourself.
Cons: Since the database is stored locally, you will need to sync your devices manually or use a third-party solution.
Auto-Type does not work with all applications especially if they rely on the clipboard functionality. It also needs to be enabled for each entry rather than auto-fill your accounts.
Using an enterprise password manager adds another layer of security to the company’s network. Having a corporate policy in place is not effective if users do not follow it. The implementation of an enterprise password manager enforces the policy and supports your initiatives to have it followed.
Include password protection as part of your company’s security training for users. Detail the best practices on protecting their passwords to create awareness and to reinforce the importance of it.
Leave a Comment