maxrebo Posted March 13 Posted March 13 I'm doing a bit of a security Audit - Just wondering where everyone stores their Network password lists? Paper, spreadsheet on the Network, SharePoint? Thanks
JensenFerdy Posted March 13 Posted March 13 Look at a password manager, we use a spreadsheet for all info then any credentials we store securely in a password manager. I use Bitwarden which allows you to configure different collections and share to different member of your team if you needed hierarchy permissions. Loads of alternatives out there such as 1Password, KeePass etc 1
Olliedawg Posted March 13 Posted March 13 Password manager. Password is also stored in the confidential safe which only the Head/CFO have access to.
3s-gtech Posted March 13 Posted March 13 Post-Its scattered on my desk in the office. Or, in an encrypted folder in a document, then printed and in the safe in a sealed envelope.
essential_alex Posted March 13 Posted March 13 Stick them to the back of my keyboard, they're usually all SchoolName1 anyway. (I joke... but I've seen it numerous times.) 1Password for work, Bitwarden for personal.
Rob_D Posted March 13 Posted March 13 We're old school. Keepass file on SharePoint and regularly backed up to a USB which sits in the key safe (in case we loose the SharePoint) The Keepass login is stored in the finance safe in a sealed envelope for "break glass" access.
Cat_Jam148 Posted March 13 Posted March 13 (edited) Bitwarden primarily, with a copy stored in an encrypted document. Edited March 13 by Cat_Jam148
slugshead Posted March 13 Posted March 13 Keepass - unlock with a key file and a password. I do store a breakglass admin account on paper, in an envelope, that's been laminated, in a safe, in a locked room.
Norphy Posted March 13 Posted March 13 We use BeyondTrust Password Manager to manage our password safes and to set passwords for our tier 0, 1 and 2 accounts. Trouble is, for the tiered accounts, they set the lifetime of the passwords to be 12 hours and to be long and complicated and BeyondTrust is not a particularly responsive system, so what happens is that most just stick their passwords into a notepad or OneNote document. I put mine into a Keepass safe protected by a Yubikey. For my personal stuff, I use Dashlane.
jthompson Posted March 14 Posted March 14 KeePassXC here (Windows, Mac and KeePassDX on Android), with some key break-glass stuff on paper in a sealed envelope in the safe. The only downside is lack of decent browser integration, which I don't mind too much tbh. 1
Fin Posted March 14 Posted March 14 It always used to be the little black book locked in a drawer but life has moved on now to 1password, not sure which one I prefer
maxrebo Posted March 25 Author Posted March 25 With regards to using a password manager and sharing access between several users, how do you manage securing the account? such as 2FA? Thanks
mraerosmith Posted April 15 Posted April 15 passbolt here, and it can use 2FA, and you can share to groups etc
Millgate_Jon Posted April 15 Posted April 15 We use 1Password here at Millgate - Mixed feedback depending on the user you ask.........
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now