From a simple KeePass database to enterprise credential management solutions—what’s your setup at work?

  • rumba@lemmy.zip
    link
    fedilink
    English
    arrow-up
    8
    ·
    21 hours ago

    Bit Warden, one password, whatever float your boat just not last pass.

    For SHTF stuff GPG.

    • shalafi@lemmy.world
      link
      fedilink
      English
      arrow-up
      4
      ·
      20 hours ago

      Got a thrift store keyboard. The pink sticky on the bottom said:

      User: admin

      Pass: password

      I wish I was joking. Someone out there was dumb enough to need a reminder on that one.

    • cron@feddit.orgOP
      link
      fedilink
      arrow-up
      3
      ·
      1 day ago

      I would need a small book hidden under my keyboard. My work password safe has approximately 100 entries.

  • Refurbished Refurbisher@lemmy.sdf.org
    link
    fedilink
    arrow-up
    20
    arrow-down
    2
    ·
    edit-2
    1 day ago

    I write it in plaintext then email it to myself. For my email password, I write that down on a sticky note next to my monitor with my webcam pointing towards it with Skype and Zoom always running so I can look at it when I’m not at home. I always make sure to turn 2FA off as well, since that gets annoying and isn’t very convenient.

    I might choose to mirror the webcam stream to a public RTMP stream later, but not sure yet, since I think that might open up some security holes.

  • lightnsfw@reddthat.com
    link
    fedilink
    arrow-up
    4
    ·
    22 hours ago

    At work I keep them in onenote (they are encoded) because they won’t let us install an actual password manager and half the shit I log into doesn’t support SSO/doesn’t have it set up and is all on different password schemes. Our service account passwords are in a shared cyberark vault.

  • cron@feddit.orgOP
    link
    fedilink
    arrow-up
    10
    ·
    edit-2
    1 day ago

    We use Netwrix Password Secure at work. They just announced this week they have found a RCE vulnerability in their software…

  • shalafi@lemmy.world
    link
    fedilink
    English
    arrow-up
    2
    ·
    20 hours ago

    Used Keeper at my last gig. Was pretty happy with it all in all. Lacking some admin features, rock and roll support. Not too pricey, but it is per-user/per-month. Played nicely with our Google auth.

  • skooma_king@lemm.ee
    link
    fedilink
    arrow-up
    6
    ·
    1 day ago

    Bitwarden/KeePass for MFA (not SMS or email) protected accounts. Pen and paper stored in a fire proof vault for non-MFA and break glass accounts.

  • jplee@lemmy.world
    link
    fedilink
    arrow-up
    6
    ·
    1 day ago

    As an admin for a Linux server, I want to institute a ssh pub key expiration policy for all the users and enforce non-reuse of old keys. Does anyone have a best solution for this?

  • Godort@lemm.ee
    link
    fedilink
    arrow-up
    7
    arrow-down
    1
    ·
    1 day ago

    We use ITGlue because it lets us tie password records to documentation which makes finding things very streamlined.

    Personally, I use Bitwarden

    • pinball_wizard@lemmy.zip
      link
      fedilink
      arrow-up
      3
      ·
      22 hours ago

      I would never scribble my password on a whiteboard. It’s important to write in large clear letters so I can read it from across the lab.