I would like to discuss what program or system is best for storing important IT passwords securely. I have always secured mine in an excel document on a share drive with password protection. However now I am seeing that unlocking an excel document is as easy as following a 2 minute youtube tutorial… And so I would like some thoughts on the subject.
How do you secure your passwords?
How do you keep them readily available when you need them?
How many different passwords do you typically use?
And also do you store users passwords for your own ease of access?
@LastPass
54 Spice ups
I use an open source software called Password Safe. It stays in my notification area when I need to “unlock” the safe and grab a login.
I have about 5 different passwords I alternate between sites.
8 Spice ups
jimmy-t
(Jimmy T.)
3
I’ve been using KeePass v2 for years, both personally and professionally. For my job, I keep the database on a network share and then point Keepass to that. LastPass is also an option, as well as @Keeper_Security .
42 Spice ups
Post-it note on my screen ;-).
Usually password excel like yourself, what is this tutorial that unlocks it easily?
5 Spice ups
jimmy-t
(Jimmy T.)
5
There are lots of tutorials and tools available on the 'Net to crack into an locked Excel doc.
6 Spice ups
maxsec
(maxsec)
6
Password Manager - super long passwords generated and not even know them… several alerady suggested
I used to do this and now I just use keypass to automate it for me. This way, when a site is breached I have no concerns about other sites with the same password.
5 Spice ups
Like others have stated i would lean towards something like lastpass.
@LastPass
1 Spice up
At least try to hide the Post-It under your keyboard!
We use Password Safe here as well
1 Spice up
Thanks for the mention, Jimmy!
Jordon - A password manager is built to address the issue you’re mentioning. Before coming to Keeper, I stored my passwords in a password-protected Excel document. I didn’t have complex, unique passwords for every site and service and it was a pain to go into the spreadsheet to pull a password every time I wanted to login. Password managers will make your life a lot easier and your accounts a lot more secure.
There are many different password managers to choose from. It’s up to you decide which is the best fit for you. I can’t speak much to the others, but here are the things that set Keeper apart from the pack.
- Keeper is the world’s most downloaded password management software - a quick search in the Google Play store shows 10M-50M downloads for Keeper vs others which max out at 5M-10M
- Keeper is the only password manager that is platform-wide with native apps on every OS, browser and device with real-time syncing
- Keeper’s security is second to none. We utilize zero-knowledge architecture (we don’t have access to your encryption key), AES-256 encryption, PBKDF2 key derivation with HMAC SHA256, two-factor authentication, and the only password manager that utilizes perfect forward secrecy - which eliminates the single master decryption key
- Keeper is only password manager that is regularly audited for SOC-2 compliance. This audit is a big deal - the cost ranges from $40k upwards of several hundred thousand dollars, depending on the complexity of the audit. This is a newer certification and it surprises me that there isn’t more awareness for it. SOC-2 goes a LONG way for a cloud vendor, and should eliminate any worry for organizations moving sensitive info to the cloud. It is a seriously rigorous security audit and we can share our SOC-2 report with a signed NDA.
- Keeper has both a personal product and enterprise solution. The enterprise side has delegated admin, admin console, policy enforcement,etc… We have clients ranging from SMBs to Fortune 100s on the enterprise side
- Keeper has 99.99% uptime with full offline access for iOS, Android, Desktop and Surface
Then we have all of the standard features that the other major password managers have - auto-login, autofill, record sorting, password generator, etc…
Send me a message if you have questions or you’re interested in checking it out!
Thanks,
Mike
@Keeper_Security
@jimmy-t
3 Spice ups
I use mSecure - there are apps for Android and iOS so you can sync and take your password vault with you. I have dozens of passwords for several service accounts, etc, so trying to keep track without something like this would be next to impossible. It also allows you to securely keep other pertinent info under many different categories.
mmitchell
(mjmitchell83)
12
I use keepass saved to a network share at work. I like it and it works great!
16 Spice ups
nerdydad
(NerdyDad)
13
I’m the same way. In fact, I have 2 databases, one for work and one for home. The one for work stays at work and the one for home follows me around for whenever I need it. Here is a how-to on how to do that:
http://community.spiceworks.com/how_to/show/97751
3 Spice ups
joego89
(Joe Go 89)
14
Many pluses for KeePass; I use it both personally and professionally as well.
8 Spice ups
I keep a copy of a locked document on a network share that only myself and one other admin have access to via share rights and NTFS permissions. I also have a copy of the document with master keys on paper in a locked safe offsite.
What good is storing all your passwords on the network if the network should fail and you need said passwords to get things back up and running? Been there, done that, got the blood- and tear-soaked t-shirt.
4 Spice ups
dtapley
(Dante_Play)
16
KeePass with the DB on network share for us here too. The DB is locked with NTFS permissions, plus you need the encryption key to open it.
8 Spice ups
I’ve been using PasswordState for over two years with great results. they allow up to 5 users to use the application free, and at my last place i ended up buying some licenses to allow users to store their passwords as i discovered more and more of them were storing them on post it notes and excel docs on shared drives… (i know right!)
the nice thing with this app is that you can host it on a web server and customize it then allocate access as you please!! would definitely recommend it… even if you just want to try it out.
2 Spice ups
I use a combination of LastPass, 1Password, and KeePass.
KeePass is for work information as it is not stored anywhere except on our servers. It works really great and is very easy to organize all of the usernames, passwords, and so forth.
LastPass is for my personal passwords and I use the Chrome Extension to manage them and love it so far, not to mention the test you can take to see where you have duplicate passwords and which ones are not good and should be changed.
1Password if for keeping the same information as LastPass but on my phone, I also use it to generate passwords for me and then copy them to LastPass.
I have been thinking of trying to pick between LastPass and 1Password and either getting a LastPass premium subscription so I can use the mobile app, or buy the 1Password software as I like the interface better and I keep having some issues with LastPass not wanting to save edits to sites sometimes.
2 Spice ups
I got it tattooed on my left thigh.
Hopefully we won’t change the main password too often.
KeePass~
6 Spice ups
cweb
(Cweb)
20
Depends on your industry and what level of security you are trying to achieve. What is your “Hit by a bus” solution with the different solutions?
Your user’s are usually the weakest link in the security chain. A locked excel doc saved on a hidden share that only domain admins or a specific security group has access to should be good. At that point anyone who has access to the document should KNOW the password. Or be trusted enough that if the 2 minute cracking to get into it because HIT BY A BUS situation, is needed.
I would look @ securing the share more than the document itself as a first step
2 Spice ups
