• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1557
  • Last Modified:

Looking for browser password management for IE9

Hi experts.

Our security policy has decided against IE9's own password management. I should evaluate replacements. The single aspect to look at is

"can we build a bridge between an external application like keepass and IE, without losing the security keepass offers?"

There are keepass browser plugins like keepasser or keeform, but kp is incompatible to IE9 and kf is offline for good, I suppose.

Is anyone experienced at this topic? Otherwise we would tell the users to use keepass and copy/paste.
0
McKnife
Asked:
McKnife
  • 6
  • 3
1 Solution
 
greyknight17Commented:
See if Roboform is an option. It supports IE9 and uses strong encryption algorithms (AES 128-256 bit keys, Blowfish 256 bit key, RC6 256 bit key, 3-DES 64 bit key and 1-DES 64 bit key).
0
 
McKnifeAuthor Commented:
Hi greyknight. Roboform is the first one comes about googling.
Sorry to say, but I am not in the mood to test all suggestions without first knowing if you have used it and why it would suit our needs.
0
 
simonlimonCommented:
One that comes to mind is ActivIdentity Secure Login, but it's not free. It stores credentials in Active Directory and stores them there in encrypted mode.

You can also customize templates for web sites and other applications. It worked great.
0
Protect Your Employees from Wi-Fi Threats

As Wi-Fi growth and popularity continues to climb, not everyone understands the risks that come with connecting to public Wi-Fi or even offering Wi-Fi to employees, visitors and guests. Download the resource kit to make sure your safe wherever business takes you!

 
McKnifeAuthor Commented:
Sounds nice, but: how is the access restricted?
What we need is that no script/whatever malware may act as the user and access that information. The user must be asked every time he needs to access the passwords. Is ActivIdentity Secure Login able to to that?
0
 
simonlimonCommented:
I believe one option is to secure access with a SmartCard. The information in AD is secured using PKI credentials on the Smart Card. Secure enough :) ?
0
 
McKnifeAuthor Commented:
Sure. But using SCs sounds too much just for occasional use while browsing. Do you know how much it is? More than 15$ per user would be out of reach. However, we use this on a terminal server - is per device lic. possible?
0
 
simonlimonCommented:
0
 
McKnifeAuthor Commented:
Maybe I should close this question and reopen it again and stress that "What we need is that no script/whatever malware may act as the user and access that information. The user must be asked every time he needs to access the passwords". I think I'll do that.
0
 
McKnifeAuthor Commented:
Closed for reasons given in the last comment. Will reopen it soon and link that reopend one here.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

  • 6
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now