Our security policy has decided against IE9's own password management. I should evaluate replacements. The single aspect to look at is
"can we build a bridge between an external application like keepass and IE, without losing the security keepass offers?" What we need is that no script/whatever malware may act as the user and access that information. The user must be asked every time he needs to access the passwords.
There are keepass browser plugins like keepasser or keeform, but kp is incompatible to IE9 and kf is offline for good, I suppose.
Is anyone experienced at this topic and able to offer a solution used by him-/herself? Otherwise we would tell the users to use keepass and copy/paste. The solution may not cost much, as it is a terminal server, maybe a single machine license would suit.