Solved

Username and Password Management Program

Posted on 2013-06-17
4
531 Views
Last Modified: 2013-11-13
Hello Experts!

I'm looking for a password management program to pass among a branch of techs. We manage many users and, without programming something ourselves, want to know if there's a program with a centralized database where our techs can simply install the password application and tap into the list of usernames/passwords for our domain users.

Any ideas? :)

Thank you!
0
Comment
Question by:jmichaelpalermo4
  • 2
  • 2
4 Comments
 
LVL 18

Expert Comment

by:Jerry Miller
ID: 39254503
I may have misunderstood the question. But you want your techs to have access to the domain user's passwords? I would never let techs have access to others passwords. It is too big of a security risk. They should only have the ability to reset them if the user forgets the password.

I use a program called KeePass for mine. It runs from my USB drive.

http://keepass.info/

I read about one called DashLine the other day that looks interesting as well, but I have not used it yet.

http://www.nytimes.com/2013/06/06/technology/personaltech/too-many-passwords-and-no-way-to-remember-them-until-now.html
0
 
LVL 3

Author Comment

by:jmichaelpalermo4
ID: 39254621
Ha - That's a great point. However, these aren't the normal "Techs" - They're much higher up the chain. Our domain users are assigned a unique password upon hire. The lead administration needs an easier way to access these credentials, if needed.

I like the look of KeePass, but it seems to be specific to the location it's installed. Is there a program where I can install on the admin's PC which will access a database containing the credential store.. Kind of like this:

                                      {Admin PC3}
                                             |
                                             |
                                             |
{Admin PC1} -------- (Password Database) ------------ {Admin PC2}


Thanks!
0
 
LVL 18

Accepted Solution

by:
Jerry Miller earned 500 total points
ID: 39255049
It doesn't matter how high up the chain or high far from normal your techs are. Most tech people aren't 'normal' to the rest of the world, myself included. :D It is a HUGE security hole to allow anyone with access to usernames / passwords. If the users can't remember passwords, reset it and let them move on. Passwords should be in an encrypted database that no one can see in clear text.

That being said. In the Keepass\Data\Settings folder there is an INI file where the configuration is stored.

KeeLastDb=..\..\Data\data.kdb points to the database file with the  *.kdb extension. I am sure that you could store it on a shared drive

Look at the other INI files and see how it is set up. It may suit what you are trying to do, though I would strongly advise against you storing user names and passwords for others to access, unless you are in a business where your data integrity doesn't matter at all. It isn't about trusting your techs. It is about rock solid security that cannot be questioned by anyone. Stepping down from soapbox..........
0
 
LVL 3

Author Comment

by:jmichaelpalermo4
ID: 39255116
I agree completely! However, when dealing with system and network gurus, there isn't a need for passwords to do insane amounts of damage to a company - You're already trusting them with the keys to the kingdom. Knowing the passwords simply adds an easier method of assistance, if needed.

However, I will rethink my approach. Thanks for the answer, regardless - I'll figure out a way to do this from here. :)

Best,
0

Featured Post

Optimizing Cloud Backup for Low Bandwidth

With cloud storage prices going down a growing number of SMBs start to use it for backup storage. Unfortunately, business data volume rarely fits the average Internet speed. This article provides an overview of main Internet speed challenges and reveals backup best practices.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Both MMF (multi-mode fiber) and SMF (single-mode fiber) are types of optical fiber that can aid in communication applications. These thin strands of silica or glass will allow communication to occur between devices. The transmission of light between…
Note: This is the second blog post in a series on email clearinghouses (https://www.xmatters.com/alert-management/blog-email-has-failed-us?utm_campaign=70138000000ydLoAAI&utm_source=exex&utm_medium=article&utm_content=blog-post).   Every month t…
In this fifth video of the Xpdf series, we discuss and demonstrate the PDFdetach utility, which is able to list and, more importantly, extract attachments that are embedded in PDF files. It does this via a command line interface, making it suitable …
With the power of JIRA, there's an unlimited number of ways you can customize it, use it and benefit from it. With that in mind, there's bound to be things that I wasn't able to cover in this course. With this summary we'll look at some places to go…

910 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

25 Experts available now in Live!

Get 1:1 Help Now