Organizations deal with many logins, and passwords that are used in a shared environment. These accounts serve common access purposes and are not tied to any individual user. Actions cannot be accurately traced to an individual; and no accountability can be ensured either.
Shared accounts often carry high privileges. In addition, such common passwords are insecurely shared among the team members. Sharing passwords through a phone call, by word of mouth, and by email are common practices. These insecure sharing practices make the accounts vulnerable to thefts and misuse.
Securden Password Vault helps establish a highly secure and efficient mechanism for password sharing and management. It also captures password access as audit trails, which help in tracing actions to individuals.
The password sharing workflow in Securden is implemented using the following modules.
Centralized Password Repository – Securden Password Vault for Enterprises helps IT teams store, share, and manage all shared passwords, keys, documents, and identities in an encrypted centralized repository. This establishes accountability over shared credential usage and helps thwart unauthorized access.
Password Generation – Securden helps generate secure, uncommon passwords for shared accounts to improve security and maintain password hygiene. This reduces the susceptibility of attacks by eliminating the use of weak or repeated credentials.
Two-Factor Authentication (2FA) – Securden Password Vault for Enterprises integrates with popular two-factor authentication tools that adds an extra layer of security to access the sensitive data. It makes sure only authorized users have access to the password vault housing all types of shared credentials.
Browser Extensions and Autofill – Securden Password Vault for Enterprises offers browser extensions for easy password autofill. This auto-launch feature for shared passwords comes in handy when new users access commonly owned web accounts. Not only is the shared credential auto-populated from Securden’s repository, but also logs in the user to the required application without actually revealing the credential.
Integration with Directory Services – Securden Password Vault for Enterprises integrates with Active Directory for user onboarding, authentication and offboarding. Furthermore, it synchronizes with the Active Directory in real-time, keeping user information updated in Securden.
Granularly share logins and passwords
IT access requirements for different categories of users often vary. In most of the cases, users need only access to the IT asset or a web application. There is no need for them to know the underlying passwords. In other cases, there might be requirements to reveal the passwords to the users. In still other cases, certain categories of users would require broad privileges to change the password and edit the properties of the accounts. Through the granular sharing provisions, Securden helps you meet all these requirements.
Track password usage and ensure accountability for actions
Securden records all password-related activities such as password retrieval, connection establishment, and other activities as audit trails. You can also generate various reports, which give more detailed information on account and password activity. When something goes wrong, audit trails can assist you in identifying the responsible users, and holding them accountable.
Share passwords and folders with users and groups
Securden allows you to group different accounts as folders, which can be shared with individual users or groups. When you share a folder, all the accounts in it are also shared, and with the same permissions.
Sharing folders with groups automates many activities. When you add new accounts to the folders (for example, when new devices are added), they are automatically shared with the members of the group. Similarly, when a new user gets added to the group, the user gets access to all the accounts of the shared folder.
Frequently Asked Questions
Securden Password Vault for Enterprises helps eliminate the practice of sharing passwords in unsafe methods like sharing credentials over email, text messages, and writing down passwords in sticky notes. It helps share passwords in a safe, encrypted manner.
Secure password sharing works based on a request-approval mechanism where IT admins / password owners can safely share credentials to users with varying levels of permissions like view, modify, manage, and open connection (login without viewing passwords in plain text). This makes sure only authorized users can perform activities on privileged accounts with the right level of access.
Securden Password Vault for Enterprises uses AES – 256 military-grade encryptions to store and protect passwords in its repository. It also integrates with popular multi-factor authentication (MFA) tools for two-step verification, that ensures shared credentials are accessed by the right personnel at the right time. Securden also provides complete visibility over shared credential access by maintaining an exhaustive, tamper-proof audit trail along with granular reporting.
