The necessity of adopting mature password management practices is well realized across the IT industry, still some companies are still to commit effort and time in maturing in this area. Among the many contributing factors delaying the usage is functional prerequisites aren’t normally clear in the event the evaluation process for Password Management Software starts off.
As an aid to choosing your own private Password Management Software program, please utilize the following functionality as being a guide.
Multiple User Password Sharing Probably the most essential elements of Password Management is ensuring all employees who work on exactly the same IT systems can effectively share the passwords utilized to secure IT systems. An enabler for teams of people sharing passwords is the platform on which it is run on. Because of its nature of multi user sharing, an internet based platform for discussing passwords is among the most suitable and flexible choice, and definitely the simplest platform to set up improvements on.
Traceability As people learn to share passwords, its important you realize which users are responsible for modifications to which IT systems. Along with this being required for regulatory compliance in certain countries, but it’s crucial a full audit trail is maintained so any problems which may arise could be talked about with the individuals who made the modification. As passwords are added, updated and deleted from the method, details about the progress, the person who made the progress and details of which computer the modification is made from needs to be captured.
Historical Password Records It is not uncommon for password records to be updated in the password management software, but then not updated accurately across all IT systems which the passwords are applicable to. This can result in systems becoming unavailable to users, or prevent systems administrators from logging on to key business systems or servers. If this was to happen, it’s vitally important you can review previously recorded passwords for these systems, so you can revert back to the password value if required.
Granular and Flexible Permissions Not all IT professionals require the same level of access to password records as each other. Some users will require administrative rights, some may only need to have modify rights, and some users only need to be able to read the password records without the ability to make any changes. Similarly when administering your password management system – you may want different delegation models for who can make certain system wide changes. Ensure you consider this type of flexibility when choosing your password management software.
Promote the use of Strong Passwords How often do users use passwords which are easy to remember, or use the same password across multiple systems – unfortunately it happens all too often. Your password management software should be able to educate your users on how to use strong and complex passwords. It should provide a password generator so your users don’t need to think of complex passwords, and there should be no reason for them to try and remember the passwords as you have a capable system for them to store them in.
Multiple Authentication Options Not each and every enterprise has the same requirement for authenticating against their IT devices. Your password management software should provide multiple authentication options just like integrated Windows Authentication, forms based authentication or some sort of randomized pin number versus alphanumeric grovel pad option. Being an additional option, some kind of two-factor authentication would even be desirable just like RSA Tokens or Crypto Cards.
Secured from Unauthorised Access One very important consideration which is generally overlooked when selecting password management software is how secure is it. Can users write their own code to gain access to password records they have no approval to view? Or can the database administrators view the passwords in the database or grant themselves access by manipulating data in the database? You must ensure your evaluation criteria includes testing how secure the solution is.
Password Reset Reminders One aspect of mature password management practices is to renew passwords on a regular cycle. The mechanics of such a task can be quite daunting and time consuming, and any improvements in this area can only improve the process. Ideally your password management software should be able to remind your users when passwords should be reset. This reminder should either be visually on the computer screen, or via an automated method such as email reminders.
Appropriate for Small and Large Corporations Imagine how effective it could be to pick out one Password Management Software solution which can scale from small businesses to large enterprises? The product will be able to grow together with you, and scale as required, with no need to look for a different product. Ideally you’ll want to be able to select a product that is certainly completely free to start with, and only charge a small fee as your company grows bigger. The backend structure it’s placed on should also be capable of scale at no additional cost.
Well timed and Excellent Technical Support Picking a password management software product is more than simply the software program itself. It’s very important your software product owner has a good track record of offering quality tech support promptly, evident by the customer base happily serving as customer recommendations if necessary. With your assessment, ensure you send out a test enquiry email to the software supplier, and validate how quick they respond to you.