You tend to leak passwords when there are too many people involved. It can be clicking malicious email links or keeping a weak password. Whatever may be the reason, these are common mistakes that have huge consequences. In this article at intricate cloud, Danny Perez shares 4 tips to protect passwords when you have a large team or organization.
Ways to Protect Passwords
Employees save their passwords mostly in their official equipment and mobile devices that they can access anytime. While this is convenient, it also is risky. Here are the 4 tips to protect passwords when you have a large team or organization:
- Sharing Credentials: Use LastPass Enterprise or 1Password Teams to share common credentials like billing details and administration logins. These have extensions that can auto-fill passwords on your preferred sites and share the same with the team.
- File Storage: You can rely on LastPass to save files even if you are a non-technical Though it can accommodate zip files with SSL certificates, it does not support PDF files. Google Drive and Dropbox secure files to a certain extent but cannot identify with whom you have shared those. You can leverage from the paid services offered by Egnyte and Accellion in this case.
- Sending Across Sensitive Data: There have been times when you have sent someone sensitive data and deleted the message soon. To tell you the truth, hackers can still trace it. You can send the recipient a one-time use link from onetimesecret.com to send the files securely. With Vault, you can share a file without even seeing it. This might be more useful to developers than normal users.
- Storing Machine-facing Credentials: For storing your password for cloud environments, Vault and AWS Parameter Store come to your rescue. You can simply store passwords in Git using git-crypt or in AWS KMS using local encryption. For configuration management systems, encrypted data bags from Chef, Ansible Vault, or Puppet’s hiera-eyaml are good options.
To view the original article in full, visit the following link: https://www.intricatecloud.io/2018/10/managing-passwords-and-other-secrets-in-a-bigger-team/