Hellbound
Merchant of Doom
I'm looking at some solutions for an Enterprise-level password management system. We have numerous passwords for various Active Directory and -ix service accounts, database users, applications, and similar. Our network is primarily Active-Directory based. The problem we have is that several accounts are rarely changed, and often only a few people have access to those accounts. Over the course of a year, people get fired, leave, change departments, lose documentation, and similar.
I'm looking at comparing products that can safely store and control access to the various passwords. This will provide better security, cetnralized management, controlled acces, and backup capability in case of the unforeseen.
I'm comparing three products at the moment:
Manage Engine-Password Manager Professional
Thycotic-Secret Server
LastPass Enterprise
I'm wondering if anyone here has any experience with any of these products, and could provide some additional information on them? Specifically some information on:
Active-Directory integration
Management of Passwords (how it records/notifies of changes, role assignments, how users access the passwords, how administrators access the passwords, and so forth)
Security (who has access to the accounts, and does access ot the account equate to access to the password, or just access to what it protects?)
Any other general observations (reliability, speed, resource use, etc)
Also, if someone has worked with another product that has been useful, please point me in it's direction. We're needing somethign that will support from 10 to 100 users (it will be at least my team, possibly our whole section using it), 100 to 1000 accounts, and that can run on a Windows box (Server Enterprise 2008 R2 or Server 2012).
ETA: All helpful responses will be rewarded with virtual bacon.
I'm looking at comparing products that can safely store and control access to the various passwords. This will provide better security, cetnralized management, controlled acces, and backup capability in case of the unforeseen.
I'm comparing three products at the moment:
Manage Engine-Password Manager Professional
Thycotic-Secret Server
LastPass Enterprise
I'm wondering if anyone here has any experience with any of these products, and could provide some additional information on them? Specifically some information on:
Active-Directory integration
Management of Passwords (how it records/notifies of changes, role assignments, how users access the passwords, how administrators access the passwords, and so forth)
Security (who has access to the accounts, and does access ot the account equate to access to the password, or just access to what it protects?)
Any other general observations (reliability, speed, resource use, etc)
Also, if someone has worked with another product that has been useful, please point me in it's direction. We're needing somethign that will support from 10 to 100 users (it will be at least my team, possibly our whole section using it), 100 to 1000 accounts, and that can run on a Windows box (Server Enterprise 2008 R2 or Server 2012).
ETA: All helpful responses will be rewarded with virtual bacon.
.
.