I think I brought this up last year.. hopefully there is better news on this front. So, we face the same issue as every other sysadmin shop: How do you store passwords?
We are looking for an open source, shareware, or commercial product which has these features: 1. Provides a "password safe". 2. Provides strong encryption of the underlying database. 3. Allows for at least a basic password policy. 4. Is reasonably easy to use. (so far most free products can do all this, such as PasswordSafe). 5. Is multi-user in that more than one person can be in the database at once. 6. Is reasonably priced for us. That means either free or up to several hundred dollars. Notice I don't require that every user have their own unique password to get in. At this point, I'm okay with allowing a select few share a master password to get into the safe. Not a great solution, but it's better than the reality where everyone has their own password safe. What would be nice: 7. Each user has their own credentials. 8. We could possibly tie the credentials into a directory, e.g., LDAP or AD. 9. An Administrator has the ability to assign read/write rights to portions of the database. The solution can run on a Linux, UNIX, or Windows server. Thoughts? -- Puryear Information Technology, LLC Baton Rouge, LA * 225-706-8414 http://www.puryear-it.com Author, "Best Practices for Managing Linux and UNIX Servers" http://www.puryear-it.com/pubs/linux-unix-best-practices Identity Management, LDAP, and Linux Integration _______________________________________________ General mailing list [email protected] http://mail.brlug.net/mailman/listinfo/general_brlug.net
