Managing Passwords

Managing passwords securely across multiple accounts within an organisation can be difficult, this is where password managers come in.

Password managers come in a verity of sizes including some that are online or offline, free or paid. They also come with a verity of security features and learning complexity

KeePassXC

KeePassXC is a free and open source password manager created and maintained by the open source community. it is lightly the most secure password manager on this list since the database can be encrypted with multiple factors of authentication: A password, key file, and a security key. This is overkill for most applications as using just two factors of authentication is sufficient.

KeePassXC can be integrated into the web browser and can also provide the second factor of authentication to most services making it one of the most convenient options.

We would recommend if you use KeePassXC to use it with a physical security key, such as the Yubikey. The keys can be programmed with a specific number that can be cloned for multiple keys to access the same database. For smaller organisation we would recommend having at least two duplicated keys so if one is lost the other still works. For larger organisations the use of KeePassXC can be implemented by hosting the database on a secure server and allowing employees to access a read only version with the physical security key and a common password.

KeePassXC has some more advanced features and it is worth taking a look at the documentation here.

Bitwarden

Bitwarden is another open-source password manager that offers both free and premium plans. it has good security features, and allows you to store and manage your passwords online.

One of the standout features of Bitwarden is its cross-platform compatibility. It can be used on many devices, including desktops, smartphones, and web browsers. The browser extension integrates similarly to KeePassXC, making it easy to autofill passwords and generate strong, unique passwords for new accounts.

Bitwarden also offers two-factor authentication options, including support for authenticator apps and security keys and allows users to share passwords securely with team members.

Bitwarden has some premium features like encrypted file storage a small annual fee. For larger organizations Bitwarden has enterprise solutions that include user management and reporting features, making it easier to maintain security across larger enterprises.

To learn more about Bitwarden's features view the documentation here.

1Password

1Password is a premium password manager known for its user-friendly interface and good security features.

One feature of 1Password is its ability to create and manage shared vaults for team members, allowing secure access to shared credentials. It also offers advanced permissions, so you can control who has access to specific credentials.

1Password supports two-factor authentication and integrates well with most platforms.

For SMEs, 1Password offers a team and business plan, making it a scalable solution. To learn more about 1Password features you can view their documentation here.