Password Sever installed. Use case examples?

Hello,

Most of these questions refer to your internal policy and how you decide to apply infosec principles. If no one else in your organization wears the Chief Security Officer hat, then TAG,. you're it! Congratulations!!! (picking up hats from the floor happened to me quite a lot earlier in my career...)

A common baseline is https://www.cisecurity.org/white-papers/cis-primer-securing-login-credentials/

• So, indeed unique passwords across the board
• Since you have a password vault, increase your password complexity
• Rotation is key if the password is ever viewed by others, AND/OR at least every 60 days

I would recommend NOT performing all encompassing changes. Identify your assets by layer of sensitivity or risks, address the inner circle first and live with the changes for a while, then move on to the next circle.

You are a long time user of RDM, we can have a quick phone call to go deeper in these topics. Simply drop me a PM to take me up on that offer.

Best regards,

Hello,

Most of these questions refer to your internal policy and how you decide to apply infosec principles. If no one else in your organization wears the Chief Security Officer hat, then TAG,. you're it! Congratulations!!! (picking up hats from the floor happened to me quite a lot earlier in my career...)

A common baseline is https://www.cisecurity.org/white-papers/cis-primer-securing-login-credentials/

• So, indeed unique passwords across the board
• Since you have a password vault, increase your password complexity
• Rotation is key if the password is ever viewed by others, AND/OR at least every 60 days

I would recommend NOT performing all encompassing changes. Identify your assets by layer of sensitivity or risks, address the inner circle first and live with the changes for a while, then move on to the next circle.

You are a long time user of RDM, we can have a quick phone call to go deeper in these topics. Simply drop me a PM to take me up on that offer.

Best regards,

Thanks for the offer and will take you up on it. I spoke to my Director so he's going to go over the features of password server and from there give me the direction to go and what to start with.

But he did mention that i should take a look at pointing rdm to the password server. Which got me thinking, with our existing RDM, the data source is a mysql db hosted on aws's RDS service. After using password server for a week, i have my own vault and looks like a vault for the active directory user password server uses to talk to AD.
Other than RDM's database source at aws being available both externally and internally to our network, Password Server's "vault" as a database source has the same functionality?
But with RDM on aws, The admins have a "user" account in the database, so the connection entries are shared. How do we do that if each admin here has their own "vault" on the password server? I started recreating the connections from the rdm source to my vault by switching back and forth between sources in rdm. Is there a better way to share and do this?

Hi, each admin has their own "Private Vault" (soon to be renamed to Personal Vault) for truly personal stuff, its the second button below the navigation panel.

Could you send a note to ticket@devolutions.net? We will provide you with a booking link for that discussion

Aloha Maurice!

I was able to download to update our server to the latest version. Since we last chatted, what were the features you mentioned we should check out? Sorry about that, I don't know where my notes went....:(