Password Analyzer option for non Administrator users
0 vote
I think the Password Analyzer tool is a powerful compliance tool which assist in establishing and enhancing password compliance. The option to show compromised password (PWNED) is also fantastic and should be run regularly.
Currently only Administrators can run this tool, but I think other roles should be able to run this also. Could the User & Security Management matrix be modified to allow this option? Or else within the User Group Management > Privileges area to allow this function?
I think this feature would be a powerful security enhancement which many of your customers may not be aware of.
All Comments (4)
Hello,
Thank you for the request. I understand how useful it can be and I can also see why you'd want non-administrators to be able to use it.
I think what would be a good fit for this is putting it in the System Permissions. These can be accessed through the Administration tab. They offer a way to let certain users access features that may normally be restricted to only administrators, for example, user or vault management. Here's what the window looks like:
We could then add a permission in there for "Password Analyzer". You could then give the permission to any specific User or User Group that would be allowed to use this feature.
What do you think?
Regards,
Hubert Mireault
Thanks for replying so promptly with a solution.
I had not used the Systems Permissions previously but looking there now, I can see I can allow either everyone or select a custom group of users.
This looks like a perfect solution.
Thanks Doug.
Perfect, I've opened a ticket so we can work on this. We will update this thread once we have an update on the feature.
Regards,
Hubert Mireault
Hi,
We have added the permission in the miscellaneous tab internally. It should be available starting with version 2022.1
Regards,
Jean-Francois Duchesne