ITSM offers a module for password generation and storage to help IT teams more securely manage passwords for shared services and utilities.
Anyone who saw the disastrous social media posting at the Hawaii tsunami alert control centre – where passwords were clearly on display written on post-it notes and attached to monitor screens – will be aware of the things that can go wrong when multiple users need access to the same systems. Cockpit ITSM’s Password Manager has been designed to eliminate these challenges and their associated security vulnerabilities.
The Cockpit ITSM advantage
Cockpit ITSM Password Manager is a password vault, designed to help IT teams manage shared passwords securely. The objective of the module is to securely:
Cockpit ITSM Password Manager isn’t about storing your personal password – like personal email, for example – but in an IT Service where there may be many passwords used by several users.
This might include:
- A common mailbox to receive alerts
- Applications used by a team with one login
- Connections to systems with non-human user
- User with privileges of all your servers (Administrator, Root, etc.)
Like all password managers, passwords are encrypted with algorithms (AES 256 bits).
One important advantage of using an all-in-one solution like Cockpit IT Service Manager, is that assets (servers, databases, applications, SAP systems, etc.) have already been registered in the Cockpit ITSM Infrastructure Module (CMDB). Once registered in the CMDB, these assets are automatically listed in the passwords module – saving administrative effort and offering a clear overview.
Using Cockpit ITSM Password Manager
Cockpit ITSM administrators can associate a user and password to a specific server. This way, if you view the data relating to any given server, you can also see all passwords linked to it.
When you register a password in the portal:
- First, complete the description field so the login utilisation can be easily identified.
- You can then allocate an attribute to the password in order to categorise it. For example, you might add an attribute of “Backup
, so you can locate all passwords relating to your backup processes very quickly.
- You also have the option to add comments to a discretionary field. This offers you the possibility of providing messages or instructions for different teams, for example: “do not use this login for a GUI connection”.
At this moment all members of your team can access to the password you have registered; this is the principle of a shared password management. However, if you really want to conserve this data as private, you can add a passphrase to the password.
You may also want to share this password. “Share” is the principal aspect of this module; the objective is to store passwords that must be shared with people.
For example, if you are a user in the “Administrator” team, you might want to share a password with the “Support” team who receive the incident tickets and requests. ITSM Cockpit makes it possible for you to share the relevant password(s) with different teams so they can access the applications they need to in order to resolve tickets. You can share password with a team very simply – in just two clicks. The password can be viewed but not changed by the team – so you are able to securely manage the password and share it to the people who need it.
Importantly, using ITSM Cockpit you maintain control over any changes to the owner team(s) and can revoke access at any time.
Perhaps your security policy requires you to regularly change passwords? Cockpit ITSM helps you manage this too. Using our Password Manager, you can specify and associate a change frequency or a change date for each password. Then, you will receive a message in the notification centre when the password needs to be changed.
Another helpful addition is the tiny but strong password generator integrated in the module. Should you need to create a new password when working on your IT, Cockpit ITSM’s Password Manager will provide you with a suitable password of the length and complexity required within a few seconds (very helpful for personal password which are often weak).
Ultimately, the key benefit of using Cockpit ITSM Password Manager is that it simplifies the process of securing and managing all of your shared passwords, secured and centralised in one place.
To find out more about Cockpit ITSM, please visit our website : www.cockpit-itsm.com