A personal vault has been added in Safeguard 6.6.
The personal password vault extends security and credential protection to business users to store and manage passwords. Users must have the Personal Passwords permission granted.
User benefits include:
- Users can store up to 100 personal passwords, set optional expiration dates, and share passwords.
- Users know at a glance the last time they changed their password.
- Users have a history of personal password changes. This is handy if the user changes the password in the vault but not on the target account or if the user needs to work from a backup.
- A password can be shared by the user with one other user. For example, when a user is not available they can give a coworker access to a password. Access can be revoked or the user that has the password shared can opt out of the share.
With the personal password vault, business user passwords are under the control of the IT and security teams, versus a variety of methods of storing passwords. Benefits of the personal password vault for Security Policy Administrators and User Administrators include:
- An organization sanctioned and controlled tool is used for users to store personal passwords.
- Personal passwords are secured and encrypted. They are stored separately from managed account passwords.
- The personal password vault audits the retrieval and change of passwords so administrators know when users pulled information from the vault.
- Administrators can recover passwords when someone leaves the company. The administrator must change the authentication provider to local, set the password of the user, and then log in and view the personal password vault.
- There is no way to recover the personal password vault of a deleted user.
System users (like the bootstrap admin) cannot create personal accounts.