We have around 4,000 credentials stored and for the most part, and due to the way our business is structed, most people need access to most passwords. It's untenable for us to go forth with a process wherein we reset 4,000 passwords upon the loss of an employee. As such, we've used other non-technical means to reduce (not remove) our risk.
Our team of 40 loves 1Password. It's probably the favorite tool in our belt. Oddly, I've needed to undergo research on an alternative as we're having some trouble closing some security holes in the way our team uses the vaults. Alas, I believe we'll be sticking with 1Password; it shines in so many other areas.
Here's a few features that would help us extremely:
This one is probably far fetched, have every app store a boolean of whether or not it needs to call home before showing the vault contents. If
true, call home to 1Password and wait for a successful response before unlocking.
Allow us to specify a location to which 1Password's servers will POST json of every event.
Through the GUI, I'm able to create a report on a vault that shows:
Usage: A list of items showing when they were last accessed, and by whom.
Please make this available via the CLI so that we may begin logging this event!
Thanks for reading!
1Password Version: Not Provided
Extension Version: Not Provided
OS Version: Not Provided
Sync Type: Not Provided