Features

User Accounts

Manage who has access to Passwordstate. Add users manually, import from csv files, or import from Active Directory.

Security Administrators

Manage who the Security Administrators are for Passwordstate. Security Administrators can be assigned anyone, or all of the different roles available.

Security Groups

Security Groups are used to logically groups a set of User Accounts, which can then be used to provide access to Passwords. The Security Groups area allows you to administer both local Security Groups within Passwordstate, or Active Directory Security Groups.

Active Directory Security Groups are synchronized at the interval set in the 'System Settings' area.

Password Lists

Security Administratrors are able to see all Password Lists created within Passwordstate, and from here administer and export permissions.

Security Administrators are not able to view the actual passwords from within this area - only see that detail associated with them.

Password Folders

Password Folders allows Security Administrators to see all of the Password Folders created within Passwordstate, and to administer permissions if required.

Account Type Images

Each Password List, or individual passwords, can have an image associated with it to visually represent what the records is associated with. 15 images are provided, and Security Administrators are able to add additional images if required.

Reporting

Security Administators of Passwordstate have the following types of reporting available to them:

• All Passwords Report
• Audit Records - General
• Audit Records - Passwords
• Password List Permissions
• Password Strength Report
• Security Group Membership
• User Accounts Report

Export All Passwords

'Export All Passwords' has been assigned it's own role and area due to the sensative nature of performing this export. All passwords will be exported to a csv file (excluding the ones tagged as not for export), and an audit event will be generated showing who exported the passwords.

Auditing

A total of 32 different audit events are logged and tracked within Passwordstate, and the 'Auditing' section allows Security Administrators to report on site wide activity.

Email Templates

Passwordstate provides a total of 26 different types of email notifications, of which all can be modified to suite the communication style of your organisation.

Security Administrators are able to enable or disable individual notification templates, as well as restore back to the original template content.

Password Strength Policies

The 'Password Strength Policies' area within Passwordstate allows Security Administrators to create mulitple policies, with varying complexity rule sets, which can be assigned to different Password Lists. The Password Strength Policy does not mandate password complexity, rather show complexity to the user so they are aware of the strength of their passwords.

Bad Passwords

Bad Passwords is a list of the most commonly used passwords which are deemed to be Bad, and this list is configurable by the Security Administrators. If a user enters a Bad Password, they are informed they should specify a different one.

Password Generators

Mulitple Password Generator options can be created, and then assigned to different Password Lists. This feature exists for flexibility reasons, as not all systems can support the same level of password complexity.

Active Directory Domains

Passwordstate supports multiple Active Directory domains and forests. If your organisation has domain trusts established for different domains, you can simply add the relevant domains to Passwordstate allowing authentication and Active Directory lookups.

Systems Settings

'System Settings' is where Security Administrators apply settings which are enforced across the Passwordstate web site. Ranging from email settings, to regular scheduled events, to User Acceptance Policies.

Emergency Access

In the unlikely event all of your Active Directory domain controllers or IT Staff are unavailable, Passwordstate has an Emergency Access option if you choose to use it. Every aspect to this feature logs audit events and sends email notifications, even simply browsing to the hidden login page. The intention is to print out the Emergency Access details and store away safely somewhere i.e. secure safe.

License Information

Passwordstate license manager allows Security Administrators to manage the 3 different license types - Client Access Licenses, Annual Support and High Availability.