I'm interested in best practices and potential open source projects that would allow my organization to securely store multiple passwords and allow multiple administrators to access them. I'm interested in something that would allow each administrator to have their own login/key versus the typical password protected Excel spreadsheet. 😉
Preferable would be a web based application which I can run over SSL.
I need it to run in a Mac/Linux environment – no Windows apps, please.
Thanks!
Best Answer
We use this : http://sourceforge.net/projects/phppassmanager/ (a little bit modified/tuned)
It's installed on a HTTPS web server with Active Directory authentication to restrict password retrieval to our team. Each member of the team knows a master password used to encrypt all the passwords stored in phppassmanager. They use it when they want to add/modify/read a password. The passwords are stored encrypted in a mysql database.
They potentialy have access to all the passwords but each password decryption is loggued, and the logs are shown to the whole team on the main page. This system is self-monitored and self-managed.