We need to establish better administration controls on the passwords. They shouldn't be stored on pin drives, word documents, or other less secure methods. We need to choose what we are going to do and how to store these.
Decision Making
The should be placed in an Architecture Decision Record for proper transparency and documentation. This might seem overkill at first, but this will save us a number of headaches long term and give us formality and transparency that matures our practices like a professional IT department.
Initial suggestions
Run vault on a server or other opensource
Use a SaaS subscription
Use a browser plugin
Use an app we all have access to
Background
We need to establish better administration controls on the passwords. They shouldn't be stored on pin drives, word documents, or other less secure methods. We need to choose what we are going to do and how to store these.
Decision Making
The should be placed in an Architecture Decision Record for proper transparency and documentation. This might seem overkill at first, but this will save us a number of headaches long term and give us formality and transparency that matures our practices like a professional IT department.
Initial suggestions
Run vault on a server or other opensource Use a SaaS subscription Use a browser plugin Use an app we all have access to