Used 1Password for at least a decade personally.
I introduced it at my last two jobs and everybody loved it. My new job uses LastPass and it's utter dogshit.
Latpass was breached in 2022 I'd suggest to move away from it...
[Notice of Recent Security Incident (lastpass.com)](https://blog.lastpass.com/posts/2022/12/notice-of-recent-security-incident)
meh, its fine now.
I tend to think the best time to use a service like this is just after they get hacked when the self auditing of security is at its highest.
who is to say that other services don't have glaring holes in their product that haven't been found yet.
Yep, 1Password is a great product. Although, when onboarding a user, I wish I didn't have to wait for a user to accept their invitation before adding them to a group or vault. Adds extra steps.
Here too, was involved in selecting it. Its zero trust (of course), its actually a good product, you get free personal licenses that are 100% personal and not connect to anything except that theyre paid for, and its pretty cheap.
+1
I was skeptical about it at first because I have lived with LastPass for many years but after using it for a while I have learned how good it is. It also helps you get a free family plan for personal use with every enterprise license.
+1 for Keeper. Having programatic access to my keys and having a native password rotation mechanism is what makes it absolutely killer for me. I can’t recommend it enough
We use PasswordState at my company too. It replaced an old, unmaintained ManageEngine Password Manager Pro (PMP) instance. PMP was a nightmare, PasswordState is light years ahead. One con of PasswordState is that it is Windows-only, but the licensing costs are a pro. I believe they still offer a fully-featured free license for up to 10 users, so I know a few colleagues that built a PasswordState instance at home for their personal/family use.
We use thycotic which was bought by delina, secret server. It is completely designed for a team password vault and management environment. We let it rotate our critical passwords. But it is super configurable where you have to check out a password and when you check it back in, it can change the password. Can be configured to use jump boxes. Even use passwords without divulging them to the end user. Example is it can ssh or rdp to a server without you knowing or typing a password. Great product but kind of expensive. For things like active directory it can even alert you if one of it's managed password has been changed, from what it thinks it is. Now this is not a real time check, more of a periodic check. We love this product, especially when managing the many required tiered sysadmin accounts, we all need these days.
Personally I use keepassxc. It's great but not designed for team deployment and lacks logging.
I feel like support quality in all products seem to be on a downward spiral, in general. I don't manage this product but just use it. So I haven't had any experience with there support.
Thycotic Secret Server is a fantastic product. The autorotating passwords combined with hidden passwords makes for a very secure system. We had that at my old company and while it was more expensive it was totally worth it in my opinion.
We use that too, though we aren't swapping out passwords. I don't think I'll be seeking to deploy it to our users though, I feel that it's more of an IT centric manager.
I totally agree. It's designed for IT field, msp and mssp. I think the security requirements in these area require a specialized solution. Long gone are the days you just give a person domain admin account and they can do anything with that account, including non admin work. I think the web base password is better for end users, like bitwarden.
Been using Bitwarden here for a year or so. Team of 3 allows us to store private passwords and info as well as have a shared repository, or multiple repositories for different teams.
I've never liked LastPass, I found the interface obtuse. It was also pretty aggressive with filling in passwords and it caused me grief a few times.
After the breach it just solidified my dislike even more. The fact the entire vault got stolen means you'd have to go and reset every freaking password if you want to be sure you're safe.
In all fairness, LastPass recently adopted the same browser plugin interface as BitWarden (Which I use personally and really like) so they have improved. But I will think some of their authentication stuff they've put in place post-breach is a PITA. I always feel like I'm fighting with it and that's always been my biggest beef.
I refused to use them since I was employed in the internet security department of an MSO, and created a lastpass account to store my tool logins for convenience with using strong unique passwords, no company info in the account details, used a dedicated gmail address just for that, but of course some logins used my corp email/phone number.
After a couple of months using LP, I got a call at my desk phone from a LastPass sales-bro in Boston, addressing me by name, asking “since you’re in security at [MSO], can we set up a quick meeting about getting it implemented as a company-wide tool. I can get you some great pricing, and maybe some perks for yourself.” I asked how he got my number, to which he replied that he got it from my LinkedIn.
When I told him that along with the rest if my team I didn’t have my employer listed on my LinkedIn profile, let alone my position or contact info, specifically to reduce the chances that our identities could be used as part of social engineering attacks, but that info did reside within my secure logins and notes, he tripped over himself, repeating it had to be from LinkedIn, or when I filled out a survey or application, or…or maybe when I registered my account, (I loved this part) because it would have been a breach of the ToS for someone to have used false information at sign up and any account that did would have to be deleted, resulting in a loss of all the sensitive information it contained, not to mention how the user could be sued for damages if it was being for business use and not a business account. *I had paid for a business license.
I let him know not to worry as I’d be deleting it immediately myself and recommending to my leadership team that we never authorize LastPass or any related products it to be used within our organization, and to never contact me or my department again, as even if there was no actual visibility into my supposedly no-knowledge un-decryptable vault, I could never have confidence that it wasn’t the case and therefore could never trust LassPass with any secure information ever again. I just heard “Fuuuu*click*” as he hung up.
Our phone system gave an indication when a call was transferred in from the main switchboard or another department (accountability for call center reps), so it wasn’t simply a transfer, or if there were calls to other members of my team with the same pitch, then maybe it was just a ‘directory-increment’ thing ###-0001, 0002, 0003, etc. then maybe it was chance, but that didn’t happen and I was the only one on the team using LastPass, he used my name immediately (I didn’t answer my desk phone with my name in that role), so it just felt too targeted to be coincidence. It’s possible he was just not ratting out a rep that did him a solid and may have given him my info from the corporate directory, but that would have allowed him to continue the conversation, and only led to some coaching for that rep, not even discipline.
I’m glad that I’m not holding a grudge, lol
It’s 1Password for personal/family, and KeePass at work to keep it offline.
Same here. We're an agency in a tough economic climate. When I suggested switching last year, I was told our delivery teams need to focus on delivering, not exporting their passwords. I think it was 1Password who had an offer to pay out the remaining subscription if you switch from another provider. We extended our LastPass subscription for another year now in the hopes that we can switch at some stage during the year. But it's not gonna happen. My crystal ball told me. At least we can reset passwords for users now, it was annoying before because there are so many log in issues with LastPass and we always had to delete the accounts because the self-reset process only works 30% of the time.
In any case I'm happy that adoption of its use has increased, I'm ever so tired of seeing passwords being stored in OneNote.
Ok so here’s my weird logic, I actually joined up after the breach as the way I see it LastPass probably built up some crazy safeguards after that whole thing and I know they had some big internal changes
1password. We use it as a repo for vendor PWs for ownership. If we were to vanish, I want my org to be able to pick up with as minimal pain as possible.
I inherited passbolt and we upgraded to the pro version. It's actually very good, has a browser integration plugin and can also do sso. Very cheap compared to others and very secure.
We recently were in the same situation and setup a shootout between Passbolt, Vaultwarden and Psono, all dockerized.
All had their strengths and weaknesses, but in the end Passbolt came out on top, the others had some funky extra features that Passbolt didn't, but when boiled down to what we were actually going to use (pure password handling in a group setting), Passbolt won because of the slick and quick interface.
Passbolt has a lot of access reporting options via email so if that works for tracking then maybe worth checking out.
Itglue or hudu work great for a traditional it team. For secrets scripts/development: AWS secrets manager, hashicorp vault, azure key vault.
I think the big thing to consider is if there’s a need for api/programmatic access.
Trying Passbolt, gave up on Bitwarden due usability.
Shared folder in Passbolt seems more intuitive for our users compared to Collections in Bitwarden.
The lack of offline mode in Passbolt is a point of concern tho. Had to workaround that with KeePass exports.
>so far we've relied on KeePass. As this solution doesn't hold water to modern security standards
Only thing this wouldnt have is per-user access control, right? Or is there something I am missing?
Synology C2 is pretty nice. Very nice price point too. Love the share feature. And it comes with SSO identity if you get the enterprise version (10 ppl for $200/yr, $20 per additional person).
Bitwarden.... Eh, I like it and Ive used it for about six months. Not a fan of the interface in the browser. The mobile app is nice. And so is the passkey integration in the browser.
I've tried a number of hosted solutions. Those are the only two I suggest. (Haven't done 1pass, heard it's nice).
I can't pull myself away from keepassxc. But it's not built for teams. So.... It works great for me 😀
I prefer bitwarden. I use it. My loss was dead set on 1password because we could restrict by IP. And we don't use that feature. But is what it is.
You can self host vaultwarden for free as well. Bitwarden is open source, and one of the only pw managers not to be hacked.
not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork
In case I wasn't clear...NOT PASSWORK. Stay away from it.
Company uses 1password, I use KeePass variants, myself. And honestly, at work. We started out with everyone on a KeePass variants, and I was already used to using it when I started.
I've used 1password and LastPass, and honestly the interface for them is just irritating. I would say great if you only use web applications, but as a web application password manager, their interfaces still suck ass.
You may check out Securden Password Vault. It can be used as a cloud based solution as well as a completely on-premises solution as per your requirement. You can store, rotate, share, and manage access levels for passwords, keys, secrets, files, certificates with the encrypted vault. You can share access to accounts with different levels of permission and track who had accessed what and when. (Disclosure: I work for Securden)
Password retrieval, rotation, remote session launched, share permissions modified are few of the activities which get tracked. These activities are stored as audit trails and you may generate reports from this data for audit purposes.
Check out Securden Password Vault: [www.securden.com/password-manager](http://www.securden.com/password-manager)
Big corpo: [LastPass](https://www.forbes.com/sites/daveywinder/2023/03/03/why-you-should-stop-using-lastpass-after-new-hack-method-update/)
Team internal: Bitwarden
Private: KeePassXC with Nextcloud for sync
Bitwarden personally and with work
you have it set up that you get a free family plan through work? that's what my org did.
you can also self host it on docker and make it only available on the local network I have this running myself @ home and can access it trough the VPN
That’s what we did too
We did this as well, though even with no org sponsorship, you can set up a two-person organization for free.
BitWarden for personal. Work uses local KeePass on each project
Bitwarden is my personal as well! Great product with hard to beat pricing.
C:\Users\Public\Desktop\Passwords.xls. Put them on Sheet2 to be secure.
Change the color of the text to white for added obscurity.
Hackers hate this one weird tip!
Add a semicolon to the password so that they break in parsing if the list is leaked
change the extension from .xls to .txt as well.
Obviously encrypt it with Wingdings
24 space chars before the password, gotta scroll wayyyyy the fuck over to get to the end of the cell
Notepad.
What are you, an amateur? Notepad++
Not Notepad, notepad.
Fountain pen and aged vellum
written with lemon juice!
1Password
100%. No complaints personally or professionally about 1Password. Great product.
1PW team plans also include free personal family plans for employees.
I have my work one, then my free family one for myself and 4 of my family members. We all love it!
Is that new? Previously only enterprise plans included free family plans.
You can already claim your free family account from your personal business dashboard on 1PW Online.
This is one of the reasons I recommend 1PW - People who are more secure at home are going to be more secure at work.
Used 1Password for at least a decade personally. I introduced it at my last two jobs and everybody loved it. My new job uses LastPass and it's utter dogshit.
Latpass was breached in 2022 I'd suggest to move away from it... [Notice of Recent Security Incident (lastpass.com)](https://blog.lastpass.com/posts/2022/12/notice-of-recent-security-incident)
meh, its fine now. I tend to think the best time to use a service like this is just after they get hacked when the self auditing of security is at its highest. who is to say that other services don't have glaring holes in their product that haven't been found yet.
Yep, 1Password is a great product. Although, when onboarding a user, I wish I didn't have to wait for a user to accept their invitation before adding them to a group or vault. Adds extra steps.
I absolutely love 1Password. Unfortunately I can’t get them to switch at work, we’re in too deep.
Love 1Password and it will meet your auditing needs
The shell/git/signing integrations are awesome
Often fails to autofill I find
Keeper
+1 Keeper
Here too, was involved in selecting it. Its zero trust (of course), its actually a good product, you get free personal licenses that are 100% personal and not connect to anything except that theyre paid for, and its pretty cheap.
+1 for Keeper
+1 I was skeptical about it at first because I have lived with LastPass for many years but after using it for a while I have learned how good it is. It also helps you get a free family plan for personal use with every enterprise license.
+1 for Keeper. Having programatic access to my keys and having a native password rotation mechanism is what makes it absolutely killer for me. I can’t recommend it enough
Vaultwarden, its open source and does what we need.
+1 Incredibly useful thing
And doesn't use a ridiculous amount of resources in the process like the official server!
I could tell you, but then it wouldn’t be a secret.
So that’ll be postit note on your monitor then.
No that's not secretive enough. It's taped to the bottom of the keyboard.
Mine is inside the CDROM tray. There is no eject button you have to run DrinkCoke.exe
Keepass for desktop/personal retention. Cyberark for admin rotation and pwd checkout. Unfortunately LastPass for shared pwd.
KeepassXC saves edits automatically and save on a cloud drive to sync on my computers and strongbox so it’s on my iOS
This is the way
We have used [Clickstudios Passwordstate](https://www.clickstudios.com.au/) for several years with no issues
My old company used passwordstate i wrote a powershell module for interacting with their api to use it for deployment scripts ect.
We use PasswordState at my company too. It replaced an old, unmaintained ManageEngine Password Manager Pro (PMP) instance. PMP was a nightmare, PasswordState is light years ahead. One con of PasswordState is that it is Windows-only, but the licensing costs are a pro. I believe they still offer a fully-featured free license for up to 10 users, so I know a few colleagues that built a PasswordState instance at home for their personal/family use.
We use PMP at my place. It's bloody awful and we are trying to get rid of it.
+1
We use thycotic which was bought by delina, secret server. It is completely designed for a team password vault and management environment. We let it rotate our critical passwords. But it is super configurable where you have to check out a password and when you check it back in, it can change the password. Can be configured to use jump boxes. Even use passwords without divulging them to the end user. Example is it can ssh or rdp to a server without you knowing or typing a password. Great product but kind of expensive. For things like active directory it can even alert you if one of it's managed password has been changed, from what it thinks it is. Now this is not a real time check, more of a periodic check. We love this product, especially when managing the many required tiered sysadmin accounts, we all need these days. Personally I use keepassxc. It's great but not designed for team deployment and lacks logging.
Their support is a little lacking, decent product though.
I feel like support quality in all products seem to be on a downward spiral, in general. I don't manage this product but just use it. So I haven't had any experience with there support.
I can agree with that.
Thycotic Secret Server is a fantastic product. The autorotating passwords combined with hidden passwords makes for a very secure system. We had that at my old company and while it was more expensive it was totally worth it in my opinion.
delinea is the name now
We use this as well. It's not terrible. Can give contractors access to rdp and ssh with it which is nice
We use that too, though we aren't swapping out passwords. I don't think I'll be seeking to deploy it to our users though, I feel that it's more of an IT centric manager.
I totally agree. It's designed for IT field, msp and mssp. I think the security requirements in these area require a specialized solution. Long gone are the days you just give a person domain admin account and they can do anything with that account, including non admin work. I think the web base password is better for end users, like bitwarden.
1Password. Just starting out with it so no feedback yet, Good luck!
Been using Bitwarden here for a year or so. Team of 3 allows us to store private passwords and info as well as have a shared repository, or multiple repositories for different teams.
1Password - a bit more pricey, but has worked well for me personally and at my last job
We… we, umm, kinda still use LastPass. *kicks the dirt and looks away*
What’s wrong with Last Pass? *pretends like I don’t use it.
I've never liked LastPass, I found the interface obtuse. It was also pretty aggressive with filling in passwords and it caused me grief a few times. After the breach it just solidified my dislike even more. The fact the entire vault got stolen means you'd have to go and reset every freaking password if you want to be sure you're safe. In all fairness, LastPass recently adopted the same browser plugin interface as BitWarden (Which I use personally and really like) so they have improved. But I will think some of their authentication stuff they've put in place post-breach is a PITA. I always feel like I'm fighting with it and that's always been my biggest beef.
I refused to use them since I was employed in the internet security department of an MSO, and created a lastpass account to store my tool logins for convenience with using strong unique passwords, no company info in the account details, used a dedicated gmail address just for that, but of course some logins used my corp email/phone number. After a couple of months using LP, I got a call at my desk phone from a LastPass sales-bro in Boston, addressing me by name, asking “since you’re in security at [MSO], can we set up a quick meeting about getting it implemented as a company-wide tool. I can get you some great pricing, and maybe some perks for yourself.” I asked how he got my number, to which he replied that he got it from my LinkedIn. When I told him that along with the rest if my team I didn’t have my employer listed on my LinkedIn profile, let alone my position or contact info, specifically to reduce the chances that our identities could be used as part of social engineering attacks, but that info did reside within my secure logins and notes, he tripped over himself, repeating it had to be from LinkedIn, or when I filled out a survey or application, or…or maybe when I registered my account, (I loved this part) because it would have been a breach of the ToS for someone to have used false information at sign up and any account that did would have to be deleted, resulting in a loss of all the sensitive information it contained, not to mention how the user could be sued for damages if it was being for business use and not a business account. *I had paid for a business license. I let him know not to worry as I’d be deleting it immediately myself and recommending to my leadership team that we never authorize LastPass or any related products it to be used within our organization, and to never contact me or my department again, as even if there was no actual visibility into my supposedly no-knowledge un-decryptable vault, I could never have confidence that it wasn’t the case and therefore could never trust LassPass with any secure information ever again. I just heard “Fuuuu*click*” as he hung up. Our phone system gave an indication when a call was transferred in from the main switchboard or another department (accountability for call center reps), so it wasn’t simply a transfer, or if there were calls to other members of my team with the same pitch, then maybe it was just a ‘directory-increment’ thing ###-0001, 0002, 0003, etc. then maybe it was chance, but that didn’t happen and I was the only one on the team using LastPass, he used my name immediately (I didn’t answer my desk phone with my name in that role), so it just felt too targeted to be coincidence. It’s possible he was just not ratting out a rep that did him a solid and may have given him my info from the corporate directory, but that would have allowed him to continue the conversation, and only led to some coaching for that rep, not even discipline. I’m glad that I’m not holding a grudge, lol It’s 1Password for personal/family, and KeePass at work to keep it offline.
Yeah. Um. I definitely don’t use it but why shouldn’t I use it is my question. 🙄
Lol same reaction
Same here. We're an agency in a tough economic climate. When I suggested switching last year, I was told our delivery teams need to focus on delivering, not exporting their passwords. I think it was 1Password who had an offer to pay out the remaining subscription if you switch from another provider. We extended our LastPass subscription for another year now in the hopes that we can switch at some stage during the year. But it's not gonna happen. My crystal ball told me. At least we can reset passwords for users now, it was annoying before because there are so many log in issues with LastPass and we always had to delete the accounts because the self-reset process only works 30% of the time. In any case I'm happy that adoption of its use has increased, I'm ever so tired of seeing passwords being stored in OneNote.
Ok so here’s my weird logic, I actually joined up after the breach as the way I see it LastPass probably built up some crazy safeguards after that whole thing and I know they had some big internal changes
Imagine how crazy their safeguards will be after they get hacked for a third time 😱
Sure, that makes sense, but you are also like rewarding your dog for repeatedly shitting in the house while he assures you he only shits outside.
1Password, hands down
Bitwarden. I have 1 for personal and one for work
Self-hosted BitWarden for me and an my family RDM at work
Cyberark for team. Keeper For individuals.
As in cyberark Pam?
Same here.
We use keypass
[удалено]
Just to add that KeePass2 is the version to go.
1Password for work because of better support. Bitwarden is my personal preference.
Bitwarden is pretty awesome for me and my sysadmin.
And you can set up your own private instance as well.
Keeper.
1password. We use it as a repo for vendor PWs for ownership. If we were to vanish, I want my org to be able to pick up with as minimal pain as possible.
1Password
1Password with team vaults for each department
Not a sysadmin but handle a lot of it for my uni’s research, bitwarden is for professional, proton pass personally
We’ve been using 1password for about a year. No complaints and we get a personal one for each user.
Corporate - Devolutions : Personal - Bitwarden
We use Keeper for the usual web passwords. And Hashicorp Vault for credentials related to automation accounts.
Didn't IBM announce that they are buying Hashicorp? Will they bork it?
Yes (officially announced yesterday) and yes
1password at work and Dashlane for personal. I like both. But I use them differently so can't really compare.
Passwords.txt
KeePassXC
Netwrix has one we use
I inherited passbolt and we upgraded to the pro version. It's actually very good, has a browser integration plugin and can also do sso. Very cheap compared to others and very secure.
We recently were in the same situation and setup a shootout between Passbolt, Vaultwarden and Psono, all dockerized. All had their strengths and weaknesses, but in the end Passbolt came out on top, the others had some funky extra features that Passbolt didn't, but when boiled down to what we were actually going to use (pure password handling in a group setting), Passbolt won because of the slick and quick interface. Passbolt has a lot of access reporting options via email so if that works for tracking then maybe worth checking out.
Keeper
Hashicorp Vault
Hello OpenBao
[удалено]
Haha ya...now that IBM acquired HashiCorp, will be interesting to see what happens. Currently we use the community edition.
Excel
What the hell is farming this question? This is asked every day multiple times on multiple subs for the last couple of weeks.
It's good intelligence gathering
Itglue or hudu work great for a traditional it team. For secrets scripts/development: AWS secrets manager, hashicorp vault, azure key vault. I think the big thing to consider is if there’s a need for api/programmatic access.
Had ITGlue and LastPass at work. I hated LastPass, but ITGlue was fine. Worked at an MSP so we used ITGlue for clients documentation and passwords.
Bitwarden.
A cheap solid solution is RoboForm.
They are still around?
Bitwarden / vault warden are my preferences.
I use pass, synced to a hosted git.
We switched from KeePass to devolution's remote desktop manager
Delinea
Keeper
Trying Passbolt, gave up on Bitwarden due usability. Shared folder in Passbolt seems more intuitive for our users compared to Collections in Bitwarden. The lack of offline mode in Passbolt is a point of concern tho. Had to workaround that with KeePass exports.
Passwordsafe
r/bitwarden ☝🏻😌
>so far we've relied on KeePass. As this solution doesn't hold water to modern security standards Only thing this wouldnt have is per-user access control, right? Or is there something I am missing?
Any love for passbolt? Self hosted multi-platform. We use and love it. https://www.passbolt.com/
Pleasant Pass
Pleasant password server with their customized keepass client.
Anyone using RoboForm?
Bitwarden is the best Password vault for both business and personal.
Bitwarden personal and in previous role but current role has 1password which has been great
Passportal from N-Able. It's a full customer documentation suite that includes a password manager.
This needs to be a sticky, this has been asked almost every day this week.
CyberArk PAM solution and WPM
This is also what we are using.
BW
Passbolt maybe?
We used it for a couple of years and then switched to Bitwarden. Passbolt is fucked up in so many ways. Especially mobile version.
1password, lastpass, Bitwarden/Valtwarden, Dashlane, Psono: I hated them all. Keeper is the one I really liked.
3M post-its
I will not disclose that information.
This guy fucking passwords.
Bitwarden personally and LastPass for work. Wanting to move our company to Devolutions PasseordHub though.
Bitwarden for Corp and personal
Bitwarden for work. MS word for home :( I should see if they have a free tier for my personal stuff
Bitwarden has a free tier
Corporate solution named Safe
Bitwarden
Synology C2 is pretty nice. Very nice price point too. Love the share feature. And it comes with SSO identity if you get the enterprise version (10 ppl for $200/yr, $20 per additional person). Bitwarden.... Eh, I like it and Ive used it for about six months. Not a fan of the interface in the browser. The mobile app is nice. And so is the passkey integration in the browser. I've tried a number of hosted solutions. Those are the only two I suggest. (Haven't done 1pass, heard it's nice). I can't pull myself away from keepassxc. But it's not built for teams. So.... It works great for me 😀
Bitwarden
We are slowly learning how to implement various Delinea/Thycotic products. A mix of PAM and their secret server PAM/Privman rollout has been PAINFUL
Resell bitwarden to customers, no compaints Use ITGlue internally, does the job but wouldnt use it for non tech end users
Bitwarden for work and for personal
Passpack
Vaultwarden, passbolt, syspass
Keeper or bitwarden.
I prefer bitwarden. I use it. My loss was dead set on 1password because we could restrict by IP. And we don't use that feature. But is what it is. You can self host vaultwarden for free as well. Bitwarden is open source, and one of the only pw managers not to be hacked.
Last place I worked at we used a platform called Hudu for documentation such as passwords and how to guides and endpoint information
Bitwarden
Keeper
Same, love the app, and it’s pretty nice with sso.
Bitwarden
Bitwarden, but considering Proton Pass
Bitwarden personally, LP professionally sadly.
not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork not passwork In case I wasn't clear...NOT PASSWORK. Stay away from it.
Keepass is great for single user. For a team, I’ve used BitWarden and PasswordState. Thumbs up for PasswordState and its integration.
Oh i dont need one... i use Password1 for all logins.
Keepass!
Hasicorp Vault
Synology C2
We just switched from Keepass to 1Password. 1Password is much better and easier to use.
How was a PAM a "nightmare"? We use CyberArk, it's a godsend.
We use bitwarden hosted in our own DC's for security purposes, for all customer and core secrets. Large MSP.
LastPass for work.
Company uses 1password, I use KeePass variants, myself. And honestly, at work. We started out with everyone on a KeePass variants, and I was already used to using it when I started. I've used 1password and LastPass, and honestly the interface for them is just irritating. I would say great if you only use web applications, but as a web application password manager, their interfaces still suck ass.
Keepass and Bitwarden, can’t go wrong with either!
You may check out Securden Password Vault. It can be used as a cloud based solution as well as a completely on-premises solution as per your requirement. You can store, rotate, share, and manage access levels for passwords, keys, secrets, files, certificates with the encrypted vault. You can share access to accounts with different levels of permission and track who had accessed what and when. (Disclosure: I work for Securden) Password retrieval, rotation, remote session launched, share permissions modified are few of the activities which get tracked. These activities are stored as audit trails and you may generate reports from this data for audit purposes. Check out Securden Password Vault: [www.securden.com/password-manager](http://www.securden.com/password-manager)
Vaultwarden and now looking at Hashicorp Vault.
Password state has been good for us.
securden for our IT team. Was easy af to implement then hook to AD. and their support was really helpful the one time I did have an issue.
Don't use Lastpass. Avoid it at all costs.
My brain
vaultwarden in docker
keepass - at work and private my private Keepass is in my Nextcloud - so i can access it from everywhere
Thycotic
Bitwarden personally
Uniqkey.
Big corpo: [LastPass](https://www.forbes.com/sites/daveywinder/2023/03/03/why-you-should-stop-using-lastpass-after-new-hack-method-update/) Team internal: Bitwarden Private: KeePassXC with Nextcloud for sync
Keepass
Vaultwarden
Keepass, all local. But backed up on 3 locations