When a password is behind token, users cant even SEE that there is a password entry.
They assume there is not a password in ranger, then create an entry for the perceived missing password after they speak to someone who is authorized to give them the password to the asset.
Long story short, we now have assets with multiple admin passwords. We have different people updating different password entries (based on what they can see) and we have passwords visible to everyone that should be a tokened password, since they can create new passwords without a token.
The duplication and confusion is creating a HUGE problem. People are trying password that don't work, and on and on.
Users with the password manager should be able to see the password entry, even if they cant access the username or password.
They assume there is not a password in ranger, then create an entry for the perceived missing password after they speak to someone who is authorized to give them the password to the asset.
Long story short, we now have assets with multiple admin passwords. We have different people updating different password entries (based on what they can see) and we have passwords visible to everyone that should be a tokened password, since they can create new passwords without a token.
The duplication and confusion is creating a HUGE problem. People are trying password that don't work, and on and on.
Users with the password manager should be able to see the password entry, even if they cant access the username or password.
Comment