Password Management

By Greg Keller Posted May 4, 2015

password management

Password management is often thought of singularly. It is referred to as an end user’s ability to manage the various passwords that they have to web services, devices, and other applications. There are a number of password managers out there to help end users manage their passwords.

But there is also another side to password management: the IT side. From an IT admin’s perspective, they too have to manage passwords for end users. While IT admins sometimes must set the passwords (they’re generally set by their end users), the IT admins are responsible for managing the types of passwords that are acceptable and housing them on their systems.

Their concerns are two-fold: ensuring that each individual password is strong and that, collectively, their password storage mechanism is safe. JumpCloud’s Directory-as-a-Service® (DaaS) supports both initiatives.

Better Password Management through Directory-as-a-Service

Credential Management

Let’s step back for just a second. Directory-as-a-Service (DaaS) is a cloud-based, SaaS offering for directory services. DaaS ends up connecting users to the IT resources they need. Those IT resources could be applications, devices, or networks.

Control Over Password Complexity and Rotation

As part of JumpCloud’s directory services, IT admins have the capability to require and enforce strong password controls. This satisfies the first requirement that IT admins have for password management.

JumpCloud’s password complexity controls enable the ability to define minimum attributes for passwords including length and character types. Additionally, IT admins can specify the most recent password that can be re-used, the password rotation duration, and the number of failed attempts. All of these capabilities help IT admins tightly manage each password’s level of strength.

Secure Password Storage

The other area that concerns IT admins is how passwords are stored. JumpCloud’s passwords are stored securely after being one-way hashed and salted. This provides a significant step-up in security.

JumpCloud does not store passwords in a format that can be read by anybody else – not even us at JumpCloud can read them. When a user enters their password, an encrypted process is used to check whether the two passwords match.

By combining strong passwords with secure password storage, IT admins have both sides of password management covered.

DaaS and You

jumpcoud Directory-as-a-Service

If you would like to learn more about how IT admins can manage their password infrastructure, drop us a line. Alternatively, feel free to check out the cloud-based directory to see the password management tools for yourself. Your first 10 users are free forever, so there’s no reason not to give it a try.

Greg Keller

Greg is JumpCloud's Chief Product Officer, overseeing the product management team, product vision and go-to-market execution for the company's Directory-as-a-Service offering. The SaaS-based platform re-imagines Active Directory and LDAP for the cloud era, securely connecting and managing employees, their devices and IT applications.

Recent Posts