By Greg Keller Posted May 4, 2015
Password management is often thought of singularly. It is referred to as an end user’s ability to manage the various passwords that they have to web services, devices, and other applications. There are a number of password managers out there to help end users manage their passwords.
But there is also another side to password management: the IT side. From an IT admin’s perspective, they too have to manage passwords for end users. While IT admins sometimes must set the passwords (they’re generally set by their end users), the IT admins are responsible for managing the types of passwords that are acceptable and housing them on their systems.
Their concerns are two-fold: ensuring that each individual password is strong and that, collectively, their password storage mechanism is safe. JumpCloud’s Directory-as-a-Service® (DaaS) supports both initiatives.
Better Password Management through Directory-as-a-Service
Let’s step back for just a second. Directory-as-a-Service (DaaS) is a cloud-based, SaaS offering for directory services. DaaS ends up connecting users to the IT resources they need. Those IT resources could be applications, devices, or networks.
Control Over Password Complexity and Rotation
As part of JumpCloud’s directory services, IT admins have the capability to require and enforce strong password controls. This satisfies the first requirement that IT admins have for password management.
JumpCloud’s password complexity controls enable the ability to define minimum attributes for passwords including length and character types. Additionally, IT admins can specify the most recent password that can be re-used, the password rotation duration, and the number of failed attempts. All of these capabilities help IT admins tightly manage each password’s level of strength.
Secure Password Storage
The other area that concerns IT admins is how passwords are stored. JumpCloud’s passwords are stored securely after being one-way hashed and salted. This provides a significant step-up in security.
JumpCloud does not store passwords in a format that can be read by anybody else – not even us at JumpCloud can read them. When a user enters their password, an encrypted process is used to check whether the two passwords match.
By combining strong passwords with secure password storage, IT admins have both sides of password management covered.
DaaS and You
If you would like to learn more about how IT admins can manage their password infrastructure, drop us a line. Alternatively, feel free to check out the cloud-based directory to see the password management tools for yourself. Your first 10 users are free forever, so there’s no reason not to give it a try.