Help Center Home > Authentication > JumpCloud Password Manager for Admins

JumpCloud Password Manager for Admins

JumpCloud offers a full feature password manager that is integrated into the JumpCloud product and all of our single sign-on applications. Admins and users will have a seamless authentication experience without relying on a third-party solution.

After User Groups are enrolled in Password Manager, admins can manage identity, access, and devices from within the admin console.

Note:

Here is the download link for the Password Manager desktop app, if needed.

Overview Page

The Password Manager Overview page shows basic information about Pending Invites, Shared Folders, Enrolled Groups, Password Health, Devices, App Versions, and Logs.

  • Selecting the View All button in Pending Invites, Enrolled Groups, or Shared Folders brings up a modal with details.
  • Password Health information shows the admin an overall password health score along with the number of old and reused passwords in the organization.
    • Weak passwords are determined by if the password uses common words, names, or keyboard patterns, or if it is not long enough and doesn’t contain a mixture of character types.
    • Old passwords are anything older than 90 days.
    • Reused passwords are any that are the same or similar to other passwords for that user. 
  • Knowing Device and App versions can be an important troubleshooting tool, especially to make sure that users are on the most recent version of the Password Manager application.
  • The Logs section shows user events within Password Manager.
    • Selecting the Activity Log link opens Directory Insights, with the Service dropdown pre-filtered to Password Manager and Time Range defaulted to Last 15 days.

Users

The Password Manager Users page shows a list of enrolled users, with email, group, service status, and password health.
password manager users tab

  • Clicking on the extra options menu at the end of each User’s line gives you the option to Revoke Access or send the Invitation Email to Password Manager.
  • Clicking the name of a user opens a details page for that user.
  • ​​​​​​​You can see the details of the user along with password health information and vault information. The selections on the right help navigate to different areas of the page.
  • The Logs section shows activities for this particular user. Selecting the Activity Log link opens Directory Insights, with the Service dropdown pre-filtered to Password Manager, the User pre-selected, and Time Range defaulted to Last 15 days.

Shared Folders

Password Manager Shared Folders gives you seamless item sharing and management across your organization. The Shared Folders tab shows a list of shared folders within your enrolled user groups, along with password health. Access Shared Folder Settings from this tab.
Admins can create new shared folders. You can view and assign users or user groups to any shared folders but you can't view items.

A screen showing Shared Folders tab in JumpCloud Admin Portal

  • The Settings tab gives you the option to set which users and groups can create shared folders. It is set to All users can create shared folders by default. If you choose Specify which users and groups can create shared folders, you have the option to search and select.
    Shared Folder Settings Specify which users or groups can create shared folders

Note:

If your organization is securing the access of shared folders to only those team members who can create shared folders, make sure that any reports of members who can't create the folders are reviewed in the Admin Console by an Admin to confirm permissions for the same. Admin can do this by going to Admin Console > Password Manager > Shared Folders > Shared Folders Settings.

  • Clicking the name of the Shared Folder opens a details page for that folder.
    A screen showing details of a shared folder on JumpCloud admin portal.
  • You can see the details of the folder along with password health information. The selections on the right help navigate to different areas of the page.
  • Admins can provide access to new users or user groups. From the Users with Access area you can revoke access to the folder, or change access level.
    • Folder Manager - has full control over the folder and can make changes to the users and items in the folder.
    • Item Manager - has control over the items in the folder (view, add, edit, and delete).
    • Folder Member - can only use the items in the folder.
  • ​​​​​​​The Logs section shows activities for this particular folder. Selecting the Activity Log link opens Directory Insights, with the Service dropdown pre-filtered to Password Manager, the shared folder pre-selected, and Time Range defaulted to Last 15 days.
  • Shared folders can be exported in Password Manager, but the export has to be done by the Folder Manager for the shared folder.
    • Password Manager exports to CSV in two separate folders, one for personal items and one for shared items.

Creating a Shared Folder

To create a shared folder, follow these steps:

  1. Log in to Jumpcloud Admin Portal.
  2. Navigate to Password Manager> Shared Folders tab.
  3. Click the +Folder button. The Create Shared Folder page appears.
    A screen showing Create Shared Folder page in password manager admin portal
  4. Enter the Details and click Add buttons to give specific users and user groups access.
  5. For selected users, modify their roles in the Access Level dropdown.
    Add Users modal on JumpCloud admin portal

Note:

At least one folder manager must be assigned to create a shared folder.

  1. Click Save.

Tip:

Admins can also update shared folders to assign more users/user groups or to modify/remove access.

Directory Insights

Admins can use the Directory Insights tool to monitor user events within Password Manager.

  • Go to INSIGHTS > Directory, and select Password Manager in the Service dropdown menu.
Click to expand the list of available events:
  • Enable password manager for organization
  • Disable password manager for organization
  • Enable password manager for user
  • Disable password manager for user
  • User activates password manager
  • User deactivates password manager
  • User reactivates password manager
  • Create folder
  • Delete folder
  • Add member to folder
  • Update member in folder
  • Remove member from folder
  • Add item to a shared folder
  • Update an item in a shared folder
  • Remove an item from a shared folder
  • Move an item from a shared folder to another
  • Add group to folder
  • Delete group from folder
  • Edit group role in folder
  • Autofill item
  • App updated
  • App paired
  • App unpaired
  • Delete user account
  • Automatic backup created
  • Restore from backup
  • Create manual backup
  • Export passwords
  • Change pincode
  • Change backup path
  • Reveal item
  • Copy item
  • Autofill item
  • Force sync
  • App update
  • Backup created
  • Export passwords
  • Change pincode
  • Change backup path
  • Paranoid mode enabled
  • Paranoid mode disabled
  • Change extension settings
  • Change item settings
  • Folder force sync
  • Import Items
  • Restore local backup
  • Launch password manager mini
  • Unlock app
  • Reveal item from password history
  • Restore item from password history
  • Unlock extension
  • Pair extension to a mobile device
  • Exclude sites in the extension

Location of Logs and Backup Files

  • Password Manager Logs
    • Mac: ~/Library/Application Support/JumpCloud Password Manager/data/daemon/log
    • Windows: %appdata%\JumpCloud Password Manager\data\daemon\log\
    • Linux: ~/.config/JumpCloud Password Manager/data/daemon/log/
  • Backup Files
    • Mac: ~/Library/Application Support/JumpCloud Password Manager/data/daemon/backup/<directory with 36-digit unique id>
    • Windows: %appdata%\JumpCloud Password Manager\data\daemon\backup\<directory with 36-digit unique id>
    • Linux: ~/.config/JumpCloud Password Manager/data/daemon/backup/<directory with 36-digit unique id>

Deactivate Password Manager

This section shows you how to deactivate JumpCloud Password Manager for your organization.
By doing this, you can deactivate JumpCloud Password Manager for all users and their devices in your organization. This action permanently erases all the stored passwords and sensitive information within the app.

Important:

This action is irreversible and will permanently delete all the stored passwords and sensitive information from user devices. Notify your users and provide an export option before proceeding.

To deactivate Password Manager for your organization, follow these steps:

  1. Log in to the JumpCloud Admin Portal.
  2. Go to USER AUTHENTICATION > Password Manager.
    password manager edit group enrollment in admin portal
  3. Click the Users tab in the top menu.
  4. Click the green Edit Group Enrollment button.
  5. Remove user groups by following these steps.
    Now the user groups that were bound to Password Manager are deactivated.
  6. Click Settings in the top menu.
  7. Under Deactivate Password Manager, click Deactivate.
    deactivate user groups
  8. Confirm the Deactivation and now the Password Manager is deactivated successfully.

Note:

Deactivating JumpCloud Password Manager does not uninstall the app from the user devices. Users can choose to uninstall it manually. Please refer to JumpCloud's official support documentation or contact their support team for further assistance.

Back to Top

List IconIn this Article

Notebook IconLearn More

Get Started: JumpCloud Password Manager

FAQ: JumpCloud Password Manager

Enroll Users in JumpCloud Password Manager

Still Have Questions?

If you cannot find an answer to your question in our FAQ, you can always contact us.

Submit a Case