I have some questions about password vault (ex: Cyber Ark) implementations, with focus on Central Password Manager.
How is the password vault protected ? Is encryption part of the scheme, or simply restricted physical access ?
About Central Password Manager, if priviledge account password is changed each time its used, how can this be managed if a user access a shared account a few seconds before another one ? During each of there own session, the shared account is associated with two different password, it's a problem, isn't it ?
Aucun commentaire:
Enregistrer un commentaire