TL;DR– Using a password manager with convenient auto-type and sharing allows you to pick very strong, unique passwords for all sites. We started to use KeePass to fill that role.
At KeyRocket, we care deeply about streamlining workflows. Naturally, we’re interested in password managers. Somebody recently tipped us off to KeePass and we gave it a try. In general, a password manager allows you to store all your passwords and has some kind of feature to make it easy to enter them.
Note: this is a Windows approach, not sure how this would work on other operating systems.
Auto-Type is really easy to set up, when you create a password, just go to the Auto-Type tab, click Add and find the right window + enter wildcards for example to for twitter enter *twitter*.
That way you can open twitter.com in the Browser, select the username field and press Ctrl+Alt+A to fill your username/password.
Improved Password Security
Not needing to remember passwords allows you to use a very strong, random password for every account you have. Out of the box, KeePass generates a random password whenever you create a new entry (Ctrl+I), then select the .. to make the password visible and copy and paste it to the page where you create the account/changed the password.
Problem: No access rights / groups management in KeePass
Solution: Create multiple databases.
Shared file “all” – everybody in the team has these passwords, for example our twitter account
Shared file “admins only” – this contains things like hosting admin passwords
Personal file – only personal accounts and passwords
Obviously you can create more files if you have more different groups. One thing that is unfortunate is that you can’t drag/drop passwords easily between files, but you can use import/export instead.
Problem: How to open multiple databases automatically on Keepass Start?
Bonus: How to open them automatically without entering a password?
Solution: Create a batch file and open them with a password that is encrypted with your user account – ArticleProblem: Shared password database become messy / hard to maintain.
Solution: Use Groups / Directories vigorously from the start.
Problem: Synchronization – How to keep the shared password database files in sync?
Solution: KeePass says it’s multi-user capable – unfortunately we don’t use windows server storage. Not sure how this will work, we will just try to put the files in box.net and we’ll see, our fall back will be limiting “write permission” on the files to a single user.
Problem: How to access your passwords “on the road”
Solution: There are clients available for iOS/Android on the KeePass Download Page
Please comment if you use KeePass in a team setup, I’m sure there is stuff I’ve missed and I’d love to hear it!