is there a central shared password management function for an IT
There is not, currently.
Sharing is currently all or nothing. Either you have the same
keychain as someone else, or you have an entirely separate
keychain. We hope to add more fine grained sharing and other more
business specific features in the future.
Any plans to make group sharing possible in the near future? I'm
a personal user of 1Password, and I love it. I'm now shopping for a
password solution for my 5 person office, and I've tried three
other products that are set up for groups. I hate them all. No one
stands up to the design, ease, or security of 1Pass. Do you have
any solutions I can offer my company?
That's certainly something we're exploring for the future,
though I couldn't promise when it may be a part of 1Password as
it's quite a big departure from our current 'personal' model for
1Password. That doesn't mean it won't happen, but obviously there's
a lot to consider before we could make it happen, most notably how
to securely share the items without massive amounts of complexity
that most users will never want to deal with.
Please record a +1 for me as well for some sort of group
At a previous job, we used keepass and had multiple data files
for each department. You were given the password to that data file
if you needed it. When someone left, we knew which passwords they
had access to and changed them as appropriate.
We don't need anything super fancy, just a way to ensure that
only some people have access to some passwords. However that works,
we're willing to be flexible.
Two thoughts I've had:
1) The ability to share a single 1password file with multiple
people, and segregate folders to different folks (people outside of
IT shouldn't have access to database passwords). Perhaps folders
can be set up with a different password?
1) The ability to create/use multiple files (with associated
master passwords) and switch between them (we'd manage giving
people the master p/w)
I agree it's a hard problem but if you can get it right, I think
it has a potential to be majorly disruptive. Most other groupware
password solutions are terrible, require infrastructure, and are
incredibly expensive (very enterprise-y). I'd have to imagine
something focused on the smaller scale (teams 5-10 people) would be