Forum Discussion

Elliot Kirk's avatar
Elliot Kirk
Former Employee
Oct 29, 2019

Autofill Blog #2: Password Security

The last blog post on Autofill in Microsoft Edge received several comments and inquiries from readers on Password Storage and Security. We understand this is a subject of great interest and concern t...
Suhrid_Palsule's avatar
Suhrid_Palsule
Icon for Microsoft rankMicrosoft
Nov 08, 2019

CLE_Robbie Our current Enterprise offerings include a centrally administered ability to Enable/Disable Autofill for each of the three data types - passwords, payments (cards) and personal info. Besides this, there's another set of policies that allow an organisation to classify website URLs as 'important' and prevent re-use of passwords used on those websites elsewhere.

It would be great to know more about what features (besides centralized password sharing and control) would be helpful to your organisation. Feel free to reply on the same thread, so others may also benefit from our discussion 🙂

CLE_Robbie's avatar
CLE_Robbie
Copper Contributor
Nov 08, 2019

Suhrid_Palsule 

 

I'm pretty sure that I'm rather small in size compaired to others as I only have between 10-15 employees at any given time.  About 10 of them are main positions with little to no turn over.  However, it's those extra 5 that are always changing and that is why I would benefit from having one central location to house and maintain login credentials as I mentioned.  When onboarding a new employee I would LOVE a platform that would enable me to create one login for them in one place.  Then once I assign them to a department they would have everything they need to function throughout their day.

 

At the moment with LastPass, I have to monitor them in two places, not to mention pay per user.

  • Suhrid_Palsule's avatar
    Suhrid_Palsule
    Icon for Microsoft rankMicrosoft
    Nov 14, 2019

    Thank you, CLE_Robbie for sharing more context.

    And size of organization is hardly an important criteria here. The central account management requirement that you describe has become essential for most Enterprises. I have noted your feedback and it will be taken into consideration and discussed by the relevant teams, internally. Thanks, again.

    • HotCakeX's avatar
      HotCakeX
      MVP
      Dec 02, 2019
      Is Master password really needed?
      I mean passwords are already being protected either by Windows 10's user account password or PIN, anyone who is going to view a password needs to know Windows user account credentials. that not enough?
      • Suhrid_Palsule's avatar
        Suhrid_Palsule
        Icon for Microsoft rankMicrosoft
        Dec 02, 2019

        HotCakeX Your question is fair. It is mostly the original user (who knows the OS password and PIN) who is mostly the one operating the browser.

        Master Password feature, simply, offers an additional layer of privacy during those instances when your browser is being used by someone other than you. This helps prevent unauthorized or accidental  entry into accounts of the original user. 

Resources