Use keypass and store the database in gmail, live mesh, or what ever online file storrage solution you want. Then you can always get a copy of it for use assuming you have access to keypass which can be on a flash drive and an internet connection.
As has been covered by Mircea Vutcovici, the password is only stored after hashing, which means it will have fixed length when stored. Ie, it’s not obvious that there should be such a limitation. I believe what was encountered may rather be a limitation imposed specifically by the mysql client application. The get_tty_password function seems … Read more
The closest equivalent to Active Directory for Linux is FreeIPA. FreeIPA is made by Redhat, and provides both LDAP and Kerberos based authentication to a Linux network… FreeIPA is an integrated security information management solution combining Linux (Fedora), 389 Directory Server, MIT Kerberos, NTP, DNS, Dogtag (Certificate System). It consists of a web interface and … Read more
I’m going to go ahead and take my comment to answertown. It will have to be 3rd party. As you already pointed out, none of the three options you mention are optimal. Microsoft does not provide a perfect way of doing this. There just isn’t one. It will be third party, and it will almost … Read more
This is the best I’ve got so far – log on to an older (I’m using Server 2008 R2) server with the Windows Security shortcut displayed in the start menu. Open the Start Menu and drag the Windows Security item to the desktop. The resulting shortcut can be used on a 2012 box. The CLSID … Read more
We use horde for password changes, but not sure if it can fit the workflow you want.
You’re trying to edit this setting using the Local Security Policy editor but the setting is configured in Group Policy and that’s where you need to change it.
If your script can connect to any of those servers, anyone with access to the script (or privileged access to the machine the script runs on) can connect to any of those servers. If the script needs to run autonomously, all bets are off. The answer here is no, there isn’t a absolutely safe way … Read more
What you need is WPA-2 Enterprise, combined with a RADIUS server for authenticating users. If you have an existing Active Directory infrastructure, then you can use the Network Policy Server role in Windows to do the authentication and allow users to log on with their AD username/password.
I would probably write a custom web-based solution hosted on a corporate intranet. (take a look at http://lastpass.com for inspiration, or to use it. Sharing passwords is one of its features, though it may not work for your volume.) EDIT: Sure, best solution, don’t share them. Storing cleartext passwords in any medium is dangerous, particularly … Read more