The Bitwarden Blog
Charting a Path For Employee Credential Management with Policies
February 1st, 2021
Increasingly our digital lives between work and home are blurred. We sometimes use common devices. Other times we might use online services across both worlds.
For credential management, every company sets the approach that is right for their business and industry. Recently Bitwarden released a new enterprise policy that makes that simple and easy.
By default in Bitwarden, every account begins with the creation of a Personal Vault. This Vault is visible to the account owner and the account owner only, and is protected by the owner’s master password.
When that individual becomes part of a team they can participate, as assigned, in the Organizational Vault.
With Organizations, administrators and owners can view Organization passwords, but not the personal vaults of employees. Those remain private to the individuals.
Many companies like this approach as it empowers employees to use best practices for password management regardless of where the credential might reside, either in the individual or organizational vault.
This is particularly convenient for credentials that span personal and business worlds such as GitHub and LinkedIn. While these types of credentials are generally viewed as owned by individuals, they are often used in the context of work environments.
There are times when companies need to take extra care to ensure that all credentials are retained within an Organizational vault. This may be due to industry regulations, or company policy. Whichever the case, Bitwarden now has a Personal Ownership Policy that enables companies to disable the personal vault, and require that items be stored in the Organizational Vault. This helps companies and employees stay within the appropriate guidelines.
Another method that helps companies protect themselves and employees is the Single Organization Policy. This ensures that members or a company organization can only be members of that organization and not others, thereby keeping all of the company preferences intact.
Of course, users are welcome to be members of other Organizations, just under a different account, login, and master password.
Enterprise policies help administrators set a secure foundation for their team. Additional options include options for managing two-step login, master password requirements, parameters for the password generator, and use of single sign-on.
For more information on Bitwarden Enterprise Policies please see our help center article.
Ready to get started on your own free Enterprise Trial? Click here to sign up.
Back to Blog