Concept
With the implementation of the Quickpass Tech Vault v2 (released April 2022), Tenants are now able to add 3rd Party Passwords to the list of Passwords. (routers, other website passwords, etc). In addition, when an account is imported to the Dashboard the Account information is stored in the Tech Vault. If the account is subsequently removed from the Dashboard, the historical passwords are retained as an Unlinked Password.
Prerequisites
- Tenant is Enabled with Quickpass Tech Vault
- Tenant has QDesk, QGuard, or the Bundle Account Plan
- Login Role has access to the Customer and the Password Access Group has not limited the Login Role's Access to the Password Entry (see https://support.getquickpass.com/hc/en-us/articles/5414744454295-Quickpass-Password-Vault-Security for instructions for limiting access to a Password Entry)
- Customers created in Quickpass Dashboard https://support.getquickpass.com/hc/en-us/articles/360035206574-How-to-Create-New-Customer
- Passwords are stored in the Quickpass Password Vault https://support.getquickpass.com/hc/en-us/articles/1500004646101-How-to-Setup-Scheduled-Password-Rotation-of-Administrator-Accounts-Quickpass-Password-Vault
3rd Party Passwords
Adding a 3rd Party Password entry to the Quickpass Tech Vault is now possible via manual entry.
NOTE: Currently 3rd Party Passwords are manually entered individually. Future Editions of this feature will allow bulk imports (for example when exported from another Password Storage utility)
- Click the Customer you want to create a Password Entry for.
- Click the Passwords Link on the left side of the screen
- Click the Add Password Button in the top right corner
- The Add Password Screen will load.
- Display Name - this value is what will display on the Passwords Screen
- Username - this value is the username for the account you are entering. Ensure you include the entire username if required. (ex Domain\Account or email@address.com)
- Account Type Drop Down
- Currently these values are limited to the following list. Select one that is most appropriate. (If you want to have an Account Type added to this list, please use the Feature Request page to request this. https://quickpass.canny.io/feature-requests)
- Currently these values are limited to the following list. Select one that is most appropriate. (If you want to have an Account Type added to this list, please use the Feature Request page to request this. https://quickpass.canny.io/feature-requests)
- URL - If appropriate for the Password Entry type you selected, populate this with the URL to access the Device/Website you are creating the Password Entry for.
- Any value you enter here will be converted to URL format. If you require HTTPS or HTTP access to the URL ensure you include those in the URL.
- Computer name - if this Password Entry is related to a computer, add the computer name here.
- Notes - this is a section to provide notes on the device or any details you wish to record about the Password Entry
- Password
- Current Password - this is a Mandatory field in order to save the Password Entry. Enter the current password.
- One-time Password - see this link for details on how this is configured
https://support.getquickpass.com/hc/en-us/articles/5779505132183-Setting-One-Time-Password-MFA-Secret-for-a-Quickpass-Password-Vault-Entry
- Security
- Please review https://support.getquickpass.com/hc/en-us/articles/5414744454295-Quickpass-Password-Vault-Security for details on how to configure this option.
- You can adjust the Security Option during the initial creation of the Password Entry or edit the existing entry at another time.
- Click the Save button to save the entry into the Password Entries.
Unlinked Accounts
Accounts that are imported to the Dashboard are automatically shown in the Passwords section of the Dashboard. End User Accounts that have the "Remember Password" Toggle switch turned on will have subsequent password changes stored in the Password Entry for that account. Administrator and Service Accounts will automatically have subsequent password changes stored in the Password Entry for that account.
- If any of these accounts is deleted from the Dashboard (remember this does NOT delete the account from the Directory Source) the Password Entry is converted to an Unlinked Account in the Passwords screen. This is done so that any historical password changes for the account are stored in the Password Entries list.
- If the account is subsequently re-imported to the dashboard a NEW "Linked" Account entry will be created. The historical passwords for the previously imported accounts will not be linked to the New "Linked" Account.
Viewing a Password Entry
- Click the Customer you want to view a Password Entry for.
- Click the Passwords Link on the left side of the screen
Note: Engineer and HelpDesk Login Roles will be able to see the Password Entries unless the Password Security has been altered to prevent them from seeing it. Review https://support.getquickpass.com/hc/en-us/articles/5414744454295-Quickpass-Password-Vault-Security for additional Details. Primary/Super, and Manager Roles have access to all Password Entries. - You can search for the Account Display name if known or you can Filter via the Quickpass Linked Password filter option set to "No".
- The returned results will be displayed
- You can copy the Username value from the Password Entry by clicking the Copy Username button
- You can copy the Current Password value from the Password Entry by clicking the Copy Password button.
- If the Password Entry has an OTP stored for MFA purposes, you can click the OTP button to view it
The One Time Password (MFA) code will be shown in a Pop Up Window
The Current OTP Code will be shown. At the bottom is an indicator line to show how much longer that OTP will be valid for.
- You can copy the Username value from the Password Entry by clicking the Copy Username button
- Click on the displayed Password Entry to view additional details.
- Password
- Clicking on the EyeBall for the Current Password Box will display the Currently Recorded Password
- This password value can be copied to the clipboard via the Copy Password Button
- Sharing the current password can be done by clicking the Share Password Button
- For additional details on this process please click this link to review the details on how to do this.
- Up to 4 Historical Passwords will be shown in the Latest Revision section.
- Clicking on the EyeBall for the Current Password Box will display the Currently Recorded Password
- One-Time Password can be viewed by clicking the Reveal OTP button
The Current OTP Code will be shown. At the bottom is an indicator line to show how much longer that OTP will be valid for. - Security Group information will be shown if enabled and configured. The list of Login Role Groups that HAVE access to the password will be shown.
- Password
Editing a Password Entry
A Password Entry can be modified to add a new password or change any of the existing details.
- Click the Customer you want to edit a Password Entry for.
- Click the Passwords Link on the left side of the screen
Note: Engineer and HelpDesk Login Roles will be able to see the Password Entries unless the Password Security has been altered to prevent them from seeing it. Review https://support.getquickpass.com/hc/en-us/articles/5414744454295-Quickpass-Password-Vault-Security for additional Details. Primary/Super, and Manager Roles have access to all Password Entries. - You can search for the Account Display name if known or you can Filter via the Quickpass Linked Password filter option set to "No".
- The returned results will be displayed
- Click on the Password Entry Display Name to view the Password Entry
- Click on the Edit Button in the top Right Corner of the Password Entry screen
- All values can be edited. Specific details for values below.
- Password - Current Password
- The current password cannot be viewed on the Edit screen. Entering a password value here will replace the "current password" with the new value and the existing password value will be moved to the Latest Revision List.
- One-Time Password
- If the MFA/OTP needs to be changed or added, enter the value for the OTP
- Usually these are called "Secret Code", "Secret Key", "Backup Code", or can be shown when manually entering the MFA into any MFA app when the QR Code doesn't work or is not scannable.
NOTE: The industry standard and RFC4648 requires the characters to be Uppercase. If your provider has shown you the Secret Code in Lowercase characters, please convert to Uppercase.
- Usually these are called "Secret Code", "Secret Key", "Backup Code", or can be shown when manually entering the MFA into any MFA app when the QR Code doesn't work or is not scannable.
- If the MFA/OTP needs to be changed or added, enter the value for the OTP
- Restrict by Security Group.
- Please see this KB Article to get additional details on how this is configured.
https://support.getquickpass.com/hc/en-us/articles/5414744454295-Quickpass-Password-Vault-Security
- Please see this KB Article to get additional details on how this is configured.
- Password - Current Password
- Click Save when all edits are done.
- You will be taken back to the Password entry Details page after your changes have saved.
Deleting a Password Entry
A 3rd Party or Unlinked Password Entry can be deleted. (Password Entries linked to an account currently imported into the Dashboard cannot be deleted) NOTE: This is a permanent operation and cannot be undone - Use with Care.
- Click the Customer you want to edit a Password Entry for.
- Click the Passwords Link on the left side of the screen
Note: Engineer and HelpDesk Login Roles will be able to see the Password Entries unless the Password Security has been altered to prevent them from seeing it. Review https://support.getquickpass.com/hc/en-us/articles/5414744454295-Quickpass-Password-Vault-Security for additional Details. Primary/Super, and Manager Roles have access to all Password Entries. - You can search for the Account Display name if known or you can Filter via the Quickpass Linked Password filter option set to "No".
- The returned results will be displayed
Option 1
- Put the Check Mark in the Box for the Password Entry for the account you wish to delete.
- Click the Delete Icon at the top of the Table Bar.
- A prompt to confirm you want to delete the Password Entry will appear. If you want to continue, click Delete.
Option 2
- Click on the Password Entry Display Name to view the Password Entry
- Click on the Delete Button in the top Right Corner of the Password Entry screen
- A prompt to confirm you want to delete the Password Entry will appear. If you want to continue, click Delete.
Next Steps
- Sharing a Password Value Outside the Quickpass Password Manager
- Setting One Time Password (MFA Secret) for a Quickpass Password Vault Entry
Comments
0 comments
Please sign in to leave a comment.