As Butch mentioned, individual user accounts via RADIUS w/ an LDAP backend is the "best" way -- for devices that support it.
For devices that don't support RADIUS/LDAP/other centralized backend and/or for credentials (or other sensitive data) that must be shared amongst multiple people, I highly recommend LastPass Enterprise: https://lastpass.com/enterprise_overview.php Note that "authentication" is only one of the A's in AAA. The other two, "authorization" and "accounting", are just as important. -- Jeremy L. Gaddis e: jer...@as54225.net Network Engineer m: +1.812.865.0581 On Mar 21, 2013, at 3:04 PM, Sean Heskett <af...@zirkel.us> wrote: > As our network grows and we keep adding more hardware I am wondering what > others do with passwords to all these devices. > > i hate having one password that works on a lot of devices but i haven't > found a good industry practice or software tool to store all this data > securely. > > I'm thinking of looking at our network as different classes of devices and > making some kind of standard password for each device class but then make > the specific password for the device different by adding something to the > "base" class password so it would be different than all the others in the > class. > > servers > routers > switches > UPSs > BHs > APs > etc. > > > what are you guys doing? any good tools out there? > > thanks, > sean > _______________________________________________ > Wireless mailing list > Wireless@wispa.org > http://lists.wispa.org/mailman/listinfo/wireless _______________________________________________ Wireless mailing list Wireless@wispa.org http://lists.wispa.org/mailman/listinfo/wireless
