Managing Passwords for Nonprofits - an MSP’s Solution
Managed Service Provider, Community IT, reveals why it chose Secret Server for non-profit password management over a custom-built solution. More about the password management software they chose: https://thycotic.com/products/secret-server
Matthew: Community IT is a number 1 ranked MSP in Washington, DC., and is ranked in the top 200 of MSPs nationally by MSPmentor.
Johan: Our mission is to help nonprofit organizations accomplish their missions through the effective use of technology, and we do that by providing managed services and support for nonprofit organizations.
Matthew: A number of years ago we had a custom-built password management system that we used to manage access for our technicians to the client information. Managing over 50 techs accessing 150 client records was really unwieldy for us.
Johan: We were interested in an Enterprise Solution for managing passwords and other confidential information. That's really the most important information that we store for our clients, and it was important to us to find a partner and a solution that we had a lot of confidence in, and that our customers would have confidence in it as well.
Matthew: So…in terms of the actual deployment of Thycotic Secret Server, we spent a few hours with the support engineer at Thycotic, and then we were able to deploy Secret Server on our own and we were up and running in just a few hours.
Johanny: Having privileged account management with Thycotic Secret Server was very important to us because our clients trust us with their information. By having Secret Server helping with the management and the assignment of secrets to a just particular technician… making sure that once the technician doesn't need the password anymore, we can retrieve the information and keep it secure.
Matthew: One of the things we really appreciate about Secret Server as an enterprise password management solution is the out-of-the-box integration that it had with our existing technology tools. We maintain a lot of different systems, and so it's really nice to have tools that are built to work together as opposed to needing to figure out how to build custom integrations between tools.
With the proliferation of different services and systems, it's important for organizations to take access and management to those systems very seriously. Having a good policy and procedure for maintaining and auditing access to all of the applications that your organization is using is absolutely critical.
One of the features that we used with our enterprise-level clients is the password rotation feature. We use that for privileged accounts such as domain admin or other very sensitive credentials. It gives us the ability to rotate those credentials on a regular basis to make sure that they are secure, complex, and always changing.
Johan: One of the things that we've done as an MSP is invest in a variety of tools that help us manage all aspects of our customers’ IT, and Thycotic is an important part of that. It helps us to manage their credential information; it helps us manage the most sensitive information they have as an organization. The investment we've made at Thycotic has made us a lot more efficient in delivering the services we deliver to our clients.
Johanny: Implementing Secret Server…having centralized solutions and having them log in to retrieve the passwords has definitely saved us a lot of time.
Johan: Thycotic is incredibly valuable to us as an MSP because it allows us to confidently store our customers’ most sensitive information in a secure and reliable way.
More about the password management system they chose: