Hey all,
We had great timing joining Last Pass just a couple of months after their massive data breach and mishandling of security that was announced in December. Even better, LastPass support has finally fixed the login page for us so that it wasn't grabbing onto MFA codes, or inserting passwords in every field . At least we weren't part of the breach, at least we weren't part of the breach... (my daily mantra)
I personally am testing Keeper and it's having the same troubles as LP was on the login page, inserting passwords into all fields, etc. However, Keeper has the very cool ability to generate MFA codes inside its app. It works with every MFA need I've found so far... except the hosted login Mobile ID tokens. I haven't dug into this deeper, I just tried to upload the QR code in testing to see what would happen and it was angry.
I'm curious what other orgs are using password manager-wise, and do they work well with this darned hosting login page? (I've found all sites with the token field on the same page as the username/password have issues, including some bank pages, etc).
Does anyone use Keeper currently and is there a way to generate the MFA codes inside the app? I'm guessing no..
Curious about general SOP for password managers and Tessitura too!
Tanks in advance!
We don't use LastPass across the org, but I use it personally and it works fine to auto-populate the username and password, and does not populate the OTP field. I've also had trouble finding a solution that I would recommend to other users at my org.
interesting. when our MSP first onboarded us into LP it was working fine and then slowly degraded. It was saving 6-character passwords for the OTP field, etc. It took weeks of support for them to figure it out (technically the ticket is still open, but that's another story).
We had a Team version of Dashlane that had no troubles at all.. did you have to use the custom fields or anything to set up those credentials in LastPass? I suppose that answer doesn't matter but I'm curious!
I didn't have to use any custom fields it just worked for me. Here is a screenshot. (i blurred out my username)
interesting! I see east 1 but just for confirmation, you're using https://e01hosting.tessitura.com/ to log in? How long have you been using LP? I wonder why we have such troubles on this page... Semi-related -- I'm hoping you did read into the full extent of that LP data breach. Their initial announcement didn't disclose that there were things that weren't actually encrypted, like site URLs.. At the very least change your Master Password to something challenging. But they've lost all credibility since they decided to slip that small detail in their announcement two days before Christmas... it was incredibly disappointing.
yes I use https://e01hosting.tessitura.com/Citrix/TessituraWeb/ to login! Yes after the data-breach I did change my master password just incase! I thought it was a major blow, but not sure what other solution to use so I'm sticking with it for now.