Hi All,
Where I used to work there was a password vault system called CyberARK which we needed an RSA token and a PIN number to access the vaults, this was all authenticated against the DC and then will let you access the passwords to the customers servers, the passwords were also reset hourly for extra security. My question is, is there an open source project which does something similar to this? I have searched the web but I cannot find an open source equivalent of cyberark.
Do you also think, if it this doesn’t exist, would this be something if done right would catch on? I mean you can use LDAP3 and google PAM 2 step authenticator to practically do almost all of what cyberark does it’s just storing the passwords in a secure way and avoid rainbow table hacking etc etc...
All ideas and comments welcome :-)