- Password and TOTP generation tools;
- PWNED counts;
- Easy-read feature revealing the NATO-phonetic spelling,
- Simple, secure password share options,
- Browser extension to find and auto-fill all stored passwords,
- ...and various other awesome features (see below!!)
Passwords are protected with AES 256-bit encryption; searchable alongside the assets they reside in, and varying access can be granted to different user roles based on their security group permissions (Groups/Restrictions).
-
General passwords
- Passwords stored within a specific client/company space, used for anything. These can be related to other relevant assets or websites, and restricted via security permissions.
-
Embedded passwords
- Passwords created via a confidential text field within an asset layout are considered embedded passwords; security permissions are inherited from the immediate parent asset.
- These passwords do not show up in client password lists.
-
Personal passwords
- Technicians can store any personal passwords within their My Vault on the Hudu Toolbar.
- These can be imported from .csv or manually created using our password generator.
Guides
The sections below will assist and serve to guide you through the creation, editing, and management of passwords. Expand the sections to start learning!
Access to passwords and the following password functions may vary depending on your Hudu user role as well as the security permissions placed upon you/your security group by the admin and super admin accounts at your organization.
Creating Passwords
- Navigate to a specific client/company space and navigate to the Passwords tab on the left-side menu.
- Click ((+)) that appears when hovering over the Passwords tab or you can click ((New Password)) in the top right.
- In the New Password window, complete the fields:
-
Name
- Give the password a name that will be easily identifiable (ex. "WordPress Admin")
- Choose whether you'd like the password available in the portal (External Sharing).
-
Username (optional)
- Name or email address associated with this password.
-
Password
- Enter a secure password, or click Generate
-
One-time password (optional)
- Enter the secret key given from any third-party authentication application or upload the QR code and we'll generate your 6-digit code, which resets every 30 seconds.
- The secret key must be at least 16 characters long and use Base32 formatting.
-
URL (optional)
- Enter a valid URL that you'd like tied to this password.
-
Notes (optional)
- Relevant notes for this password can be added here.
-
Parent (optional)
- This field can be used to tie the password to relevant assets or websites found elsewhere in your Hudu environment. For more information, see Tools - Relating Passwords below.
-
Folder (optional)
- Select an existing Password Folder to place the new password in.
-
Color (optional)
- Choose a color to color code your passwords.
-
Tags (optional)
- Add new or existing tags to password to easily find passwords based on their tag(s)
-
Name
- Click ((Create)) to finish, OR ((Create and Add Another)) to continue adding passwords (repeat the above steps).
- In order to create an embedded password, we'll need to have access to the admin tab. From the admin tab, navigate to the Hudu admin >> Asset Layouts tab.
- From here, click on a specific asset layout (ex. Desktops).
- Click New Field.
- From this window, you'll want to choose the Confidential Text field option. Give this field a name (ex. Administrator password for Desktop X).
- At this time, ensure that this asset layout is active; you will not be able to perform the following steps if the asset layout is inactive.
- Navigate back to an individual client/company page. Click on the asset layout that we've just edited.
- From here, either:
- Click ((+ New)) in the top right-hand corner if you're creating a brand new asset;
OR
-
- If editing an existing asset, click Edit icon in the top right-hand corner once inside the asset.
- The password field should now be visible and able to be filled out.
- Ensure that you click Create OR Update (depending on the action being performed) at the bottom of the screen; updates to fields will not save without doing so.
Passwords can be manually created or created using our password generator. Our OTP generator can also be used for embedded passwords, but these passwords, again, DO NOT show up in a clients' password list.
- Click My Vault on the Hudu Dashboard (person & lock icon for older versions) to open your personal password vault.
- Click ((+ New)) to manually create password entries.
- In the New Personal Password window, complete the fields:
-
Name
- Give the password a name that will be easily identifiable (ex. "WordPress Admin")
-
Username (optional)
- Name or email address associated with this password.
-
Password
- Enter a secure password, or click Generate
-
One-time password (optional)
- Enter the secret key given from any third-party authentication application or upload the QR code and we'll generate your 6-digit code, which resets every 30 seconds.
- The secret key must be at least 16 characters long and use Base32 formatting.
-
URL (optional)
- Enter a valid URL that you'd like tied to this password.
-
Notes (optional)
- Relevant notes for this password can be added here.
-
Name
- Click ((Create)) to finish, OR ((Create and Add Another)) to continue adding passwords (repeat the above steps).
Editing Passwords
- Navigate into the specific password you'd like to change/update.
- Once inside an individual password, click the Edit icon at the top right-hand side; this allows you to change the name, username, password, OTP secret key, URL, notes, parent, and password folder or tags.
- Change/update the password details as required.
- Ensure that you click Update at the bottom of the screen; updates to the password will not save without doing so.
Revision histories can be found at the bottom of the right-hand sidebar when you're inside an individual password by clicking into a user's name in the Activity Feed. This dates back to password creation.
All changes and edits of passwords are tracked in the Activity Logs (info-specific and global), visible only to admins and super admins.
Managing Passwords
Bulk Actions
- Move passwords to different clients [spaces],
- Archive passwords to the Museum.
- Permanently Delete passwords.
- Change the password(s) to a new folder.
Individually Manage
Tools
For additional information on folders, visit our Password Folders article!
How to Apply Tags
- Navigate to the desired Password.
- Below the Tags header, select +Tag.
- Write in an applied tag or choose a recommended one that may already exist and hit return after typing.
To filter passwords by tags, select the labeled tags below your Search Passwords bar. The number to the right of the title is how many passwords have that tag/how many passwords will show.
If the secret key is not provided by the vendor, you will need to either strip it from the OTP URL provided or use a tool like https://webqr.com/ to grab the secret.
- the amount of time you want the share link to be active (from 30 minutes to 30 days);
- whether to include OTP codes;
- and if you want the password to expire after the first view or not.
- Click Add to Portal at the top right of the page when inside an individual password
- OR configure passwords in bulk in the external sharing tab of a client.
The portal must be activated before passwords can be added, and may be activated/deactivated at any time.
For information regarding setting up client portals, visit our External Sharing article.
When creating a Password within an asset, it is automatically added to the password section of said client.
Visit Relationships for additional information!
Additional Abilities
The sections below will serve to introduce additional features associated with passwords. The items below can all be found at the bottom of the right-hand action menu when inside of an individual password page.
- Client name.
- The action performed;
- By the user who performed the action;
- or by the IP address from which the action was performed.
- Users who have access to the password will be designated by a green check mark.
- Users who are restricted from accessing the password will be designated by a red X.
FAQ
Answer: During password generation, if your password is prefilling a password, typically this is due to an autofill feature (either the browsers’ or a 3rd party extension’). To disable this, you’ll need to disable the autofill password feature of the password manager/browser.
Answer: We never send the password in plain text. A partial hash of the first 5 characters of a password are sent encrypted and searched using a k-Anonymity model.
Troubleshooting
- Using the generator with Microsoft and products that support Push 2FA. If the product supports Push 2FA, you must use the non-Push mode. Your OTP will not work when choosing Push 2FA from Microsoft accounts and other similar products.