- Password and TOTP generation tools;
- PWNED counts;
- Easy-read feature revealing the NATO-phonetic spelling,
- Simple, secure password share options,
- Browser extension to find and auto-fill all stored passwords,
- ...and various other awesome features (see below!!)
Passwords are protected with AES 256-bit encryption; searchable alongside the assets they reside in, and varying access can be granted to different user roles based on their security group permissions (Groups/Restrictions).
-
General passwords
- Passwords stored within a specific client/company space, used for anything. These can be related to other relevant assets or websites, and restricted via security permissions.
-
Embedded passwords
- Passwords created via a confidential text field within an asset layout are considered embedded passwords; security permissions are inherited from the immediate parent asset.
- These passwords do not show up in client password lists.
-
Personal passwords
- Technicians can store any personal passwords within their My Vault on the Hudu Toolbar.
- These can be imported from .csv or manually created using our password generator.
Guides
The sections below will assist and serve to guide you through the creation, editing, and management of passwords. Expand the sections to start learning!
Access to passwords and the following password functions may vary depending on your Hudu user role as well as the security permissions placed upon you/your security group by the admin and super admin accounts at your organization.
Creating Passwords
- Navigate to a specific client/company space and navigate to the Passwords tab on the left-side menu.
- Click ((+)) that appears when hovering over the Passwords tab or you can click ((New Password)) in the top right.
- In the New Password window, complete the fields:
-
Name
- Give the password a name that will be easily identifiable (ex. "WordPress Admin")
- Choose whether you'd like the password available in the portal (External Sharing).
-
Username (optional)
- Name or email address associated with this password.
-
Password
- Enter a secure password, or click Generate
-
One-time password (optional)
- Enter the secret key given from any third-party authentication application or upload the QR code and we'll generate your 6-digit code, which resets every 30 seconds.
- The secret key must be at least 16 characters long and use Base32 formatting.
-
URL (optional)
- Enter a valid URL that you'd like tied to this password.
-
Notes (optional)
- Relevant notes for this password can be added here.
-
Parent (optional)
- This field can be used to tie the password to relevant assets or websites found elsewhere in your Hudu environment. For more information, see Tools - Relating Passwords below.
-
Folder (optional)
- Select an existing Password Folder to place the new password in.
-
Color (optional)
- Choose a color to color code your passwords.
-
Tags (optional)
- Add new or existing tags to password to easily find passwords based on their tag(s)
-
Name
- Click ((Create)) to finish, OR ((Create and Add Another)) to continue adding passwords (repeat the above steps).
- In order to create an embedded password, we'll need to have access to the admin tab. From the admin tab, navigate to the Hudu admin >> Asset Layouts tab.
- From here, click on a specific asset layout (ex. Desktops).
- Click New Field.
- From this window, you'll want to choose the Confidential Text field option. Give this field a name (ex. Administrator password for Desktop X).
- At this time, ensure that this asset layout is active; you will not be able to perform the following steps if the asset layout is inactive.
- Navigate back to an individual client/company page. Click on the asset layout that we've just edited.
- From here, either:
- Click ((+ New)) in the top right-hand corner if you're creating a brand new asset;
OR
-
- If editing an existing asset, click Edit icon in the top right-hand corner once inside the asset.
- The password field should now be visible and able to be filled out.
- Ensure that you click Create OR Update (depending on the action being performed) at the bottom of the screen; updates to fields will not save without doing so.
Passwords can be manually created or created using our password generator. Our OTP generator can also be used for embedded passwords, but these passwords, again, DO NOT show up in a clients' password list.
- Click My Vault on the Hudu Dashboard (person & lock icon for older versions) to open your personal password vault.
- Click ((+ New)) to manually create password entries.
- In the New Personal Password window, complete the fields:
-
Name
- Give the password a name that will be easily identifiable (ex. "WordPress Admin")
-
Username (optional)
- Name or email address associated with this password.
-
Password
- Enter a secure password, or click Generate
-
One-time password (optional)
- Enter the secret key given from any third-party authentication application or upload the QR code and we'll generate your 6-digit code, which resets every 30 seconds.
- The secret key must be at least 16 characters long and use Base32 formatting.
-
URL (optional)
- Enter a valid URL that you'd like tied to this password.
-
Notes (optional)
- Relevant notes for this password can be added here.
-
Name
- Click ((Create)) to finish, OR ((Create and Add Another)) to continue adding passwords (repeat the above steps).
Editing Passwords
- Navigate into the specific password you'd like to change/update.
- Once inside an individual password, click the Edit icon at the top right-hand side; this allows you to change the name, username, password, OTP secret key, URL, notes, parent, and password folder or tags.
- Change/update the password details as required.
- Ensure that you click Update at the bottom of the screen; updates to the password will not save without doing so.
Revision histories can be found at the bottom of the right-hand sidebar when you're inside an individual password by clicking into a user's name in the Activity Feed. This dates back to password creation.
All changes and edits of passwords are tracked in the Activity Logs (info-specific and global), visible only to admins and super admins.
Managing Passwords
Bulk Actions
- Move passwords to different clients [spaces],
- Archive passwords to the Museum.
- Permanently Delete passwords.
- Change the password(s) to a new folder.
Table View
Choose exactly which columns appear in the password list view within a company. Simply click the Column Visibility Dropdown and deselect/select which columns you would like to see:
Individually Manage
Global Password View
To view passwords across all companies, navigate to the Global section of the toolbar. Only groups with access to Global will see this option on the toolbar. From there, select Passwords from the left-hand sidebar to see a list of all available passwords.
Please note that users in a security group will only see passwords according to their assigned permissions.
Passwords in the Global view can be filtered by company by clicking Filters in the top right next to the passwords search bar.
Tools
For additional information on folders, visit our Password Folders article!
How to Apply Tags
- Navigate to the desired password.
- Under the Tags header, select + Tag.
- Type or select an existing tag and press return.
To filter passwords by tags, select the labeled tags below the Search Passwords bar. The number to the right shows how many passwords are associated with that tag.
- Unique, long, and complex passwords
- Passwords that are easier to say, read, and remember
If the secret key is not provided by the vendor, extract it from the OTP URL or use a tool like webqr.com.
- Set expiration (30 minutes to 30 days)
- Choose whether to include OTPs
- Choose if the link expires after first view
- Click Add to Portal in the individual password view
- Or configure in bulk via the client’s external sharing tab
The portal must be activated before sharing and can be turned on/off anytime.
For setup instructions, visit our External Sharing article.
Passwords created within assets are automatically added to the client’s password section.
Learn more in our Relationships article.
Additional Abilities
The sections below will serve to introduce additional features associated with passwords. The items below can all be found at the bottom of the right-hand action menu when inside of an individual password page.
- Client name.
- The action performed;
- By the user who performed the action;
- or by the IP address from which the action was performed.
- Users who have access to the password will be designated by a green check mark.
- Users who are restricted from accessing the password will be designated by a red X.
FAQ
Answer: During password generation, if your password is prefilling a password, typically this is due to an autofill feature (either the browsers’ or a 3rd party extension’). To disable this, you’ll need to disable the autofill password feature of the password manager/browser.
Answer: We never send the password in plain text. A partial hash of the first 5 characters of a password are sent encrypted and searched using a k-Anonymity model.
Troubleshooting
- Using the generator with Microsoft and products that support Push 2FA. If the product supports Push 2FA, you must use the non-Push mode. Your OTP will not work when choosing Push 2FA from Microsoft accounts and other similar products.