You know that not every account is only used by a single user, right?
Comment on Passkeys Explained: The End of Passwords
Doccool@lemmy.world 5 months agoYou don’t share your personal password across the whole team now, do you? At least for your teams sake I hope you don’t.
Passerby6497@lemmy.world 5 months ago
Doccool@lemmy.world 5 months ago
I think that’s the problem right there… If you share accounts across multiple people you have far greater problems than how passkeys work…
Passerby6497@lemmy.world 5 months ago
Or they’re using it as intended. I’ve had more than one account I’ve gotten by cost sharing with friends. That’s not a problem, that’s a solution.
morriscox@lemmy.world 5 months ago
And it only takes one person with a grudge to cause a problem. I have seen it. I have shared accounts but very carefully and if someone abuses it then they permanently lose access to my stuff even if they are family.
Zwuzelmaus@feddit.org 5 months ago
share your personal password
We share a password. Then we don’t call it a personal password anymore. Was that your question?
CompactFlax@discuss.tchncs.de 5 months ago
That’s an IAM no-no.
Zwuzelmaus@feddit.org 5 months ago
So? Read my question above.
CompactFlax@discuss.tchncs.de 5 months ago
You create unique accounts for every team member so that access can appropriately be logged.
Or you implement a PAM tool that logs access and vaults the password and rotates it after use.
gian@lemmy.grys.it 5 months ago
Obviously not the personal password, but sometimes you need to share a password. Think about the password for a remote desktop your team may need to connect to for troubleshooting a problem for example.