The Secfix Agent operates in the background on employee computers. It updates crucial data relevant to information security compliance and identifies if a Password Manager is installed. This can be tracked under Monitoring -> Computers in the PW MANAGER section.
How it works
The Secfix Agent scans the list of desktop applications and browser plug-ins installed on the computer. If a Password Manager is detected, the check is positive (β ). However, if no third-party Password Manager is found, Secfix displays a β (not compliant) status on the Computers and Automated tasks pages.
The check for Password Managers is consistent across the following platforms: MacOS, Windows, and Linux.
What the Secfix Agent DOES NOT check
Website-based password managers: Secfix can't detect if an employee uses a password manager directly on a website. Generally, when a company effectively implements a password manager, users install browser plug-ins and/or desktop apps. If users must open a webpage to retrieve a password, it significantly reduces its utility, nullifying the purpose of a password manager and increasing the risk of non-compliance.
Native MacOS Keychain: This isn't considered a password manager by Secfix because it's standard in all macOS installations, and active usage can't be verified.
Native Google Chrome password manager: Secfix doesn't deem the Google Chrome password manager as a sophisticated tool. Its standard with all Google Chrome installations, and its active usage can't be verified. Additionally, it offers admins limited control over the company's password manager policy.
Supported Password Managers
1Password
Bitwarden
Dashlane
Enpass
KeePass
KeePassXC
Keeper
LastPass
MacPass
NordPass
Okta
OneLogin
Password Safe
Proton Pass
Strongbox
Onelogin
RPass
Dropbox Passwords
PassSecurium
Buttercup
If your Password Manager solution isn't mentioned above, please submit it as a feature request here.