Our password manager requires logging in and using the authenticator every time the session times out, so we all started using a browser plug-in to keep the session alive all day.
That may have come off as judgmental. It wasn’t meant to be. When you make security so onerous that no one will do it then it’s little surprise that people… won’t.
Moreover… when you make your security so onerous that no one will do it, you don’t have security. They know that, but it’s the “nobody every got fired for buying IBM thing.”
Our password manager requires logging in and using the authenticator every time the session times out, so we all started using a browser plug-in to keep the session alive all day.
Seconding the ask on the extension, I hate having to log into my secret store every 15 minutes while working on stuff
Session alive
Same issue. What’s the extension called?
I use session alive
So secure.
Complain to the guys that set stupid policies that encourage people to do this. We gave up trying and don’t care any more.
That may have come off as judgmental. It wasn’t meant to be. When you make security so onerous that no one will do it then it’s little surprise that people… won’t.
Especially when it’s a business.
Some of that is compliance requirements. Daily fines the size of your yearly salary are no joke.
Moreover… when you make your security so onerous that no one will do it, you don’t have security. They know that, but it’s the “nobody every got fired for buying IBM thing.”