In this article, you'll learn how to view the At-Risk Password report that lists all passwords accessed by each user in IT Glue since their first day using the account. The report shows all passwords that haven't changed since the user last accessed them.
This report covers the following actions:
- Password shown
- Password created
- Password updated
- Password imported*
- Password exported*
*Imported or exported and downloaded on or after March 11, 2017 only.
- You must have Administrator level access to run the report
- Users who are not Administrators will only see the passwords they have access to
Running the report
- Navigate to Global > Reports. Then, click on the Passwords icon.
- Enter the name of a user to report on and then click Generate.
Once the report is created, a link to the report can be shared with other IT Glue users, if desired.
Viewing at-risk passwords only
Clicking the At Risk tab opens a report which lists all passwords that have not been changed since the user last accessed it. This report allows you to immediately prioritize which of your client's passwords to update first. For example, if an employee has departed, you will want to first get an overview of all at-risk passwords only, rather seeing a long list of all passwords they accessed since the beginning of their account usage.
Viewing all accessed passwords
Clicking the All Accessed tab opens a report that lists all passwords the user has ever accessed, including the at-risk passwords mentioned above. It lists entries where the user created, modified, imported, or exported the password, as well as those where the user clicked on the show password icon (eye icon). In this report, at-risk passwords are shown in red in the Password Accessed column.
The scope of the report includes entries for general and embedded passwords, plus any custom password fields in Flexible Assets.
Sharing the report link
An Administrator can share the report URL with other team members. Click on the Copy URL button in the top of the screen to copy and share the report URL.
Only users that have a Manager, Editor, Creator, or Read-Only role will be able to access the report using the shared link. Note that the report will not display a complete list if the person viewing it doesn't have access to all the same passwords. Administrators will always see the complete report.