https://www.passbolt.com/ - still under development, imho a very good approach. Used it for the last 4 months and still happy. You can share password but only to one user at a time and not on groups, maybe this will come as a feature. Edit: with version 1.5.0 the group feature will be ready \o/
selfhosted : passbolt
Edit : cost is free, if you self host it :)
What i like about it is it TRULY is PCI complaint, something you know and something you have. Have being your private key, and know being your password. The only con so far is users HAVE to share a password with you, meaning if an employee quits and you don't know his password, no one can log in as that user. But again, that's secure and complaint.
I was using Passbolt for a while. It has some nice features, like group-based password sharing and a time lock on your vault, but it doesn't have AD integration yet and at this point you have to backup/copy your private key to be able to unlock your passwords on any device other than the one you used for initial setup. And you can't define the password generation settings (length, character set, etc.).
Those things are on the roadmap, but until they're finished, I don't think it's ready for a production environment.
Hi, we have started using passbolt to overcome these file sharing. Since it uses openpgp based and even access recocation is better.
Just take a look here: https://www.passbolt.com
Oh and with the beginning of 2022 also mobile apps are available.
Cheers
Passbolt pro version can finely handle permissions in a group level. You can easily try it for free here: https://www.passbolt.com/cloud/signup
Then, up to you to self-host your own pro instance if you don’t trust cloud: https://help.passbolt.com/hosting/install
Heard a lot of good things about passbolt: https://www.passbolt.com
>The password manager your team was waiting for. Free, open source, self-hosted, extensible, OpenPGP based.
Never tried though.
I’ll be up front that I haven’t installed it yet but going to be adding a container built for https://www.passbolt.com as a password manager. Open-source, self-hosted, docker images...checked a lot of boxes so hoping it works well.
Take a look at https://www.passbolt.com . Has most of the features you mentioned. Wanted to implement this for our company but had very little feedback from our users. LDAP was something they are currently working on but it will be a paid feature. For our small team, we use KeePassX, but this isn't really to be used by multiple users.
an alternative I've yet to try is https://www.passbolt.com, lemme know if it works for you. When we evaluated this tool for the company I work for it sounded the best solution "on the cheap" for teams.
In case you're a single person using it probably bitwarden would be enough.
I use keepass for most of the infra stuff. But it's only 2 people and we both have full access. If you want to share certain passwords with certain people you will end up having a ton of keepass databases. A co-worker showed me https://www.passbolt.com . Looks very promising and LDAP integration is planned for Q2 2018. The authentication is based on GPG keys.
If it's between only those two, I'd say sysPass.
Personally, I use Passbolt. It's in the early stages so there isn't any LDAP or 2FA support yet. https://www.passbolt.com/
I couldn't get past the user interface on sysPass... let alone the one on TeamPass.
Bitwarden might be an option as long as you aren't sharing across multiple people.
From their F.A.Q
What is passbolt?
> Passbolt is a free and open source password manager that allows team members to store and share credentials securely. For instance, the wifi password of your office, the administrator password of a router or your organisation social media account password, all of them can be secured using passbolt.