LastPass for Business, a convenient tool for maintaining security best practices
February 10, 2020

LastPass for Business, a convenient tool for maintaining security best practices

Anonymous | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User

Modules Used

  • Password Manager
  • Multi-factor Authentication (MFA)

Overall Satisfaction with LastPass for Business

We're currently using it across our organization to assist with secure password management. It's a great tool for sharing common passwords across the company or within a subset of users where needed (e.g. services with single user accounts/testing accounts/etc.). It also has effective monitoring to ensure everyone is using secure passwords (e.g. strength scores) and warns of cases like password re-use. With LastPass we can maintain a high level of security by requiring strong passwords and multi-factor authentication.
  • Provides secure password/secure note sharing.
  • Auto-generation and storage of highly secure passwords.
  • The browser extension can be buggy and will occasionally lock you out.
  • Could be more forthcoming about their own security incidents.
  • LastPass has automated security management processes saving time/money.
  • LastPass has reduced security related cognitive load allowing for more focused security efforts in areas that matter most.
Prior to LastPass we relied on "in house" methods of secret management and password memorization across services. At that point, very early in the company's history we had issues with password re-use and lost passwords. Some of that was mitigated by using multi-factor authentication, but it wasn't until we moved to LastPass for Business that we truly were able to say we adhered to security best practices. We selected LastPass for Business because it was the best platform (most credible/reliable) at the time we made the decision.
At our current rate of growth we've had no challenges around onboarding or offboarding employees with LastPass. However, we've only used it with relatively small sets of users. I'm sure it would be more challenging to maintain with hundreds or thousands of users as the UX around user grouping and granular access control can be a little messy.
Scenarios where LastPass for Business is well suited:
- Small/Medium sized companies looking to enforce a higher standard of security among employees password management. Also for those who need a certain level of auditing to achieve security compliance.
- Cases where you have sensitive security information (e.g. encryption keys) to share across the company or parts of the company.

Scenarios where LastPass for Business is less suited:
- I'm not convinced LastPass for Business would scale well in a larger organization. The user management can be a bit awkward and permissions within LastPass may not be granular enough.

LastPass for Business Feature Ratings