LastPass Enterprise Review

It consumes tons of client resources, especially as an administrator.


What is our primary use case?

Primary usage is password management and sharing of credentials.

What is most valuable?

  • Sharing passwords
  • Deactivating users
  • Controlling company logins
  • Import existing credentials from different file formats.

How has it helped my organization?

Off-boarding of people is easy without changing shared account passwords.

Sharing Passwords with new employees for quick onboardings.

What needs improvement?

There is no group inheritance.
The management through the plugin is poor. It consumes tons of client resources especially as an administrator.
The plugin crashes from time to time.
URL recognition is difficult especially when adding new credentials, LastPass saves the Account creation url. Also when resetting a password, Lastpass recognizes the password change, great, but it also adds the password reset URL to the site. So when using the plugin and navigating to the saved url, you always end up in the password reset URL of the respective service.
As well you need to double check the settings. You have 3 options (hide passwords, read only, administrator) but when sharing a folder with a group or user, the check boxes randomly change, so you need to open the share settings again to check the checkboxes.
All passwords can be read if you are familiar with input fields and their manipulation. This is something LastPass might not be responsible but there must be an implementation if the input field is not "Password" that it does not fill in then password.
Further more there are several websites with Javascript features in the password field like "show pass" or other fancy features which overlay the Lastpass plugin and deny the Lastpuss button in the input field to be used.
The search is poor, got better with the recent update for chrome browsers.
credentials are not sorted by letter.
You cant share single credentials out of a folder to individuals. So either you extract the single entry into a new folder and share it with former group and single person or you share the whole folder to the user. This makes it a bit messy and having in mind that the plugin is really really slow you rather want to have fixed folders with fixed groups on the folder and add indivduals in the enterprise panel --> groups section. With the limitations mentioned you end up with almost same amount of groups as users in your account.

For how long have I used the solution?

We have been using this service for two and a half years now.

What was my experience with deployment of the solution?

Updates for browsers are not as regular as security issues arise.

What do I think about the stability of the solution?

We have had stability issues several times.

What do I think about the scalability of the solution?

The more credentials you have the slower this app is.

How is customer service and technical support?

Support answers quickly when enterprise customers call/write. Solutions are sometimes poor and un-reproducible. For example, they ask if you can logoff, login, or restart your computer which have no effect on the error reported. As well there are problems with shared credentials not available to allowed shared users and also available to not allowed users. After filing a ticket, magically it is solved without any feedback from support why this happened. This makes it really dangerous if you trust this software and by accident recognize on a client machine that the user has access to credentials which shouldnt be in the vault of the user.

Which solutions did we use previously?

We used keepass before.

Why we switched: Because we believed in feature and usage improvement, as well as more credential control.

How was the initial setup?

The installation was not at all straightforward. Naming is hard, URL recognition is painful, and auto-fill is freaking people out. Imagine you have 100 different logins for Google (Adwords, Analytics, personal, merchant), and LastPass always fills out the first match, based on the URL.

What about the implementation team?

Inhouse.

What's my experience with pricing, setup cost, and licensing?

If you import from sources like XML, keepass, CSV files be sure to clean the import files, this reduces the adjustments in the slow tool itself. So take some extra effort to have clean files when moving to LastPass otherwise you end up manipulating each individual entry.

Which other solutions did I evaluate?

We have not evaluated other options, we were more or less early adopters and haven't tried other solutions.

What other advice do I have?

Consider picking another solution.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
See it in Action

Start a Free 14 Day Trial

Add a Comment
Guest
Sign Up with Email