Super Admins and Linked Accounts

Customer forum for LastPass Enterprise

Moderators: admin, azitnay, anatoly_LP, chantieLP, JoeSiegrist, robyn

Super Admins and Linked Accounts

Postby illwill » Wed Jul 01, 2015 4:00 pm

I have read over and over again that a LastPass Enterprise Admin, not even a Super Admin can access a users personal Linked Account which is great BUT what if a Super Admin logs in AS that user?

Situation: Employee is terminated and the Super Admin resets the password for the users Enterprise Account. Let's just say the same Lastpass Super Admin is also an Exchange Admin and can access any verification emails sent to the users mailbox as well. The Super Admin then logs into the Enterprise Lastpass AS the user he/she just reset, wouldn't that Super Admin; who is now emulating the user, now have access into the users personal Linked Account? From what I can see there is no way to 'unlink' within the personal account so as an end user how can they protect the access into their personal account in the event they are terminated? Would changing the password on the personal account kill the link?
illwill
 
Posts: 1
Joined: Wed Jul 01, 2015 3:45 pm

Re: Super Admins and Linked Accounts

Postby jpenny84 » Wed Jul 01, 2015 6:02 pm

jpenny84
 
Posts: 8743
Joined: Tue Mar 06, 2012 9:10 pm

Re: Super Admins and Linked Accounts

Postby illwill » Wed Jul 01, 2015 6:07 pm

Thanks. From what I gathered this statement stands out:

"If a Super Admin Master Password Reset is performed, the personal account is disconnected from the Enterprise account. This is especially done to prevent enterprise admins from accessing the personal account."

Can this be verified as a true statement?
illwill
 
Posts: 1
Joined: Wed Jul 01, 2015 3:45 pm


Return to LastPass Enterprise

Who is online

Users browsing this forum: No registered users and 5 guests