The Secfix Agent runs quietly in the background on employee computers to support information security compliance. One of its key responsibilities is verifying whether a Password Manager is installed and actively used on each monitored device.
You can view results in Monitoring → Computers, under the PW MANAGER section.
How the password manager check works
The Secfix Agent performs a platform-wide scan to identify installed desktop applications and browser plug-ins. If a supported Password Manager is detected, the check is marked as compliant (✅).
If no supported third-party Password Manager is found, the system flags the computer as non-compliant (❌) on both the Computers and Automated Tasks pages.
The check for Password Managers is consistent across the following platforms: MacOS, Windows, and Linux.
What the Secfix Agent DOES NOT detect
The following tools or methods are not considered compliant by the Secfix Agent:
Not Supported:
Website-only Password Managers: If users only access a password manager via a website (without an app or plug-in), this is considered non-compliant. Such usage lacks security and usability benefits.
Native macOS Keychain: This default macOS tool cannot be verified for active usage and is excluded from compliance checks.
Google Chrome’s Built-in Password Manager: While common, it lacks the control, tracking, and security features needed for corporate compliance. Therefore, it is not recognized as a valid password manager.
Supported Password Managers
The Secfix Agent supports detection of the following password manager applications and plug-ins:
1Password
Bitwarden
Dashlane
Enpass
KeePass
KeePassXC
Keeper
LastPass
MacPass
NordPass
Okta
OneLogin
Password Safe
Proton Pass
Strongbox
Onelogin
RPass
Dropbox Passwords
PassSecurium
Buttercup
If your Password Manager solution isn't mentioned above, please submit it as a feature request here.