The best enterprise security products have flexible policy creation and administration tools, and this is the case here. For example, you can set up a policy to override the default auto logoff protections for PC shutdown, or when in screensaver mode, or when idle, or when the computer is locked. There are dozens more policies to choose from, including support for multifactor tokens such as Yubikey, its own "Sesame" tool, and Google Authentication one-time passwords. You can also strengthen your online access to your vault by restricting access to specific countries, and excluding any access from anyone using the Tor file-sharing network.
You can also federate your LastPass logins across other cloud services such as Wordpress, Salesforce.com, Box and others using SAML. There is a long list of potential notifications that can be setup, including users who have a certain number of duplicate or blank passwords. These come with pre-written warning messages that can be easily customized for your circumstances. The tool also has a few simple reports available from the admin console. There is API access to its reporting engine, which is a nice touch.
LastPass can integrate with the standard Windows Login process to automatically create new users and sign existing users in.
One of the things we liked about LastPass is that upon install (and you can run this security check afterwards as well) it tells you which insecure passwords your browsers (or password vault) have already saved, and gives you the option to remove them.
Another is that it synchronizes your logins via its own cloud service: once you create a login to its cloud, things are updated for your various entries. Sometimes the updates took a few minutes to propagate around the Internet. In addition to logins, their vault also stores text notes securely and can auto-fill online forms.
LastPass automatically installs its browser plug-ins, where you can manually add sites, or notes, to its vault, along with other configuration tasks.
Also included in the software is a complex password generator that has a few interesting options, such as the ability to set a password that you can easily pronounce and with a minimum complexity. You can either bring this up from the browser plug-in menu or from the Web client.
LastPass is free for the individual user, and you get the full functionality of the tool this way so IT managers can easily check it out and see how it works. Once you are ready to upgrade to the enterprise version, you can start a free two-week trial, after which it will cost you $24 per user per year. This includes the ability to use all of its smartphone clients; otherwise you will need to subscribe to a Premium account, which is $12 a year per user. We like this simplicity and ease of getting familiar with the product.