I use 1Password at work. It pretty much ticks your boxes. With 1Password, a collection of passwords are referred to as a vault.
you can share passwords, either permanently or temporarily (and even with people outside of your company).
vaults can be shared with people in your company (so you just add all your secrets to the vault)
by default each person get a “personal vault”, which is not shareable (but you can temporarily share secrets in the vault, if you want too).
nobody can read the content unless you share it with them (or one of your client apps gets exploited)
As the OP mentioned, it “just works” with everything.
My only gripes with it is that it’s a bit cumbersome to log into the website (you basically have two passwords, plus mfa)… but if you’ve got the browser extension installed, it’s painless. The other gripe I have is, it’s tricky to have an overview of what passwords/vaults already exist. So, if you have enough people, it’s inevitable that passwords will be accidentally duplicated - and no one will have a clear idea what was duplicated and who has access to it (unless you’re a member/owner of a vault).
You mentioned you wanted something “hands-off”, I think that after the initial setup, you’d get just that.
I use 1Password at work. It pretty much ticks your boxes. With 1Password, a collection of passwords are referred to as a vault.
As the OP mentioned, it “just works” with everything.
My only gripes with it is that it’s a bit cumbersome to log into the website (you basically have two passwords, plus mfa)… but if you’ve got the browser extension installed, it’s painless. The other gripe I have is, it’s tricky to have an overview of what passwords/vaults already exist. So, if you have enough people, it’s inevitable that passwords will be accidentally duplicated - and no one will have a clear idea what was duplicated and who has access to it (unless you’re a member/owner of a vault).
You mentioned you wanted something “hands-off”, I think that after the initial setup, you’d get just that.