- #Bitwarden authenticator full
- #Bitwarden authenticator android
- #Bitwarden authenticator verification
- #Bitwarden authenticator password
I use a second password manager and a backup Yubikey as my own solution. Another route can be to use a Yubikey or have a backup phone running the same TOTP with Google authenticator. Dashlane’s free option works great for that and the fact that it can only be used on 1 device might be a security feature in this case You could also use LastPass’ Authenticator app and have it backed up via a linked free LastPass account. (2) I’d simply use a second password manager that can store TOTPs. In general I do not like security features that tie themselves to a phone number. But a 2FA that advertises the ability to be logged in via a browser extension, desktop app, and mobile apps adds a lot of unnecessary attack vectors and thanks to human nature users might login via all of them for convenience. As far as I know they are not in any form competing in the password manager space. It’s a debated issue but personally I don’t recommend it.Why does Bitwarden and 1Password recommend Authy? Probably because it’s not bad in terms of security and because it is forgiving in terms of cloud backup and recovery options. There’s also the option of keeping your TOTP seeds on Bitwarden and having it generate your codes (premium account required). It’s not a bad option though and my next choice after Authy. Microsoft Authenticator isn't bad but I've got some concerns over privacy and security behind Microsoft in general. Some say it has changed now, but don't take the chance when there are so many alternatives out there that have been great for years. It has a bad history of locking you out completely if you lose your device ( 1, 2, 3). Whatever you do though, do not use Google Authenticator. There is a github workaround for being able to export your Authy TOTP seeds but it takes a few steps. You'll find lots of options out there, but unfortunately nothing that is open source, cross-platform, and lets you export seeds. OTP Auth - iOS only, lets you export TOTP seeds.
#Bitwarden authenticator android
This is my top suggestion for most people.Īegis - Android only, lets you export TOTP seeds. No authenticator does everything though which really sucks.Īuthy - Cross platform, backs up to the cloud, great support. My suggestion moving forward with an authenticator is no matter what program you choose, make sure you've got a way to have a plaintext version of all of your TOTP seeds. Authy, on the other hand was able to switch platforms without issue. Just wanted to mention that separation of backups in case someone thought that they could rely on it if they switch platforms in the future. Kind of defeats the purpose of using the same app on both platforms. I use both platforms, so I couldn’t just migrate from one to the other after setting up my accounts, I had to re-add them again on the other platform. However, while Microsoft Authenticator supports backups on iOS and Android, they are separate. Free users can get 2FA with email authentication or by using an authenticator app such as Authy or Google Authenticator, while paid users have access to Bitwarden’s own authenticator app. I’ve since migrated to Microsoft Authenticator, which has been working well enough for me so far. If you see Phone sign-in enabled that means you are fully set up to sign in without your password.
#Bitwarden authenticator full
When you tap on the account tile, you see a full screen view of the account. It’s possible that one of the “Bug fixes” app updates since has resolved this issue, but it left a bad taste in my mouth. Open the Microsoft Authenticator app, go to your work or school account, and turn on phone sign-in. YMMV, but I could no longer trust Authy to generate correct OTP codes, which is kind of sad, since that’s the point of the app. This is what pointed me to an Authy app bug. I also had other OTP apps on the same device (at the same time) that generated correct codes and I had Authy on another device that was also generating correct codes. It also didn’t affect every account at the same time, so it wasn’t like the time on my phone was off. It wasn’t permanent, so I don’t think that the seed was corrupted.
#Bitwarden authenticator verification
I had an issue with Authy (at least the iOS app on my iPhone), where it would sometimes generate the wrong verification code for an account.
0 kommentar(er)
