OK, I migrated provisionally. It didn’t help that the BitWarden migration instructions claim you can import directly from LastPass. You cannot. That said, exporting/importing a .csv was easy enough.
I really dislike the browser integration. LastPass was one-click + master password to log in (and not even that if you set a timeout on the master password). In BitWarden you must copy/paste the username, copy/paste the password, login. 4-5 operations instead of 1-2. I mean, it’s free, but can’t it be better? I don’t see my mom or whoever using this extension. This was all on desktop; I’ll try mobile.
I also think it’s unwise that the extension by default stays logged in until browser restart. There should be a default timeout interval like 15 or 30 minutes, if only to drill into your brain your master password, but also what happens when you go to sleep and your housemate robs you blind?
Is there another alternative to LastPass that doesn’t require that much copying-and-pasting? It doesn’t matter much to me that Bitwarden is free; I’m willing to pay for a better alternative.
I use LastPass. The hacking incident was interesting, but their response to it gives me more confidence in them than I had before. I don’t know which other password managers have it, but for me, the emergency access feature is a key selling point.
I can nominate people who will be able to request access to my password vault, and specify the waiting time - so if I am incapacitated or I die, my son can request access - over the course of (in this case) 3 weeks, LastPass will keep asking me if I want to deny the access request. If I don’t act on that (because I am dead or in a coma), he gets access.
As I understand it, the way that is achieved never involves the passwords being in plain on the server - I think it goes like this:
The vault (encrypted with my key) is sent to my son and encrypted with his key
This double-encrypted copy comes back to me and is decrypted with my key (leaving it only encrypted with his key - and this is stored on the LastPass server ready to be supplied in a valid emergency access case
OK, having just installed BitWarden, where are the controls to seize my password file from them and put it in another cloud? I’m poking about and not seeing it. For example this BitWarden page about storage makes no mention of managing the location. Storage | Bitwarden Help Center Thanks.
Will any/all of the password managers that have been discussed here import the Windows password on a Windows computer? And then be able to display this password to the owner?
What browser? I don’t have to do this on Edge or Chrome desktop or any of my iOS browsers. It even populates the clipboard with my TOTP codes so I can just paste and go.
It’s server based, so you either sync to Bitwarden or you sync to your own self hosted Bitwarden or compatible server. I use Vaultwarden hosted in an LXC on a home server and an encrypted back up to OneDrive.
Firefox. I just tried with Chrome and you’re correct: I get a little “shield” icon that pops up. A shame it doesn’t work with my browser, Firefox isn’t exactly fringe.
Wow, great! How? Does BW have instructions? Linky link?
Bitwarden needs the browser extension to do autofill. Then, it also needs to be setup to autofill that particular site. When you open the browser plugin it will list the sites that match the page you are on, then you can just click on the correct entry and it will autofill. If the correct site isn’t shown, then search for it. Then click the card looking icon on the entry to view the entry, you may have to scroll down a bit, but there will then be two buttons: “autofill” and “autofill and save”. The first will fill do it just that once, the second will modify the entry so it remembers the page you are on.
If you are logging into the Bitwarden web dashboard or using the Bitwarden desktop app, then you will have to copy paste. Install the browser plugin.
Yes, the default in the browser plugin is to stay logged in as long as the browser is open. I change it to 5 minutes, and then lock. That requires me to re-enter my master password after 5 minutes, but I don’t have to do 2-factor again.
Bitwarden has the same thing. I’m not sure of the technical details, and I haven’t tested it.
You may have to adjust the the plugin location so it appears in the status bar instead of just buried in some sub-menu. For me, I click on the puzzle piece, then find the extension I want, then click the gear, then toggle “pin to tool bar”.
This is vaultwarden. As far as how these things go, it is pretty easy to setup. That assumes you know how to setup docker/LXC, possibly a reverse proxy, SSL certificates, etc. All of those can be done by recipes, but probably not worth it to save yourself $10/year.
OK, I’m trying BitWarden on my iPhone and there seems to be zero integration with apps or browser. I went to my broker’s (schwab) web site in Chrome and the OKCupid and Meetup apps, and they seem blissfully unaware I have a password manager. Copy/paste repeat for credentials. Which isn’t any worse than LastPass. But what am I missing, why is this awesome?
Most of the time BitWarden autofill on the desktop works fine. Just click on the site name in the Bitwarden extension and it should autofill. You can also view the details of the site and there is an explicit Autofill button.
There are a few sites which confuse the extension and only then you need to resort to multiple copy and pastes.
It took me a minute to realize you meant on iPhone. It took me a bit (the path to the option was more complex than you wrote) but I got that working. I’ve managed to log into a couple of apps. Nice, thanks!
I don’t understand what you are trying to accomplish here. Control Panel has a Credential Manager where you can view Windows logins but password managers, like BitWarden, are intended to be used after you have logged into Windows.
I was trying to figure out the password for the Windows login on a particular machine. I thought that perhaps a password manager could find that password for me. Guess not.
For the most part, I use a password manager to store the passwords I’ve created elsewhere. Some passwords are generated in the password manager when I ask for it to do so. But it’s not going out and collecting passwords on its own.
Firefox (en-US) (mozilla.org)