2 step verification with mail not working

Hi,

Even though I have turned on 2-step verification with email ON, I can still log on to my Bitwarden Firefox extension with my master password.

How to set the settings so I have to use the 2-step verification with email when logging on the Bitwarden extension on Firefox?

And everywhere else for that matter. I expect when I turn on 2-step verification with mail, that it is turned on everywhere it is possible to log on to my Bitwarden account.

Thanks!

@joejoejoe Hi!

  1. Are you sure, you didn’t check “remember me” on all those devices? Then 2FA wouldn’t get checked for around 30 days.
  2. Check if email-2FA is really activated (you should see a “checkup mark” on “email” in the web vault 2FA-section).
  3. If it is really activated and you want to test it out: you can use “deauthorize all sessions” in the web vault. But be sure to have set up the right email address for 2FA and at best, store your 2FA recovery code as well before going on, if not already done.
  4. Email is not the best 2FA method… I would check, if it is possible for you to use the best (and free) method of 2FA here, FIDO2 WebAuthn, as that is possible with many “devices” now, such as Windows Hello, maybe your phone, YubiKeys, …
2 Likes

Hi Nail1684,

Thanks very much!

I did a deauthorize and it works now. Thanks! :smiley:

1 Like

@joejoejoe You’re welcome!

But one (further) word of caution to email-2FA: Beware of “circular dependencies”. If you have saved your email address password (only) in Bitwarden, then it is to avoid to get into a situation, where you would have to login to Bitwarden to login to your email address to then be able to get your email 2FA for logging in to Bitwarden… I hope you understand what I mean. :wink:

2 Likes

Yea I am going to set up FIDO2 WebAuthn, thanks! :pray:

1 Like

Adding to this, be sure to create an emergency kit and be sure it includes the 2FA recovery code. This will allow you to break any circular dependencies that you might discover.

1 Like