The inactive 2FA report seems to list all the saved accounts which have the possibilty of enabling 2FA without the TOTP code saved in Bitwarden. I prefer to use a seperate authenticator app for my 2FA accounts rather than Bitwarden, therefore the list is mostly made up of accounts I have already set 2FA up for. It would be helpful if I could manually mark these accounts as ‘enabled’ or similar, so that they don’t show up in this report anymore.
Seconding this feature, but for other reasons
twofactorauth.org says that Steam offers 2FA… Which is true, but not using TOTP but from their own app. Same goes for twitch.tv which use Authy (which is spyware but that’s another discussion)
Another exemple for another issue, I have 2FA enabled on my GitHub account, with a physical U2F token (but not configured inside Bitwarden)
1 Like
This can be completed by saving any bit of information in the 2FA field for the password. It’s crude but it works wonders. I did this for stuff I use Authy for. Or my google/windows logins which use a Notification.
1 Like
I have many important accounts secured only by a security key, or a hardware authenticator like Yubico Authenticator. There is no “default” way to store this information for convenience in Bitwarden.
Currently, the “Inactive 2FA” section will mark these important accounts as “2FA Inactive” because the TOTP field is blank, making the feature useless for me.
I can use a custom boolean field to store that the account is indeed 2FA secured, but it won’t be used by Bitwarden for the security reports. So it would be nice to have a field by default.