🚧 Account Switching

I don’t have a need for this, but if I did I’d use the solution in your last para. I do this anyway for reasons unconnected with BW, as I have different profiles for personal use, and 2 web sites I maintain. I habitually have 3 Chrome sessions open, and I use a different BW account in each. I find it simple and very effective.

This would be great feature. My only request is it allows to specify hosting address for each account. I have one company I’m holding off on transitioning to Bitwarden because the owners are using personal lastpass and company lastpass linked. For the company they want self-hosted for personal they want hosted.

2 Likes

I would actually prefer if I could have a single account with multiple email addresses like GitHub.
You can add [email protected] to your [email protected] account, then your organization can invite you based on your organization email address.

I think this would also be significantly easier to implement over adding a feature that allows you to browse two accounts at the same time across all of the applications.

3 Likes

I second that. I’ve been using the chrome profile way for months now, and find it unnecessary difficult. On mobile it’s even worse. Single account multiple addresses would work.

This feature request is indeed for the opposite. I’m using Chrome profiles myself for years and have Android for Work installed, which separates my personal and work life. I find the way LastPass currently manages this extremely efficient.

I need my personal credentials on my business profile from time to time, because some websites (like GitHub) prefer only one account with multiple e-mail addresses - but other cases it’s just a separate account, and so having my business passwords in my personal account could just be a data breach, or harder to make restrictions on for companies.

It is not common practice to have multiple accounts logged into the same application. In the example you referenced, Chrome profiles, two profiles cannot be used at the same time. In order to use different profiles, you must switch profiles manually, but the sessions are not shared.

If your company does not want you to mingle personal and business data, then you should not be logging into your personal BitWarden account on your business device or business profile.

In regards to a data breach, unless you have a weak password on your personal account, the data breach is going to be related to the BitWarden server, the BitWarden client, or the implementation of BitWarden itself. In cases where company data is highly sensitive, there should be a configuration option for on-premise BitWarden servers to require a dedicated account with no shared emails.

I prefer Sean’s suggestion best. It means signing in two times instead of one, but it keeps everything clean and easy.

IMHO this can be as simple as Bitwarden releasing a copy of its existing browser extension and calling it Bitwarden Business, with a different icon color or design.

This won’t help people who need more than 2 accounts, but that seems to be a small group. It’s a quick, practical and minimal effort solution for everyone else.

The way 1Password handles it is weird. When you add your businesses cloud account along side your personal vault, it assumes you are you and lets you into both your personal and business account after you login with your personal password. The business session is saved (I’m assuming encrypted/saved to the personal vault locally).

I personally would prefer it is a multi account setup where when you’re logged out, you can click the account you wish to login with and enter the password for that account. When you think about mobile implementation, this works well.

At work he have Bitwarden hosted on premise and personally I use the cloud solution so I would like just the possibility to log into both in the app without any linking as they have no way of knowing about each other.

1 Like

This does not work on mobile or desktop (application, not browser). In our business, most of our users are 90% mobile and desktop. Mobile is the biggest since it’s BYOD and several of our users will likely have their personal and work accounts on a single device. Desktop, maybe not as big of a deal.

From an enterprise perspective this is a huge “no no”. You do not want your users using ANY personal accounts on your network. Bitwarden should be your holy grail, and should be the most hardened system you have. If a personal user has a weak master password, how does that translate to your company policy? How do you associate [email protected] to an employee? When litigation comes, how do you define what data is the user’s and the companies?

I think there’s other features on the Enterprise side I’d want to see first before time was spent trying to link personal accounts into Enterprise/Business accounts.

1 Like

This can be solved, by not allowing the personal account access to business account.
So only business accounts can access personal accounts. One way access.

Or if there is two way access. Policies from the business account, password strength, required two factor etc. Should just affect the personal account. Policies is feature I would like too.

1 Like

You’re still mingling data, which is usually frowned upon. I know in some casual work environments no one cares. I work in an enterprise environment and I do not want any mixing of personal and business data.

Trust me, bad things can and do happen.

Honestly, why is it so terrible to use two accounts? This makes a very clear distinction between the system you’re logging into and its purpose.

Well if it’s a policy thing, then it can just be disabled by default, and you won’t have to worry about it.

I really think it depends on the business model. But allowing by allowing this, why should the customer then use another password manager? There can be business value in allowing this. For the IT professional, it also about sharing the importance of using a password manager. By helping client stay safe also at home.

same for me, separated personal and professional its really important. if you want to implement massively bitwarden in companies, most of the CISO will claim the possibility to separate personal and professional

Instead of mixing/linking both accounts, wouldn’t it be much easier to have two seperate logins on the clients (browser, mobile, etc) and have the client offer you something like a unified search / autofill? IMHO this feature is quite important as you have to currently either do everything on one Bitwarden instance (bad, esp. if your company has it on premise) or use two seperate password managers (inconvinient²).

Related :

Yupp, agree to this feature. This is the major drawback for not signing up my company. It is already a minor pain to use bitwarden on a personal level, but this minor pain is worth the added security, but then signing up a business and needing to constantly switch back and forth between accounts…would love to be able to avoid that.

I also happen to need this.

My current password management setting involves 3 KeePass databases. (a personnal one, and two other for companies I work with).

In KeeWeb (my KeePass client), I can quickly switch from one database to another:

image

I’m currently deploying two separate Bitwarden servers (a personal one, and one for my company), and I’d like to have a similar behaviour. Unfortunately, it’s not possible, I have to logout, change the server URL in the client settings and relogin, which is really tedious.

I really don’t care about unified search or linking accounts together, I’d rather have a simple way to quickly switch from an account to another. Something like a configurable list of identifies, to add a bitwarden URL and user email, and a dropdown on the login form to pick the one you want to use before filling in your master password. Since it’s purely a client side change, I believe it could also be simpler to implement (but I may be wrong).

5 Likes

As use of BitWarden grows, this seems like an increasingly important feature.
I have helped two clients adopt BW, which means that I now have 3 BW accounts that I have to switch between when going from site to site during a regular day.

I think that this could also boost adoption of BW if users are introduced to BW via an organization/company and then realize that they can easily set up a personal account and still access those personal PW within the same interface.

It seems to me that a “Tabbed” approach, as suggested earlier would be the best. Completely different log-in accounts, but accessible via a quick menu switch, without the log-out, log-in routine currently required.

2 Likes