OK so It looks like (upon removing and re-installing my browser BW extension (Opera, using the Chrome version)) that biometric reauthentication may now be an option?
OK so It looks like (upon removing and re-installing my browser BW extension (Opera, using the Chrome version)) that biometric reauthentication may now be an option?
I believe that “unlock with biometrics” can only unlock the extension. The master password re-prompt is a 2nd layer and at the moment, I’m seeing it still only can be unlocked using the master password (as of BW Extension 1.54.0 on Microsoft Edge 96.0.1054.43).
Unlock the extension (1st layer):
Unlock re-prompt items (2nd layer, optional):
We’d like to add biometrics to the 2nd layer:
//
I agree with @Caign: the feature’s name probably needs to be changed. Not “master password re-prompt”: I also like “authentication re-prompt”.
Now, “authentication” also implies PIN unlock, so perhaps that is something Bitwarden also wants to explore.
I also made an account just to comment and vote on this thread. I think this would be a real quality of life improvement and a useful feature as my master password is quite long. One should be able to re-prompt with biometrics or a pin.
PIN Lock for Indivual Logins and Notes
Thank you!
Thanks to the OP for this. I posted a new feature request but was specifically referring to 2nd layer PIN unlock. This would be a great addition I think.
Yes! I don’t need fingerprint for first-time logging into the vault (I like the security of the password), but I would love it for re-prompting - would speed up my life a lot!!
Great explanation. I agree that we’d like biometrics to the 2nd layer. I would hope that, if we wanted, we could opt for having the fingerprint ONLY for 2nd layer (not for first).
I’m coming to upvote this request, is it in the roadmap yet please? It would be convenient to have a pin or fingerprint as a 2nd layer reprompt instead of master password.
Hey everyone! We are currently investigating how we can improve the password reprompt functionality.
Thank you for the update, @dwbit. Is there something users / customers can help with this investigation?
From my specific perspective, I have a few troubles with Master Password Re-Prompt:
//
I believe 34300 has a confirmed fix, so that is great to hear:
Hey @ikjadoon, the upcoming enhancement to the master password re-prompt will apply to the whole vault item, not just the password field, and biometrics will be an option
This would definitely be useful on Mobile. Having to enter a long Master Password on Mobile to view/copy credentials on mobile is quite tiresome. Would it be possible to check? IE if the user is on mobile, then use biometric login instead (if enabled) to use open/view a credential
Ah, that is fantastic, @dwbit. My apologies for missing your reply. I appreciate this has been given attention for a future update; it’s really quite useful, once people can get used to it.
Thank you so much.
Another feature that I wanted, that I found in search. Glad to see it is under investigation. Is there any timeline on this though, since I see that comment was 8 months ago. (lol, not sure how to better word it, to not sound like I’m demanding an ETA)
Hey @Warden1 thanks for checking in, no specific eta at this time, but we will be sure to share information as it becomes available.
On my phone, I have a couple of entries set up that require the Master Password before allowing access to their data. LastPass’ android app used to allow biometrics as an alternative to typing in the password. It would be nice to have this in BW too
Re-prompt but for pin instead of master password.
In Settings, a user will be able to check “Re-prompt with pin”, in addition to “Re-prompt with master password”.
In an item window, there will be the general option to “Require re-prompt for access” instead of specifically “Master password re-prompt”.
Then, if re-prompt with pin had been activated, when the user has an item that requires re-prompting, the user will be able to enter their pin instead of their more sophisticated or much longer master password.
This makes the app more secure in the using because it prevents the user from either choosing a short master password to make re-prompting less of a hassle or not using re-prompting at all due to what a hassle it is to input a sophisticated or long passphrase every time.
The master password should only be used for encryption/decryption purposes, and the user should be encouraged to make it a sophisticated or long passphrase.
After decryption has finished, we should be able to use an easy-to-remember and quick-to-enter pin for access to sensitive items.
(There is a related request but it is worded vaguely and is not gaining any votes so I wrote this request in a way that is clear and easy to get behind).
Responding that this is still an issue that I’d like solved please!
UP… Came from Lastpass and this feature is critical for me. I hope they tackle this soon.
It would be nice to allow Yubikeys or other Phisical Security Keys as well