I used my recovery code recently as i needed to install bitwarden on an old phone whilst my main one was repaired, tis worked beuatifually. I now have my main phone back and wanted to do this in revernse. The 2fa setup wasnt working and i realised this was due to me using the recovery code so i wetn back to my code thinking i can use that to get in again.
The revovery code now isnt working so now im locked out of beign able to use the web app and install it on my new phone but can still access all my data on my old phone, my tablet and the desktop app.
Is there really no way i can authenticate mysefl so i can get access the web app . I know this is a securtity thing but as i can see all the data its essentially only blocking me from installing it so is just theatre
BTW im awre i can export however i am teh main family account and as the only way to admin this is via the web (seems barmy) im not sure where to go
It is a little unclear exactly what you are describing, but let me attempt to explain a few things.
The recovery code is only used for disabling the 2FA requirement on your Bitwarden account, and should only be needed if you no longer have access to your 2FA second factor (e.g., the authenticator app that provided your TOTP codes).
The recovery code is one-time-use only. You should obtain a new code before setting up 2FA again.
If you have not re-enabled 2FA for your Bitwarden account, you will need to provide “New Device Login Protection” verification for all future logins from any device, app, or browser extension where you have not previously completed a successful login.
The “New Device Login Protection” (NDLP) verification prompt looks very similar to the 2FA prompt, with a key distinction: when Bitwarden prompts for the NDLP verification code, the phrase “We don’t recognize this device” should appear in the prompt.
The verification codes required for the NDLP prompt are sent by email, to the email address that corresponds to the Bitwarden account username for the account you are logging in to.
If you no longer have access to the email account that corresponds to your Bitwarden username, then you need to contact Customer Support and explain the situation. Upon verifying your identity, they will be able to temporarily disable the NDLP requirement for your account (e.g., for 24 hours), so that you can log in to the Web Vault and enable two-step login (2FA) again. Don’t forget to save your new 2FA recovery code while you’re in the Web Vault.
As long as 2FA remains enabled on your account, you will not be prompted for NDLP verification.
installed bitwardend on temp phone using recovery code which as i understand it disables 2fa
new phone came back repaired and i went to install bitwarde, i get asked fro 2fa which doesn work, this then flips to asking for the recoery code which whislt i thought was a multi use seems not to be
I cant access the web vault as again im asked fro 2fa (its been longer htan 30 days) or my recovery code. i have acess t all y emails and teh data via mobile ande desktop apps just not the web app
what i want to do is
a) install bitwarden on my new phone
b) get access to the web admin console
i have seen no evidence of the “New Device Login Protection” (NDLP)
When you say you thought that the 2FA recovery code was “multi use”, do you mean by that that you set up 2FA again for your BW account after you first used the 2FA recovery code on your “temp phone”?
sorry no i said i thought the recovery code was multi use not the 2fa but this is inmaterial as i now know (hind sight is fab) that i should have reenabled 2fa and got an updated recovvery code
essentitally the problem is whislt i have full access to my full account via desktop and mobile apps , i cannot in any way install it on another device or the web.
I now know (hind sight is fab) that i should have reenabled 2fa and got an updated recovvery code
essentitally the problem is whislt i have full access to my full account via desktop and mobile apps , i cannot in any way install it on another device or acccss the web vault.
Is there anyway i can get access back or am i really goint to have to delete everything
Could you post a screenshot of the exact prompt you see after you entered your email and master password? (redact any personal information before you post it)
When that really is the case, then you already have your answer, I think.
As you still have your master password, you should export as JSON or ZIP and create a new account.
But I fully agree with @grb’s post from before: when you used the recovery code, your 2FA should be disabled now and you should see the NDLP. That’s why I asked for the screenshot – and that’s why I asked if you enabled 2FA again.
i agree something isnt right , having full access to teh data in multiple places jsut not having hte ability to install or access the web admin portal is utterly barmy
No, it can happen that you’re still logged in on some devices, but not being able to log in to another one when you lost the “second factor” and the recovery code.
The main thing that is off here: you allegedly disabled 2FA (by using the 2FA recovery code), and you wrote you did not enable 2FA again – but 2FA is not disabled now.
But anyway, doesn’t change your situation now. So, again:
[EDIT: actually, first check this post by @grb! – only proceed here, if you still can’t log in]
export your vault (JSON or ZIP)
if you export from the mobile app, make sure you have the latest version 2026.1.1, as there was a bug with exports
create a new BW account – and don’t forget to create an emergency sheet then
afterwards, you can delete your old BW account [PS: before you do this, make sure you also read this post from @grb – and overall, only delete your account when you made sure that all organizational data is backed up]
Although this does seem solvable, you might take a moment to create an export and stash it in a safe place so that if things do get worse, you have a path to recovery without data loss.
If you elect to use a password-protected export, be sure to write the export password on your emergency sheet.
What you are experiencing is likely that you can unlock your vault on devices that are already logged in, but you can not login to devices that are currently unlocked. Unlock and Login are two different things. MFA is not required to unlock, but it is required to login.
@FLIPSIDE101 Before deleting your account, you should probably also contact Customer Support to request that they transfer organization ownership to another member of your Family organization.
@FLIPSIDE101 On the off-chance that the issue is actually much different (and simpler) compared to what you’ve described, please ensure that you have synchronized the system clocks, both on the device where you are attempting to log into Bitwarden, and the on the device that has your Authenticator app.
sorry all , in my excitement to post the picture i seem to have locked my first account out for 23 hrs
Thanks for taking the time
@Nail1684 thats abot the 2fa on the web true but only if its been under 30day and i ticjed the box saying remember
@grb thanks for teh time sync info but it feels much like the original idea , whislt i can go through the delete are recreate process as i have the data i cant export the org vault items as despite what teh instrcucitons say i dont have an option in any apps so it seems they can only be done under the web admin console.
Its also utterly barmy to me that whist i can access all the data there is absolutly no way to use any of this to prove im really me
Your response makes it seem like you didn’t attempt my suggested troubleshooting steps.
You may not need to export your organization vault, as it will not be deleted when you delete your individual account. If there is another org member who has admin privileges to the organization, they can be promoted to be the new owner of the org vault after your account is deleted. If there is no one else with admin privileges, your options may be limited, but this FAQ suggested that Customer Support may be able to help.
