OK. Disaster.
I changed my password and email. System is locking me out. My authenticaion app is in my password manager. So are my recovery keys.
My old email is gone. i don’t have access. The system won’t send me device notifications on my phone. I have an encrypted .json vault export. Guess where i stored the pass? 
Is there any way to access an authenticator without access to the account?
@true.rebel Welcome to the forum!
You mean the Bitwarden master password and email address you use?
Okay, so you are positive you set up 2FA for Bitwarden? (I understood you set up TOTP = authenticator app for Bitwarden and mean the 2FA recovery code with “my recovery keys” – is that correct?)
Hi Nail1684,
Yes. I changed my master password (apparently). the old one no longer works. Yes. My account email was pointed towards an old account i no longer have access to.
I definitely had device thumb biometric auth set up on my android phone. It doesn’t seem to give me this as an option though.
The real issue, is that it’s not giving me Device Authentication Notifications. All my Authentication apps are empty. i switched to the in-app BW Authenticator without thinking.
I wrote the password to the encrypted .json file out. It doesn’t work though. Maybe i mis-transcribed.
The biometrics you describe is only an unlocking option – not a login option. So that wouldn’t help, even if it still was accessible.
Do you remember ever setting up a “login-with-passkeys”-passkey for Bitwarden? (that would at least log you in now)
Well, Sorry, but really bad news then… If you indeed never created an emergency sheet with the TOTP seed code and/or 2FA recovery code on it – and if there is no way for you to get those things now – then there is no way into your account again.
I personally probably would wait for a few days now, but in the end, you have to start anew. – Usually you could delete your account with only your email address, but if you don’t have access to that as well, I think you don’t even can delete your old account now. (but it sounds as it might be well enough protected with the master password and TOTP)
By chance do you have any other device (firefox, chrome, android, ios, etc) that might be logged into your vault? If so, disconnect the device from the Internet before doing anything. Then unlock the vault, grab your recovery code, TOTP secret, backup password, etc. and put them on an emergency sheet. Only after you have everything else recovered should that device be reattached to the Internet.
Unless you have a syncing relationship pre-established with bitwarden authenticator, the answer is no.
You might also review this document for some hints.
Sorted. Thanks. I gained access to tuta.com.
I don’t know how though. Since I thought my account was deleted. Hmmm…
Ah, good! Thanks for the update.
I do hope you just mean your email address there.
You probably figured it out, but now would be a good time to create an emergency sheet that includes both your TOTP secret and your export password.
I assume you learned (what could have been a very painful) lesson, then?
Best practice is to create an Emergency Sheet (in two or more copies, securely stored in different locations), which at a minimum, should document the following information:
bitwarden.com or bitwarden.eu, or self-hosted server URL)Also helpful information to record would be: