I changed the default KDF iterations from 50,000 to 200,001 after reading that 50K wasn’t very secure.
Previously to this i would log into the app on my mobile phone and on my computer via the chrome extension. I also have 2FA setup on my mobile phone if it helps.
Once i changed the value i was logged out and now when I try to log into the app on the phone OR the website I now see
“An error has occurred.
Username or password is incorrect. Try again.”
I’ve lost access to the account and all the passwords, I’ve tried a master password reset but thats not worked as it tells me i dont have a password hint set. I 100% know the previous password as i used it almost daily.
Feeling like i’ve made a massive mistake here and really hope I’ve not lost the vault. What can I do to fix this?
@MrKhan Welcome to the forum, and sorry to hear you are having trouble.
The error message that you received (“An error has occurred. Username or password is incorrect. Try again.”) does not necessarily mean that the username or master password were incorrect. You will get the same message if the login process fails for other reasons, including the inability of your device to compute the specified number of KDF iterations.
Thus, one possible explanation is that the devices you are using to log in are incapable of handling the new setting for the KDF iterations. If you have access to a more powerful computer, you could try to log in to the web vault again using that computer.
As @RogerDodger said, you also should contact Tech Support a.s.a.p., to see if this is related to a rare error that recently affected another forum user. That condition was reportedly patched, so it would be important for Bitwarden to determine if the same problem is still occurring:
That would be a job for tech support, whom @MrKhan has already notified. Hopefully, @dwbit can coordinate to ensure that they connect the dots to @BostonPete’s case and check whether there is a common denominator.
@MrKhan: If possible, please do not delete your original (inaccessible) vault until tech support has had an opportunity to examine it. In the meantime, you can set up a new vault under a different email address; later (after the original vault is deleted), you have the ability change the email address on your new vault to the preferred address.