As per above, I cannot log into the web vault or plugins on a new device as the emails with the mandated 2FA code are never arriving.
Is this affecting everyone?
Hello,
No, mine arrived immediately. Did you check the spam folder?
If it arrived late, you can look at the email header to see if there were long delays in delivering the email. The tool for email header parsing is at:
Otherwise, you can look at the header using a text editor by searching for “Received: from.” Converting the time to UTC is probably easiest.
Also, you should consider enable 2FA that isn’t email, which is bound to have this kind of problem.
Thanks I’ll log a ticket. They normally turn up for me within a minute but currently I’ve not received one all day. Worked last week.
Ok interesting. I get the email from the forums saying there are replies, however I did not get a confirmation email on the support ticket I logged either.
The mailbox is on a O365 families service so message tracking is limited. It’s definitely not in Junk.
This is a data point: my email came instantly via Microsoft outlook. Did you try the “Resend” option on that page?
I’ve hit resend many times. The email 2FA had always worked before. I’m trying to login via the web vault and browser plugins and phone app.
I now suspecting it’s my uncommon TLD probably is being blocked by Bitwarden internally as a non legit domain. It wouldn’t be the first time (it’s a .name domain)
1 Like
Since you wrote “on a new device” - are you indeed talking about email 2FA? Or do you mean the “new device login protection (NDLP)”?
I’m asking also, because you could deactivate email 2FA by using your 2FA recovery code - and on the other hand, NDLP can temporarily be deactivated by Bitwarden support if you describe them your problem (and 2FA can’t be disabled by BW support).
PS: And both things would allow you to (also) login to the web vault and e.g. set up another (non-email) 2FA method like @Neuron5569 suggested before.
There was a similar report from another user about 6 weeks ago:
Is your account on the EU domain?
For those that asked, yes i’m referring to NDLP emails.
Support confirmed my email address (which has been in use for 20 years and works perfectly) was somehow added to their block list. Unfortunately it’s still not working so my wild ass guess is their systems don’t get on with my nic.name redirection that’s part of @name domains.
I can confirm that your email address was on our suppression list. It has now been removed, so you should be able to receive emails moving forward. Please try again.
Emails get put on our suppression list when Bitwarden attempts to send emails to addresses that do not exist, i.e., when you sign up for Bitwarden accounts for these users before their mailboxes have been created. Additionally, if the recipient marks email from Bitwarden as Spam.
1 Like
Thanks for clarification. For clarity, I just took “2FA” from the title.
As written above, I think you can describe BW support your situation again, and as we heard here, they should be able to deactivate “NDLP” temporarily (for 24 hours), so that you should be able to login.
Now that Bitwarden has cleared your email from the suppression list, you might consider avoiding failling into this new device login protection (NDLP) trap by registering for one or more two-step login mechanisms.