I am not planning to die anytime soon, but sometimes things happen. Beyond securing my 1Password details in an Escrow account, or with a lawyer, or in a bank lockbox, does 1Password offer any means of allowing one or more designated member of the 1Password Families account to access the 1Password account in case of the primary owner's passing? Apple now offers the ability to add one or more https://support.apple.com/en-us/102631 so that in case of your untimely demise, an Access Key and a Death Certificate allows Apple to grant the holder of both of these to get a new Apple ID that has access to your Apple ID Account. It may be something 1Password wants to consider, though I realize that reviewing Death Certificates may not be on the high list of priorities for the team! 1Password Version: Not Provided Extension Version: Not Provided OS Version: Not Provided Browser: Not Provided

@ooglek We do not have any available options like what you're seeking. Well, short of sharing the Emergency Kit and password. I hope that will change. For now, I've shared my Emergency Kit with my adult children, and I keep my password secured in a safe (inside a sealed envelope), which will be opened when I pass. It's a grim subject, but you are 100% correct. It is one that needs to be addressed beforehand. I recommend ensuring anyone in a family membership has a secondary organizer. 🚑 Recover accounts for family or team members I went through this several years ago with my wife. We prepared using the above method. We thought I would be the first to go. That didn't happen. Life throws you those curveballs. I can let the team know this subject is also on your mind. ref: PB-37977565

As I age and see the disarray some family members have left for others, I want more and more not to leave a mess for my survivors. This is really, really important. If 1PW is not yet ready to implement a specific purpose-built program for this, I would really appreciate a comprehensive discussion on the website (not abbreviated in the Community) as to all the potential work-arounds we could use. It should be written for laypeople, and not laden with shoptalk.

Hello, Different companies take different approaches but I hope 1Password will develop a solution for access sharing that covers three cases: Death Accident that prohibits a victim to share a password Memory loss (eg. Alzheimer disease) I would prefer is simple solution that requires no intervention form 1Password: it can be as easy as a mail that's send to several addresses with instructions and a link to one or more secured passwords when I have not used the 1PW client for a couple of weeks. For what's it worth: we now use the Password Recovery Code functionality from 1Password. We don't want a burglar to have full access to all passwords because he stole one paper document so our sisters and brothers have part of the recovery key and part of a LUKS encryption key in a closed envelope and a LUKS encrypted SD card with an export of the password manager, an export of all 2FA codes, recovery codes, recovery files etc. etc. Thanks. 1Password Version: Not Provided Extension Version: Not Provided OS Version: Not Provided Browser: Not Provided

Adding to this mountain of requests for legacy access. I use Simple Login instead of Fastmail for unique email addresses for every service so, on top of family not being aware of unique long passwords for every service, having MFA or a passkey for access- they won't even know what email address is being used for any given service. 1Password access after that bus finally catches me is going to be critical. That said, I'm hoping the legacy feature, if and when we get it, allows designation of a specific vault (or a tag/category) to provide access to. I'd like to be able to organize or some how specify which credentials should be shared if I'm snuffed out. I've got nearly 500 items in 1Password currently and I can only see that growing as time goes on and I use the tool for more and more items which I expect would be stressful, confusing, and exhausting to sift through when successors would need maybe a dozen or two credentials. I'd also prefer to keep things such as shared, work related, social media and other dumb things private and basically make it as simple as possible for less tech-savvy and unfamiliar people to get access to the few important things they'll need.

Hi, I'm also interested a lot in this legacy/emergency access. Bitwarden and Ente have it. For now I'm forced to have this convoluted setup: - print the Emergency Kit, give it to family members - I use an open-source third party emergency access service (https://weexpire.org/) to E2EE encrypt a note with my 1Password master passphrase. With a 7 days wait time - it gives me a link (containing the encrypted note) and an access code that I put in an item "in case of emergency" in a shared vault with my family member/emergency contact When needed they open the link, provide the access code on the website, wait 7 days, re-open the link, get my master passphrase, use this with my emergency kit they already have to connect to my account. Clearly not ideal for ease of use

1Password Access after Death, Legacy Contacts

120 Replies

lopinc
Occasional Contributor
2 years ago
1P_Tommy No I realize the individual user is creating a recovery code for themselves, but I guess what isn't clear is if the family organizer can use that code without access to that family members email. According to https://support.1password.com/recovery-codes a verification email is part of the recovery flow, so that won't work if the family member is unavailable/incapacitated/etc.

Are you saying the recovery code process for families doesn't require email verification? If so is that recovery flow documented anywhere? Thanks!
1P_Tommy
Moderator
2 years ago
The recovery code would allow anyone to access the data in the users account. It is a way for you or anyone to recover the account. Typically the recovery code would be used by you.

Using a recovery code allows Family Organizers and Family Members to self-recover their accounts in case they forget their account password or lose their Secret Key/trusted devices.

Perhaps you're thinking the Organizer is creating a code for the family member? That is not the case, each member would need to to create their own from inside their account. When I create the code I am doing so for my account as the Family Organizer. You or the family member would need to print their own and keep it safe.

tl;dr Yes the Private/Personal vault woud be accessible using this method. The key is self-recover
lopinc
Occasional Contributor
2 years ago
1P_Tommy I'm talking about the new beta feature for 1P families that you posted about: https://1password.community/discussion/145903/recovery-codes-for-families-beta#latest

Nowhere on that page does it say if the family organizer would then have access to the other persons vault if the new recovery code method is used, that's what I'm trying to confirm.

The issue with the existing assisted recovery for Families is it requires the other persons involvement as you noted, which in an emergency situation (like death), may not be possible.
1P_Tommy
Moderator
2 years ago
lopinc

A recovery code would/could be used by you or your heir in that situation. Assisted recovery from a Family organizer would not need the code and would be one in which you or your heir actively participate. Both require access to the users email. The following may help.

Generate and use recovery codes
lopinc
Occasional Contributor
2 years ago
1P_Tommy It's not clear if if a family organizer uses the recovery code of a family members account to recover that members account, does it give them access to the vault items? I mean the whole point of "legacy access" is if they are not available to access their vault themselves, so if the family organizer can't see the contents of the other family members recovered vault, it doesn't solve the issue. thanks.
1P_Tommy
Moderator
2 years ago
MerryBit et al.

I wanted ensure you saw the recovery code announcement for families.

https://1password.community/discussion/145903/recovery-codes-for-families-beta#latest
1P_Tommy
Moderator
2 years ago
Thank for sharing thedean.
thedean
Frequent Contributor
2 years ago
I used to have an individual 1Password account. I upgraded to a Family account specifically because of my concern about legacy access. Let me share with the group how I have configured my family account to handle legacy access:

I am a family organizer for my family account.

I made the executor of my will (she is also the successor trustee of my trust, and my designated power of attorney) a second family organizer.

I have shared a vault with her that contains just one entry: my email address and password.

In the event of my incapacity or death, my executor/trustee can use her authority as a family organizer to begin the account recovery process. And since she has access to my email account, she can can use it to reset my master password and secret key, and thereby gain access to all the rest of my vaults. Since I am notified via email of any attempt to begin the recovery process, I feel 99% confident that she will not abuse her family organizer powers while I am still of sound mind. (FYI, while I have 2FA enabled on all my other accounts, it is disabled in 1Password because I don't think it is necessary there, and therefore it does not interfere with this recovery process.)

It's not perfect. But is good enough for me. My master password and secret key are known only to me, and no one else. And it allows me to sleep well at night, knowing that in the event of my incapacity or death, the people with a need to know can get access to everything in all my vaults.

I hope this strategy will help others.
1P_Tommy
Moderator
2 years ago
You're most welcome.
MerryBit
Dedicated Contributor
2 years ago
Thanks 1P_Tommy !

Forum Discussion

1Password Access after Death, Legacy Contacts

120 Replies

Recent discussions

Severe performance drop when using the 1Password extension in Chrome-based browsers

Embedded Images Now Only Show Icon

Birth date being fill in as dd/mm/yyyy for some reason

1Password Firefox extension used to work fine, now does nothing

Q re not filling passwords in private tabs