This discussion was created from comments split from: Unlocking 1Password for iOS using a PIN code.

Hi Dave, You seen to be missing the essence of what everyone is requesting here. Everyone in this thread has explained that they want the same unique PIN functionality back that was in 1Password 7, as do I. FaceID is not secure enough, our 1Password account passwords are far too long and complex to use, and our device PINs are often known by friends and family. Therefore the only viable option for us is the unique PIN feature. In 1Password 7, if the unique PIN is entered incorrectly just once, you have to enter your full 1Password account password. This makes the unique PIN option very secure and the preferred unlock method for many users. I will be using 1Password 7 until the unique PIN feature is introduced in version 8. And truthfully, if the feature is not introduced to version 8 and users are forced to upgrade the app, I will move to a different vaulting vendor. Please understand the options you keep presenting in this thread are not sufficient, and your customers need the unique PIN feature brought back. Thank you, Jonathan

Is it on the roadmap to give us the option to select our own 4-6 digit passcode [pin] instead of using the same passcode that unlocks the iPhone? This seems like a security risk because if someone is able to observe us unlock our phone they potentially have access to our whole lives. I prefer the 1Password7 option where we could define the PIN instead of being relegated to the device pin.

Over the years I’ve come to trust allot of info to 1Password and therefore the info in 1password is way too important to trust to a device pin. For 1password I prefer a pin unique to the app. Preferably requiring a password every few days. Also I’m not comfortable shortening my password for comfort sake. 1password is about security and while some folks might be ok with comfort and reduced security, I am not. While Face ID has gotten better I’m still not comfortable with it unlocking financial website info. If it were the passwords to a few websites I wouldn’t care. But in my case the stakes are larger and a 6 digit pin that unlocks my phone is just too unsafe.

I agree. We should have the ability to use a different PIN for 1password from the device/iPhone PIN. This backward step of functionality from 1password 7 is extremely dissapointing and disheartening. Especially from a long long term user. I can’t understand the thought process on this. Security is surely at front and centre of your minds and business. This doesn’t make sense. Please fix this. Please. And please educate me as to why I am wrong. Thankyou kindly 1password team.

Dear 1Password team, I trust this message finds you all in good health. I would like to formally request the addition of a separate Pin Code feature in 1Password 8, separate from the device PIN Code. This particular functionality was available in 1Password 7. While it is true that 1Password 8 has introduced Pin code support, it is currently limited to the device's PIN code. In contrast, 1Password 7 allowed users to set a different Pin code for enhanced security purposes. Thank you for your attention to this matter. Best regards, Munoo Chahar

Feature Request: Unlock 1Password for iOS using a custom PIN and not the device passcode

28 Replies

Replies have been turned off for this discussion

Former Member
3 years ago
1P_Dave . Not everyone uses Face ID. Entering a long secure 1password password isn't always ideal. If the concern is users will lock themselves out because they don't understand what is their PIN and what is their actual password. Can we have it so that the full password is required on every 10th login or every 2 weeks like on the Mac version of 1password? Just curious?

Thanks for any help you can offer. You know you make a great product, it's just this backward step in functionality is very disappointing for savvy long term users.

Many thanks. Pete
1P_Dave
Moderator
3 years ago
munoo

I've merged the two threads together so that we can keep the conversion in one place. As mentioned in my reply to you yesterday, I've passed your comments along to the team. 🙂

@pete16

Thank you for the feedback. Using the device passcode to unlock 1Password is optional and, if it doesn't fit your personal threat model, then you can unlock 1Password using Face ID / Touch ID or your account password instead. I've shared your request regarding a custom PIN with the team as well.

-Dave

ref: PB-33545334
munoo
New Contributor
3 years ago
Hi 1P_Dave ,
I second with @pete16 . It is the legitimate concern.
Please re-instated pin code.
Former Member
3 years ago
Hi Dave,

Many people who might see you regularly at work might know your iPhone passcode. Also children know our phone passcode. We don’t want either of these groups knowing how to access 1password.

Recent stories of phone being stolen with known passcodes is an also a major security threat I am concerned about. I'm sure most users and your team here will have heard of the news linked here.
https://appleinsider.com/articles/23/02/24/if-both-your-iphone-and-passcode-get-stolen-youre-in-deep-trouble
https://9to5mac.com/2023/04/19/locked-out-of-apple-accounts/

I am requesting the unique PIN available in 1password 7 be re-instated in 1password 8.
munoo
New Contributor
3 years ago
Dear 1Password team,
 I trust this message finds you all in good health.

I would like to formally request the addition of a separate Pin Code feature in 1Password 8, separate from the device PIN Code. This particular functionality was available in 1Password 7.
While it is true that 1Password 8 has introduced Pin code support, it is currently limited to the device's PIN code. In contrast, 1Password 7 allowed users to set a different Pin code for enhanced security purposes.

At present, 1Password 8 offers three locking options:

Master Password: The purpose of a password manager is to relieve the burden of remembering multiple passwords, requiring only the recall of a single master password. My master password is both complex and lengthy, rendering it inconvenient to input each time 1Password is used.

Face ID: In certain situations and specific workplaces, the use of Face ID may be prohibited, necessitating the use of a passcode as an alternative. Personally, I harbor concerns about the security of relying solely on Face ID for 1Password. Notably, many applications, such as Dropbox, provide the capability to set a pin code.

Pin Code: Password managers bear significant importance for numerous individuals as they store valuable account credentials, bank details (including credit/debit card information), and secure notes. To enhance security and foster peace of mind, it is advisable to assign a distinct pin code to each specific application. The probability of someone inadvertently discovering your device's passcode outweighs the likelihood of them gaining access to the app's passcode.

I am aware that 1Password utilizes a distinctive 34-character Secret Key to safeguard user accounts. In addition, I have taken the precautionary measure of enabling two-factor authentication (2FA) through the use of a Yubikey.

Nevertheless, my request does not pertain to the introduction of a novel feature. 1Password 7 already possesses this feature that I am referring to. Any many other Apps also do. Therefore, I kindly request that you reinstate this feature in the current version.

Thank you for your attention to this matter. 

Best regards,
 Munoo Chahar
munoo
New Contributor
3 years ago
https://1password.community/discussion/140626/inclusion-of-pin-code-support-separate-from-device-pin-in-1password-8#latest
munoo
New Contributor
3 years ago
Hi,
I couldn't find this thread earlier, so I initiated a new thread regarding this issue. I have posted a comment there. Now I am posting here as well.
munoo
New Contributor
3 years ago
Dear Dave_1P,

I would like to express my gratitude for your prompt reply. I am aware that 1Password utilizes a distinctive 34-character Secret Key to safeguard user accounts. In addition, I have taken the precautionary measure of enabling two-factor authentication (2FA) through the use of a Yubikey.

Nevertheless, my request does not pertain to the introduction of a novel feature. 1Password 7 already possesses this feature that I am referring to. Any many other Apps also do. Therefore, I kindly request that you reinstate this feature in the current version.

Thank you for your attention to this matter. I look forward to your response.

Best regards,
Munoo Chahar.
1P_Dave
Moderator
3 years ago
munoo

Thank you for the detailed reply. From what you've written here, it seems that the best option for your specific use case would be for you to change your account password to something that is easier to type in while still being secure. I've linked to our guide about choosing a good account password already but here it is again for convenience: How to choose a good 1Password account password

Remember that, unlike other services, 1Password doesn't just use your account password but it also uses a unique 34-character Secret Key to protect your data: About your Secret Key

That being said, I've passed your comments along to the team.

-Dave

ref: PB-33532152
munoo
New Contributor
3 years ago
Dear Dave_1P,

Thank you sincerely for your prompt response.

At present, 1Password 8 offers three locking options:

Master Password: The purpose of a password manager is to relieve the burden of remembering multiple passwords, requiring only the recall of a single master password. My master password is both complex and lengthy, rendering it inconvenient to input each time 1Password is used.

Face ID: In certain situations and specific workplaces, the use of Face ID may be prohibited, necessitating the use of a passcode as an alternative. Personally, I harbor concerns about the security of relying solely on Face ID for 1Password. Notably, many applications, such as Dropbox, provide the capability to set a pin code.

Pin Code: Password managers bear significant importance for numerous individuals as they store valuable account credentials, bank details (including credit/debit card information), and secure notes. To enhance security and foster peace of mind, it is advisable to assign a distinct pin code to each specific application. The probability of someone inadvertently discovering your device's passcode outweighs the likelihood of them gaining access to the app's passcode.

I appreciate your attention to this matter.

Forum Discussion

Feature Request: Unlock 1Password for iOS using a custom PIN and not the device passcode

28 Replies

Featured discussions

September at 1Password: Browser versions, enhanced security, and new integrations

Recent discussions

All devices offline

Please update the Windows Tray Icon

Username Alias

Alphabetical sorting of tags

I have an idea... for too many accounts