Getting started with 1Password for your growing team, or refining your setup? Our Secured Success quickstart guide is for you.
1Password Custom Policy
Hello - We have 1password for our team - our auditors have said we should have turned on Custom Policy for 1Password to match our general password policy requirements. We went into the policies in 1Password and see that we have the option for a Custom Password Policy but the team that setup MFA in Feb '24 (including me!) swears that this "Custom Policy" option was not visible at this time. Does anyone know if this custom policy option was available for the Business Plan as of Feb 2025? We have notes from when we did this an no one saw the custom policy option -- but perhaps we were all blind. We'd like to know if it was there or not. Thanks!
Issue re-instating employee
Hello, We provision 1Password from AD. We had a user resign and return shortly after. We had not wiped their device so we returned it to them. They were removed and re-added to the group we use to control who gets invited and their account and profile look normal on the 1Password admin console. We initiated a recovery which they completed. Upon trying to sign-in they are prompted with the message: This device was deauthorized. You will need to re-enter your Secret Key and sign in again. We have not encountered this before nor can we figure out how to re-authorize the device. The used does not have their original Secret Key.
Improve speed of login - Feature Request
Howdy all, As someone that has multiple SSO accounts on my machine (for various different purposes) one thing that has always added an extra step for my team, myself, and various users across our business, is that they have to click to select which SSO account they wish to log in with after clicking to SSO. We particularly use Entra SSO (so unsure if there is something similar for other providers) but would love to see 1Password leverage the login_hint parameter as described here https://learn.microsoft.com/en-us/entra/identity/hybrid/connect/how-to-connect-sso This would mean that when you press to SSO with Microsoft, it would pass the login_hint parameter with the SSO username over, so if you have multiple logged in accounts, it will auto-pick the correct one. In theory a REALLY simple fix, but would save an extra click for every SSO sign in for affected users. Looks with big round puppydog eyes. Cheers, Stuart
1Password Firefox Extensions interferes with Hardware U2F keys on gitlab.com
Hi, we use 1Password for Password management at work and use a Yubikey hardware key as second factor. In the Firefox Browser: When using a yubikey (probably same issue with other u2f keys) as second login factor on gitlab.com when using firefox then the login fails with There was a problem communicating with your device. (InternalError). In the console the following is written: TypeError: CredentialsContainer.get: Missing required 'challenge' member of PublicKeyCredentialRequestOptions. ... from webauthn-listeners.js:5:2508 This only happens when the 1Password extension in firefox is also running (which is the case for me because I need it for my the Gitlab.com password). There is already an issue for this on the firefox side: https://bugzilla.mozilla.org/show_bug.cgi?id=1982582 but it looks like it only happens when the 1Password firefox extension is also running so it looks like an error or interference with it. Other browsers like chrome do not have the same issue. For me that happens on Linux but the firefox bug report is having the same issue on windows. What is interesting is that for other websites like amazon aws console, the hardware key is working in combination with the 1Password extension running. I know this is a tricky thing because it could be an issue either on gitlab.com, firefox or the 1Password extension but its weird that the bug is not happening if the 1Password firefox extension is not running. Thank you for your help.
1Password for Windows app keeps requiring encryption key transfer
I have a business account that uses SSO for authentication. I am able to authenticate in the browser just fine and use the browser extension with no issues. When I sign in to the Windows app via SSO, I am asked to transfer the encryption key from my browser. I am able to do this successfully, but I keep having to transfer the key every day or two. Is there a way to prevent the encryption key transfer from happening or to get it to stop repeating?
Help with 1Password SSO Unlock Across Multiple Desktops
Hi, I’m looking for some assistance with 1Password in a small office environment (around 45–50 desktops) that runs Hybrid AD. We’ve enabled Unlock with SSO, and it works fine on a user’s first workstation. However, when the same user signs in on another workstation, 1Password prompts them to transfer their encryption key. The challenge is that our users often move between desktops throughout the day depending on their work schedule. This constant key transfer prompt is disruptive. Is there a way to disable this key transfer requirement or a recommended best practice to allow seamless use of SSO across multiple desktops? Thanks in advance for any guidance!
Okta MFA codes stored in 1Password
Hey all, I ran into an issue when integrating 1Password with our IdP Okta, a good amount of our users use 1Password as a means to store their MFA codes, including Okta. This meant that when the users tried to login to 1Password, they found that they could no longer access the MFA code for Okta to login to 1Password. And that left them stuck in a loop, need Okta MFA code to login to 1Password, can't login to 1Password sine they need the MFA code. Is there a solution for this other than asking users to use another MFA method for Okta? We don't provide company mobile devices, and our company is fully remote meaning some labour laws restrict me asking our users to install another MFA app (like Okta verify) on their personal devices.Personal 1Password account Randomly deleted
Went to use my personal account today and it was no longer on my laptop or phone. Used the secret Key and I get this message. Importing my Emergency kit brings me back to this same window. Entering my password gives the same message. There is no immediate customer support representative and the chatbot is telling me that if my account is deleted then it is unrecoverable. I have not requested this deletion, no one else has access to this account, I pay annually for this which isn't due til later this year and I don't do anything inappropriate with this account. The only thing I can think of is that this got flagged because I have a VPN and maybe my laptop and phone accessing it from public IPs in different regions triggered some security feature. But I have no warning message in my email and nothing about billing other than my last annual invoice from last year. I am very dissatisfied with the customer service with this company.
