Help! Cannot Log in... Recovery code not accepted
I changed a couple things and now I am lost. My last name on my account had a capital letter in the middle so I fixed that. Seemed ok. Then because of the recent WSJ podcast I tried to change my master password. That seemed to work ok. But when I tried to log in... Not accepted. I must have written it down incorrectly. Tried a couple more times no go. I have it on my desk top, iPad, and iPhone. Could not log into any. With face recognition and with the old password I could get to an offline version of the apps. Not sure how long that will last as I read that this is temporary?? So I went with the 'trouble signing in' and got a recovery mode. I saved the recovery code and loaded that up but it also loads the text that is in front and behind the code. I assumed that was meant to be.... but did not work. I had my wife read that whole **bleep** thing while I typed it in. But it was unclear if it all had to be Cap's and not sure if the 0 was a letter or zero. Several more attempts not working. The message I get is "Recovery code could not be activated. Pls check internet...." Internet is fine. One other thing.... again because of the WSJ podcast I installed MacAffee on all my devices. I found out that it was putting me on VPN throughout this. Not sure if that was a problem. Turned that off. Still cannot use the recovery code. I assume I must be locked out at this point? My database in this 1Password is huge. Making me a bit crazy right now. Pls help. I did do the chatbot and got to point where someone is supposed to contact me???
Passkeys are useless w/ 1Password [CONTINUED]
Passkeys are still mostly useless on MacOS. Can 1password just bite the bullet already and implement native password manager support on MacOS? Although I love the autofill shortcut (shift+comand+space) and it truly is the best UX I've used on a password manager, that alone isn't enough to make me cough up 1password subscription fees for eternity when it remains fundamentally broken on the OS I'm using all day. I have a feeling the discussions have gone like this: Should we implement native password manager support on MacOS? It's yet another platform to support. How many points? [Estimates] Hmm, well we've got X that needs to get done this quarter. Next quarter is Y. And we've been putting off Z forever and senior engineers are going to start quitting if we don't fix THAT! Can users live without it? Well, sure. They've got the browser plugins... Great! Let's just table this for now and revisit it when we've got more capacity. Totally understandable! We've all been there. The problem is this really sucks for a few reasons. Here they are: (MAJOR) Passkeys: Unfortunately on MacOS the browser extensions seem to be the ONLY way to use Passkeys. That is problematic for a few reasons. The biggest issue is that browsers are NOT the only place you might need to auth on a computer. Sure it's 80% or more. But even if it were 99%, the software is not called .99password, it's 1password. I've already run into situations with native apps where I'm being prompted for a passkey. Your current solution will never work here. You might be thinking: "WHAT! Native apps using passkeys?! That is so rare and uncommon! We cannot expend engineering effort on a mere 1% of use cases!" Sure, maybe now. But it's happened to me multiple times and passkeys are pretty new. I can't imagine they're going away after all the effort to roll them out. It's only a matter of time. And for people who don't use the browser extensions, they are experiencing this pain every single time they are prompted for a passkey (GRIPE: Browser extensions) You're almost a victim of your own success (almost). The autofill shortcut works so well I have absolutely no desire to install the much less functional browser extensions. I use several browsers (I'm an engineer) and they honestly are pretty mediocre in how well they work and they're frustrating to use. I should need to log into 1password ONE time. Not 1 + N, where N is the number of browsers. They're constantly prompting me for my password, they need to be kept up to date, and frankly the UX just isn't great. I'm sure for various reasons (like non MacOS operating systems) you need to keep them working, but on MacOS they just aren't the best way to use 1password (nor are they a differentiator - every password manager, free or paid, has these, so I'm certainly not losing anything wrt these by switching away from 1password). In case you want to interpret this to mean "make browser extensions better", that is NOT what I'm saying. I'm not going to use them. It's simply more unnecessary complexity, more to keep in sync wrt updates, more surface area for attack, etc. Not happening. Wow. 1password doesn't really support the major authentication initiative that everyone is switching to? Sounds dire! Luckily there is a solution! Unfortunately for 1password, all a user needs to do is stop using 1password. The solution is simple: use the built-in free password manager Apple rolled out recently (alongside the API to actually support passkeys properly, in fact). That works great! I've simply been saving all my passkeys there. I did have it turned off for a while and was using 1password exclusively. But due to 1password's lack of compatibility with passkeys, it's turned back on. Now whenever it asks to save any of my credentials, I say yes. Eventually, I'm sure it will have pretty much everything. And once it has everything, does it really make sense to keep paying for 1password? Just implement the dang API already. Get it on the roadmap. A decent engineer could have that production ready in a month if you just said "go" and got out of their way for a while (tell them they don't have to attend any planning meetings if they can meet the deadline, you'll have people fighting to take it). Sent with ❤️. I never knew a password manager could be so great. If I didn't care and want you to be successful, I wouldn't waste spend my time on this.
Onboarding experience: too hard
I have used 1P for many years, and it suits my needs as a software engineer nearly perfectly. However I have suggested it to a number of friends, and done the work of getting two distinct types of user up to speed: my partner (1P Families), and as the IT manager at a smallish company (1P Business). I started both a year or more ago, and thought I would share my experiences. tl;dr After a year, people are still struggling to understand 1P, and are still failing to gain the core benefits such as reused passwords. The main challenge my users have faced is how to migrate from whatever they used before ... intentional or not. My partner uses a Mac and iPhone, and has home and work Google accounts. She doesn't really understand that Safari and Chrome are different things, but uses both at work and home. In both cases, she accepted the default password management features, with autofill in chrome, and various flavors of Apple password managers. At any given time, without reconfiguration, all of these PW managers are competing to manage a password, and the result is confusion, and inevitable password resets "just to get in". So, the user ends up with multiple possible passwords saved in multiple places: Google, Apple, and now 1P. The same has been an issue for my co-workers, who are also at varying levels of technical awareness. The first thing I did for my partner, mainly to make her feel confident, was to import all the passwords from Google and Apple PW managers. This turns out to have been a really bad idea, and also, it's really a great deal harder than it should be -- not very well documented, hard to find on the site, and some parts of it didn't seem to work. This is a terrible idea because Google, at least, saves a new password for any different URL it finds, so there can be multiples just for one site. I am not sure about the Apple version, but the result was that we had at least two, often many more saved passwords imported into 1P. Finally, unless these PW managers are turned off, they keep adding their confusion to the mix. Suggestion: build an importer that figures out how to actually migrate to 1P. There may not be APIs that allow this to be automated, but at least you could build a step-by-step process, and a checker that sees the status and warns users. Ideally the tool would merge (or offer to) sites at the same domain, would identify a suitable name for the 1P entry, would retain history (archive) of old logins, and would coach the user through confirming the result on computer and phone. Passkeys and MFA are both great when 1P gets them right. But I am still regularly assaulted with the option to use passkey with my Amazon account, as well as my AWS accounts. The MFA process is kind of klunkyAccessing all items stored on site in database
If I visit a site that is in the database on a PC, 1Password will only show the login for that site and the Autofill item. How do I get to the full list while at that URL? Currently I have to open a new tab to access all items stored in the database. Here is an example, in case I didn't word this well. If I go to google.com and press CTRL-dot, the 1Password manager opens up but only gives me options that match google.com. I can not browse the database while on this URL for example. How do I access all items in the database while google.com is open on my current tab. Currently the only way I can do this is to open a blank tab and then browse the database while on the blank tab. Thanks.
Help with Email Alerts & 2FA Setup in 1Password Teams
Hello, We are using the Teams version of 1Password and need assistance with a couple of security-related configurations: Email Alerts for Logins on Authenticated Devices Our management team would like to receive an email alert whenever an ID is used to log in on a device that has already been authenticated with the secret key. Is this possible within 1Password? If so, how can we enable this feature? Setting Up 2FA with OTP via Email We are looking to enforce 2FA when a user logs into a previously authenticated device (one where the secret key has already been used). However, instead of security keys or authenticator apps, we want the OTP to be sent to the email address associated with the account for an additional layer of security. Currently, it seems that 1Password only supports security keys and authenticator apps for MFA, but we do not allow devices on the work floor, making these methods impractical for us. Is there a way to configure email-based OTP for login security in 1Password? Any guidance or alternative solutions would be greatly appreciated. Thanks in advance for your help! Best, Pradeep
MFA for a subset of Users or all?
I am reaching out to gain a clearer understanding of our options regarding the scope of Multi-Factor Authentication (MFA) implementation. Specifically, as an administrator for our business, I would like to know if enabling a new password policy is a prerequisite for turning on MFA. Additionally, I am interested in exploring the possibility of enabling MFA for a specific subset of our business users as a test measure. As an Administrator, I cannot see the policy options to choose a specific group of users or team of users to target MFA to. Thank you for your time and guidance.[Feature Request] Custimize App name and icon
I don't want the people around me to know that I'm using 1Password, such as colleagues and friends who accidentally see my device's screen, as well as my girlfriend. If my girlfriend knows that all my passwords are stored in 1Password, she will definitely force me to tell her 1Password account password, and I won't be able to refuse. The best security measure is not layers of encryption, but rather to prevent others from even knowing its existence in the first place. In this regard, 1Password is not as good as Bitwarden. Most people have no idea what Bitwarden is for, but it's immediately obvious what 1Password is. 1Password would be much safer and useful if it allow users to customize the app's name and icon (as well as desktop software and browser extension). Telegram already allows users to customize the app icon, so technically it shouldn't be a problem. If this feature can be implemented, I will be a 1Password subscriber forever.
