I’ve used Bitwarden as my password manager and authenticator for a long time. I’ve been testing Pass and I really like it overall.
But the thing I realized is that in order to sign in to my Proton account, I need to provide an OTA code. No problem when I’m using a separate password manager/authenticator. But when Pass is my authenticator I don’t have access to the OTA code (if I were to log out of all devices).
What are others doing in this situation?
I use Aegis as my 2FA for Proton and have my password memorized. Everything else, including all other 2FAs are in Proton Pass
Aegis is fine but you need to make sure you have a super reliable backup because losing your 2FA codes is an absolute nightmare. Losing dozens of them, you’re going to spend weeks on the phone/emailing people to get access to your accounts and the solution is usually sending them pics of your ID.
I used Aegis a long time ago. It was solid. I think I moved away from it for sync reasons (or lack thereof), I’ll need to take a look at it again. Thanks for sharing.
It’s “Proton Pass”, not “Pass”. The latter will lead to great confusion.
I use Ente Auth for all TOTP. It’s free, encrypted, and actually provides the codes for the next cycle so you don’t have to stare at it for 5 seconds waiting for it to tick over.
If you have your passwords and TOTP in the same place then you have no 2FA.
Yeah Proton Pass, I was using shorthand of sorts considering where I was posting.
Thanks for the recommendation.
Most services let you use a code that’s a few seconds old, so no need to wait 5 seconds, just type in whatever you see
Didn’t know that, thanks!
Memorize my password and use 2FAS for MFA for Proton Pass.
At the end of the day, if you want some sort of 2FA for your Proton account, you’ll need another service (like Bitwarden), or you’d have to rely on less secure methods (like SMS).
Keeping your Bitwarden account and only using it to log in to Proton seems like a reasonable way to go.
Yeah, I’m just looking for choices others are using to compare notes. I like bitwarden a lot, but keeping it for just 1 MFA token is a bit overkill. This is considering bitwarden doesn’t allow TOTP codes in their free plan (last I checked).
What is OTA in this instance? I use OTP with pass-otp but I suspect you’re talking about something else.
One time authentication. Same thing, just different name.
Is pass-otp browser only?
I think we’re talking about different programs. I use Pass which has otp support. There are extensions for browser support but I’m only familiar with the cli.
I didn’t know what community I was reading your question in. Sorry.
Yubikey for me, I plug it into USB and tap the button. Or in some cases Yubi Authenticator App to generate the OTP if you aren’t plugging it into the PC.
I was thinking of going hardware, and I might still as a backup, bit I think I’ll need a software solution as well for family sharing. I’ll have to think this through a bit. Thanks.
deleted by creator
