Bitwarden just launched a new authenticator app. Here’s what it means to users.

Boost your security and download Bitwarden Authenticator today.

Storing 2FA codes is just the beginning. Bitwarden aims to add defense in depth to authentication. 

Bitwarden products equip enterprises and individuals with the ability to securely manage and share sensitive information online: password management for everyone, secrets management for developer and DevOps teams, and software developer tools for passwordless experiences such as passkeys and magic links. These solutions work together, adding protection across organizations that rely on passwords, machine credentials, and passkeys to safeguard sensitive applications and data.

Today, Bitwarden strengthens this security product portfolio with a new authenticator app that protects online services and applications from unauthorized access. Bitwarden Authenticator generates and stores time-based one-time passwords, aka TOTP, which adds another layer of user verification, ensuring identities are confirmed before users gain access to critical data. Released in app stores, Bitwarden Authenticator is available for everyone, even if they are not currently Bitwarden customers.

A new authentication approach that's dynamic and adaptive

This offering signals the future of advanced authentication where enterprises can deliver security at scale, elevate convenience, while embracing passwordless. Though multi-factor authentication (MFA) is a core defense strategy, some implementations have limitations. The infamous SolarWinds attack occurred after cybercriminals took advantage of employees' MFA requests to gain access to internal accounts. In short, traditional multi-factor authentication is susceptible to phishing attacks, code interceptions, stolen SIM cards, and other vulnerabilities. 

Today, Bitwarden Authenticator is available for everyone to store and generate TOTP codes. Looking forward, Bitwarden aims to expand the product roadmap, providing enterprises with more granularity and policy controls around how they manage workforce authentication. 

Just like logins and passwords, workforce authentication itself needs additional verification steps. Here’s an overview of what that future horizon looks like:

Authentication that aligns to custom enterprise policies

Generally, users are required to provide their identities and SSO access when accessing cloud applications. A modern authentication approach would require authorized users to provide additional verification or meet certain requirements before accessing their Windows or MacOS workstations, as well as any other service used within their domain. 

Authentication that integrates with your IT infrastructure

Adopting modern authentication solutions can often mean overhauling existing applications and identity infrastructure. By leveraging widely adopted standards such as TOTP, Bitwarden can work seamlessly everywhere, including legacy applications. Enterprises can remain nimble, without having to re-architect current systems while adopting strong passwordless options such as passkeys, FIDO2 hardware keys, magic links, biometrics, and beyond. 

Authentication that makes passkeys even more phishing resistant

With passkeys -- already more secure and simpler than passwords -- the user experience is greatly improved and human error is nearly eliminated. Even so, passkeys only remain phishing resistant as long as your device or browser remains uncompromised. With a need to further strengthen passkeys, Bitwarden envisions enterprises adding comprehensive policies that are dynamic to how employees use passkeys and the services they’re allowed to access.

Bitwarden Authenticator for everyone

Multi-factor authentication isn't just for businesses. An authenticator that supports cloud and mobile across devices helps everyone stay more secure online. Bitwarden Authenticator helps reduce your risk of fraud and data breaches at home, at work, and everywhere you go. 

“Bitwarden Authenticator provides immediate value to the Bitwarden user base who has been asking for a standalone app for several years. Stay tuned for upcoming new features that will help enterprise organizations enforce security policies to protect and monitor authentication to business applications," said Kyle Spearrin, founder and CTO of Bitwarden.

Is Bitwarden Authenticator part of Bitwarden Password Manager?

Bitwarden Authenticator is a standalone app that is available for everyone, even non-Bitwarden customers.

What does Bitwarden Authenticator do?

In its current release, Bitwarden Authenticator generates time-based one-time passwords (TOTP) for users who want to add an extra layer of 2FA security to their logins.

Isn't this the same as storing TOTP authentication codes in Bitwarden Password Manager?

Integrated TOTP authentication is a premium feature in Bitwarden Password Manager. Bitwarden Authenticator is a standalone mobile app that generates TOTP codes for any online service that supports them. Bitwarden Authenticator can be used without a Bitwarden account.

Should I use both? When should I use the integrated authentication  feature? When should I use Bitwarden Authenticator?

Integrated authentication in Bitwarden Password Manager offers a convenient way for users to add 2FA to their online accounts. This popular feature will remain available across paid plans. 

Bitwarden Authenticator can be used to store your verification codes to access your Bitwarden account, as well as other online applications you use. 

They can be used together, or separately, depending on your security preferences. 

Can I use the Bitwarden Authenticator to add 2FA to my Bitwarden account?

Yes! Many Bitwarden users have asked for a standalone authenticator in which to store their verification codes used to access their Bitwarden account. 

Will Bitwarden be removing the TOTP feature in Bitwarden Password Manager? 

The integrated authenticator will continue to be available in paid plans.

Can I use different logins for Bitwarden Authenticator and Bitwarden Password Manager?

Yes, users can set up different accounts for Bitwarden Authenticator and Bitwarden Password Manager.

How do I backup my data in Bitwarden Authenticator?

In this initial release, your data will be backed up through the mobile operating system's backup services. Please make sure your device is configured for backups. Bitwarden Authenticator data is included in the OS backups and will be restored with them.

Is Bitwarden Authenticator open source?

Yes! Bitwarden Authenticator is open source and available at the following GitHub repositories for Android and iOS.

Bitwarden Authenticator is now released with Phase 1 functions for local authenticator codes. There is a comprehensive roadmap planned with additional functionality including a longer term focus on business offerings for workforce authentication.