My AccountTwo-step Login

Recovery Codes

If you enable any two-step login methods, it's important to understand that losing access to your secondary device(s) (for example, a mobile device with an installed authenticator, a security key, or a linked email inbox) has the potential to lock you out of your Bitwarden vault.

To protect against this, Bitwarden generates a recovery code that can be used with your master password to disable any enabled two-step login methods from outside your vault.


You should get your recovery code immediately after enabling any two-step login method. Additionally, get a new recovery code every time you use it, as it will change with each use.

Get your recovery code

To get your recovery code:

  1. Log in to your web vault.

  2. Select the profile icon and choose Account Settings from the dropdown:


  3. Select the Security page and the Two-step login tab:

    Two-step Login
    Two-step Login

  4. Select the View Recovery Code button near the top of the screen. You will be prompted to enter your master password, which will open a recovery code panel:

    Beispiel: Wiederherstellungscode
    Beispiel: Wiederherstellungscode

Save your recovery code in the way that makes the most sense for you. Believe it or not, printing your code and keeping it somewhere safe is one of the best ways to ensure that the code isn't vulnerable to theft or inadvertent deletion.


When does a recovery code change?

Neither disabling and re-enabling two-step login, nor changing your master password will change your recovery code. Your recovery code will only change when you use it. After you use a recovery code, immediately get a new one and save it in the way that makes the most sense for you.

Use your recovery code

To use your recovery code, navigate to (or, if you are self-hosting,

Using your recovery code is like the normal login procedure, requiring your email address and master password, but will also take your recovery code. On successful authentication of all three, you will be logged in to your vault and all two-step login methods will be disabled.

Once used, get a new recovery code, as it will change with each use. You should also at this point re-enable any two-step login methods you want to use in the future.


Wiederherstellungscodes deaktivieren nicht Duo für Organisationen. Dass eine Duo-Abfrage organisationsweit ist, erkennen Sie an der (Organisation)-Überschrift, wie im folgenden Screenshot:

Duo (Organisation)
Duo (Organisation)

Wenn Sie durch eine Duo (Organisation)-Abfrage aus Ihrem Tresor ausgesperrt werden, wenden Sie sich an den Duo-Administrator in Ihrem Unternehmen, um die Eingabeaufforderung zu umgehen.

Make a Suggestion to this Article...*
Email (optional)

Kontaktieren Sie unser Team vom Kundendienst

Für technische Fragen und bei Fragen zu Rechnungen, Produkten und Familien/Premium-Tarifen.

E-Mail-Adresse Ihres Bitwarden-Kontos*
Verify account email*
Are you self-hosting?*


Check status

© 2023 Bitwarden, Inc.NutzungsbedingungenDatenschutzerklärungSitemap