Log in to Secrets Manager
The end-to-end zero-knowledge encrypted Bitwarden account you use to log into Password Manager will be the same as what you use to log into Secrets Manager.
This article pertains to logging in to the Secrets Manager web vault. The Secrets Manager CLI, which is primarily used to script secrets injection into your applications and infrastructure, requires logging in with an access token.
Your master password is the primary method for accessing your Bitwarden account. It's important that your master password is:
Memorable: Bitwarden employees and systems have no knowledge of, way to retrieve, or way to reset your master password. Do not forget your master password!
Strong: A longer, more complex, and less common master password is the best way to protect your account. Bitwarden provides a free password strength testing tool to test the strength of some memorable pass words you are considering.
Worried about forgetting your master password? Here is what to do:
Setup a hint. In case you need a reminder, a master password hint email can be requested on the login screen. Make sure you use a hint that only you will understand.
Designate a trusted emergency contact. Users with premium access can grant account access to a friend or family member in the case of emergency.
Learn how to change your master password, or what to do if you've forgotten your master password.
Using two-step login (also called two-factor authentication or 2FA) to protect your Bitwarden account prevents a malicious actor from accessing your data even if they discover your master password by requiring authentication from a secondary device when you log in.
There are lots of different methods for two-step login, ranging from dedicated authenticator apps to hardware security keys. Whatever you choose, Bitwarden highly recommends that you secure your vault using two-step login.
Bitwarden offers several two-step login methods for free, including:
via an authenticator app (for example, Authy or Google Authenticator)
For premium users (including members of paid organizations), Bitwarden offers several advanced two-step login methods:
via Duo Security with Duo Push, SMS, phone call, and security keys
via YubiKey (any 4/5 series device or YubiKey NEO/NFC)
via a FIDO WebAuthn Authenticator
Did you know you can log in to the Bitwarden web app using a secondary device instead of your master password? Logging in with a device is a passwordless approach to authentication, removing the need to enter your master password by sending authentication requests to any certain devices you're currently logged in to for approval. Learn more.
If your organization uses login with SSO, you can access your Bitwarden web app using your federated SSO credentials.