Proof-of-Concept Project Checklist
This guide is designed by our Product, Implementation, and Sales specialists at Bitwarden to help guide your business in running a PoC of Bitwarden. Bitwarden offers a free trial for Enterprise Organizations, and we're confident that spreading out these steps over that time will help shape a successful PoC.
Step | Key Person | Action | Resource | Duration (hrs) |
---|---|---|---|---|
Identify Organization Owner
| Organization Owner | Create a free Bitwarden account for your Organization Owner, who will manage your Organization's settings, structure, and subscription. Note: If you wish to have a EU-hosted cloud instance, instead navigate to https://vault.bitwarden.eu | 0.1 | |
Create Organization
| Organization Owner | Create a free Organization on the Bitwarden Cloud. Once created, let us know and we'll upgrade you to an Enterprise trial. | 0.1 | |
Self-hosting only Download a license file for your self-hosted installation | Organization Owner | If you're self-hosting Bitwarden, a license file enables Enterprise functionality and the right number of seats for your instance. | 0.1 | |
Self-hosting only Install self-hosted instance | Organization Owner / IT Team | Setup your Bitwarden server. We recommend deploying on Linux for optimal performance and lowest total cost of ownership. | 2.5 | |
Add administrators | Organization Owners + Admins | Onboard Admins to Bitwarden, who can manage most Organization structures. We also recommend adding a second Owner for redundancy. | 0.2 | |
Create Collections for vault items | Organization Owners + Admins | Collections gather items for secure sharing with Groups of users. | 0.25 | |
Create Groups to assign users to | Organization Owners + Admins | Groups gather users for scalable assignment of permissions and access to Collections. | 0.25 | |
Assign Groups to Collections | Organization Owners + Admins | Assign Groups to Collections, making shared items available to supersets of users. | 0.25 | |
Share items to Collections | Organization Owners + Admins | Add items manually or import data from another password management application. | 0.25 | |
Select collection management settings | Owner | Choose how collections will behave in the organization. These settings allow for a spectrum of full admin control to completely self-serve where users can create their own collections. These settings can be used to establish a policy of least privilege. | ||
Configure Enterprise Policies | Organization Owners + Admins | Enterprise Policies can be used to tailor your Bitwarden Organization to fit your security needs. Enable and configure desired policies before user onboarding begins. | 0.1 | |
Configure Login with SSO (optional) | Organization Owners + Admins | Configure Bitwarden to authenticate using your SAML 2.0 or OIDC Identity Provider. There are multiple options of SSO to choose from. You can modify your web domain’s DNS TXT record to verify the ownership of your domain and SSO identifier for a streamlined SSO process. | 1.5 | |
Add early users to Groups | Organization Owners + Admins | Add a set of users to your Organization manually and assign them to different groups. With these users, you'll broadly test all pre-configured functionality in the next step, before moving on to advanced functions like Directory Connector. | 0.5 | |
Download Bitwarden Client Applications | All POC users | All Organization members added for the POC should download Bitwarden on an assortment of devices, login, and test access to shared items/Collections/Groups and application of applied Policies. If you're self-hosting, users will need to connect each client to your server. | 0.5 | |
Choose between SCIM and Directory Connector | Organization Owners + Admins | Decide whether SCIM or Directory Connector is the right user onboarding and user lifecycle management solution for your Organization. | 1 | |
Configure and test user onboarding with SCIM or Directory Connector | Organization Owners + Admins | Configure and test Bitwarden SCIM integrations or the Bitwarden Directory Connector application to automatically sync users and groups. | 1.5 | |
Onboard users with SCIM or Directory Connector | Organization Owners + Admins | Execute on SCIM or Directory Connector syncing to invite your remaining users to the Organization. | 1 |
When evaluating Bitwarden Password Manager be sure to also review the features highlighted below. Choose to use your own data for your POC or import an example vault for testing.
Feature | Action | Resource |
---|---|---|
Account Recovery Administration | As a test, begin the account recovery process for an enrolled user. Create a new master password for the user. Send that new master password to the user in a secure channel, such as through a Bitwarden Send, so they can log in and create a new master password. | |
Assign an item to multiple collections | In the admin console, go to Collections, choose any vault item, and click on the three dot menu > Collections. Use the check boxes to add that item to as many collections as you like. | |
Download and test the CLI | The Bitwarden command-line interface (CLI) allows for scripting, automation, and API-based commands. | |
Review collections access options | In the admin console, go to Settings > Organization info > Collection management. There are two toggleable options, leading to four possible configurations. | |
Public and Vault APIs | Review the two APIs available to your organization: The Public API and the Vault Management API. These APIs can be used for scripting, automation, and integration with third-party applications, such as SIEM tools. | |
Event logs | Navigate to the Event logs in the Admin Console. Review the data displayed on-screen, and export the logs for more detailed viewing in another application. | |
Bitwarden Send | Create a test Send from any Bitwarden client. Choose to send either text or a file, adjust the security settings to your preferences and save. Share the link or test it yourself. | |
Export and Import data | Export the items you have stored in your organization vault. The created export file can be used as a partial backup solution or for migrating to another service if necessary. Data can also be imported into the organization vault from other services. Test the import function from your prior solution or from this example file. | |
Nested collection | Create a nested collection - one collection within another. In the Admin Console, open a parent collection, and from the New dropdown select Collection. | |
Custom role creation | Access a test user in your organization and change their role to Custom. Evaluate the available options. These permissions are useful for various scenarios, such as giving Help Desk employees access to the organization to assist end users, but limiting their ability to access other settings such as SSO. | |
`Can manage` permission | Create a test collection, such as “Finance team test.” Assign an individual user, such as your company’s accountant, to that collection and grant the Can manage permission. This user can now add/remove items, and add/remove users and groups to the collection. | |
Compare app store ratings of clients | Read the reviews on app stores and note the rating of the Bitwarden app and compare it to other solutions. End user satisfaction is an important factor for successful adoptions, and app ratings offer a proxy evaluation of usability. | |
Free families plan for all enterprise users | Visit Account settings > Free Bitwarden Families. All users of your enterprise plan are granted a free license for a Bitwarden Families Plan. This reinforces good security habits by having employees practice them at home. | |
Browse the Bitwarden Community Forum | Bitwarden has an active community of users, both personal and professional. The community forums are a channel for providing feedback, getting support from others, and participating in user research studies and beta programs. | |
Visit the Bitwarden GitHub repo and review source code | View the Bitwarden source code and browse the available repositories to see the work going into Bitwarden Password Manager. |
We've seen a lot of deployments and have found that taking the following actions can positive contribute towards a successful PoC and successful adoption with your users:
Step | Key Person | Action | Resource |
---|---|---|---|
Determine timeline for rollout to first-wave users | Senior Leadership & Security teams | There are lots of different strategies for rolling out Bitwarden. Take things at whatever pace best suits your team. | |
Craft internal messaging about Bitwarden rollout | Internal Training & Managers | Bitwarden provides a lot of resources to help users quickly adopt, check some out with the links in the Resource(s) column. |
Suggest changes to this page
How can we improve this page for you?
For technical, billing, and product questions, please contact support