# Invite & Manage Members Add and manage your organization members to ensure the right people have access to Bitwarden. > [!NOTE] Different user provisioning methods > This article discusses only one of the available methods to invite users and manage your subscription’s seat count: > > - All organizations can [manually invite users](https://bitwarden.com/it-it/help/managing-users/) and update the [seat count](https://bitwarden.com/it-it/help/manage-subscription-seats-in-your-organization/). > - Teams and Enterprise organizations can use [SCIM](https://bitwarden.com/it-it/help/about-scim/). > - Teams and Enterprise organizations can use [Directory Connector](https://bitwarden.com/it-it/help/directory-sync/). > - Enterprise organizations can use [just-in-time (JIT)](https://bitwarden.com/it-it/help/jit-provisioning/). ## Add new members To ensure the security of your organization, Bitwarden applies a three-step process for adding and onboarding a new member: [invite](https://bitwarden.com/it-it/help/managing-users/#invite/) → [accept](https://bitwarden.com/it-it/help/managing-users/#accept/) → [confirm](https://bitwarden.com/it-it/help/managing-users/#confirm/). This is designed to facilitate secure sharing between organizations and users by maintaining end-to-end encryption. ### Invite > [!TIP] Enterprise policy before inviting users > For Enterprise organizations, Bitwarden recommends configuring [Enterprise policies](https://bitwarden.com/it-it/help/policies/) prior to inviting members to ensure compliance on entrance to your organization. To invite someone to your organization: 1. Log in to the Bitwarden [web app](https://bitwarden.com/it-it/help/getting-started-webvault/) and open the Admin Console using the product switcher: ![Product switcher](https://bitwarden.com/assets/2uxBDdQa6lu0IgIEfcwMPP/e3de3361749b6496155e25edcfdcf08b/2024-12-02_11-19-56.png) *Product switcher* 2. Navigate to **Members** and select + **Invite User**: ![Invita un membro a un'organizzazione](https://bitwarden.com/assets/7AJjR4oqEnCH3A89YYoWpH/498d594fa9703bee9c5f49e2af9f83d0/Invite_member_to_an_organization.png) *Invita un membro a un'organizzazione* 3. On the Invite user panel: - Enter the **Email** address where new users should receive invites. You can add multiple users at a time by comma-separating email addresses. - Select the **Member role** to be applied to new users. [Member role](https://bitwarden.com/it-it/help/user-types-access-control/) will determine what permissions these users will have at an organizational level. - In the **Groups**tab, select which [groups](https://bitwarden.com/it-it/help/about-groups/) to add this user to. - In the **Collections**tab, select collects to give this user access to and what [permissions](https://bitwarden.com/it-it/help/user-types-access-control/#permissions/) they should have to each collection. 4. Click **Save** to invite the designated users to your organization. > [!NOTE] Invitations expire > **Invitations expire after five days**, at which point the member will need to be re-invited. Re-invite members in bulk by selecting each member and using the ⋮ **Options icons**to select **Resend invitations**: > > > ![Resend invitations in bulk](https://bitwarden.com/assets/1yj3MLJDTr7zOn5TwP0FGJ/67a16c6ee6ee14a92aa350986244e164/Resend_invitations.png) > *Resend invitations in bulk* > > If you're self-hosting Bitwarden, you can configure the invitation expiration period [using an environment variable](https://bitwarden.com/it-it/help/environment-variables/). ### Accept Invited users will receive an email from Bitwarden inviting them to join the organization. Clicking the link in the email will open the Bitwarden web app, where the user can log in or create an account to accept the invitation: ![Invito all'organizzazione](https://bitwarden.com/assets/4Fe96NuWb7yRe6muKf7UbZ/bcb1a8df0bc2ffdecbcd86b82d16c9a3/2025-09-03_10-41-25.png) *Invito all'organizzazione* You must **fully log in to the Bitwarden web app** to accept the invitation. When you accept an invitation, an administrator will need to [confirm](https://bitwarden.com/it-it/help/managing-users/#confirm/) access. Once confirmed, you'll be notified that you can access the organization. Additionally, organization members will have their [email automatically verified](https://bitwarden.com/it-it/help/product-faqs/#q-what-features-are-unlocked-when-i-verify-my-email/) when they accept an invitation. ### Confirm To confirm accepted invitations into your organization: 1. Log in to the Bitwarden [web app](https://bitwarden.com/it-it/help/getting-started-webvault/) and open the Admin Console using the product switcher: ![Product switcher](https://bitwarden.com/assets/2uxBDdQa6lu0IgIEfcwMPP/e3de3361749b6496155e25edcfdcf08b/2024-12-02_11-19-56.png) *Product switcher* 2. Navigate to **Members**. 3. Select any `Accepted` users and use the ⋮ options menu to ✓ **Confirm selected**: ![Confirm member to an organization](https://bitwarden.com/assets/5eRDRAooRSGqRWJYZB5fgz/f3eac670d95664be963d2b38eddf68b5/Confirm_member_to_an_organization.png) *Confirm member to an organization* 4. Verify that the [fingerprint phrase](https://bitwarden.com/it-it/help/fingerprint-phrase/) on your screen matches the one your new member can find in **Settings** → **My account**: ![Fingerprint phrase ](https://bitwarden.com/assets/6sWPBv5GFAyMcULNxfCCJG/b3115a77e0d8d8d48fcc1f9e24e42d70/fingerprint-phrase.png) *Fingerprint phrase * Each fingerprint phrase is unique to its account, and ensures a final layer of oversight in securely adding users. If they match, select **Submit**. > [!NOTE] Clear cache and cookie to restore fingerprint phrase prompt > If **Never prompt to verify fingerprint phrases** has been toggled on, fingerprint phrase verification be reactivated by clearing the browser cache and cookies. ## Manage existing members From the **Members** page, you can also review and update individual members' accounts, like adding them to groups, collections, or the Secrets Manager. Select the ⋮ **Menu icon** for available options per user: ![Update member](https://bitwarden.com/assets/5tspjHKPHunTlRhylIJo5O/c707a3e1780364f8820832c216b5ca64/Update_member.png) *Update member* ### Review 2FA and account recovery status The **Members** page also notes which users have set up certain features in the **Policies** column. The 🔑 **Key icon** means the member is enrolled in [account recovery](https://bitwarden.com/it-it/help/account-recovery/). The 🔒 **Lock icon** is present when [two-step login](https://bitwarden.com/it-it/help/setup-two-step-login/) is used: ![2FA status](https://bitwarden.com/assets/HNlJNX9VJVURxGqrrBdRb/1592f5c29694cf36e973ddac553e95e1/2FA_status.png) *2FA status* ### Download list of members If you want to view or share a list of all organization members outside of the Admin Console, owners, admins, and [custom role](https://bitwarden.com/it-it/help/user-types-access-control/#custom-roles/) users with **Manage users** permission can export a `.csv`. This is available to all organizations. To export your member list, go to **Members** and select the ⬇️ **Download icon**: ![Export member list](https://bitwarden.com/assets/6FCI1z0EtjbNAgeK5DZVx6/0e9b448678e95f10249a009d5d7f5aba/Export_member_list.png) *Export member list* > [!NOTE] Custom role, account recovery, member export > Custom role users with **Manage account recovery** permission but not **Manage users** permission can download a `.csv` that only shows members who are enrolled in [account recovery](https://bitwarden.com/it-it/help/account-recovery/). All other members are excluded from the file. #### Included data The member list export includes the following information about each account: | Column | Description | |------|------| | Email | The email address of the account | | Name | The name of the user, from **Settings** → **My account** | | Status | Shows where the account is in [onboarding](https://bitwarden.com/it-it/help/managing-users/#add-new-members/) (**Invited**, **Accepted**, or **Confirmed**) or if the account is [**Revoked**](https://bitwarden.com/it-it/help/revoke-users/) from the organization | | Role | The user's [member role](https://bitwarden.com/it-it/help/user-types-access-control/) in the organization | | Two-step login | Shows if the user logs in with any [two-step login method](https://bitwarden.com/it-it/help/setup-two-step-login/) | | Account recovery | Shows if the user is enrolled in [account recovery](https://bitwarden.com/it-it/help/account-recovery/) | | Secrets Manager | Shows if the [Secrets Manager](https://bitwarden.com/it-it/help/secrets-manager-overview/) is activated for the member | | Groups | Lists all groups that include the member | > [!TIP] Check collection access via Member access report > Enterprise organizations can review the [Member access report](https://bitwarden.com/it-it/help/reports/#member-access/) to learn which collection(s) members have access to, their level of permission within each assigned collection, and more. ### Remove users The **Members** page is also where you can withdraw someone from an organization. There are three methods: - [Temporarily revoke access](https://bitwarden.com/it-it/help/revoke-users/) - [Permanently remove access](https://bitwarden.com/it-it/help/remove-users/) - [Delete organization member accounts](https://bitwarden.com/it-it/help/delete-member-accounts/) > [!WARNING] Danger Zone > Deleting an account is permanent and cannot be undone or restored. To create a backup of your vault data to store in a safe location, [export your vault data](https://bitwarden.com/it-it/help/export-your-data/).