Secure your business with Bitwarden and Duo

Learn how Bitwarden integrates with Duo for multiple solutions: Duo MFA for two-step login, and Duo SSO for Login with SSO.

Background pattern

Businesses rely on third-party applications and software as a service (SaaS) products as a part of operations to increase productivity and efficiency. As SaaS products become more common, so have cyber attacks targeting these accounts and the employees that utilize them. These attacks could potentially result in the leakage of sensitive information and disruption to operations, causing harm to businesses and their customers.

In the 2023 Password Decisions Survey, 60% of respondents reported that they were the target of a cyberattack. A combination of defenses, like Bitwarden Password Manager, multi-factor authentication, and single sign-on, helps reduce risk of successful attacks by hardening access to critical systems. These provide multiple levels of authentication and tools to create, store, and share strong passwords for all departments of a company and deflect credential stuffing, phishing, and ransomware attacks, keeping your business secure.

To provide this enhanced security, Bitwarden integrates with Duo for multiple solutions: Duo MFA for two-step login, and Duo SSO for Login with SSO.

Duo for Multi-factor Authentication

To further protect credentials maintained within an organization vault, Bitwarden supports Duo MFA for two-step login, also known as two-factor authentication (2FA) or multi-factor authentication (MFA). Duo MFA can be used both individually and enacted across the Bitwarden organization with the applicable Enterprise Policy, ensuring secure two-step login for all employees.

Two-step Login Enforcement |

Duo for Single Sign-On

Using Login with SSO with Bitwarden provides additional convenience and security for credentials throughout the organization. Duo SSO with Bitwarden allows for secure authentication into Bitwarden accounts and by extension, the stored credentials within, providing full oversight and control of the tools and applications that teams are using. Bitwarden is compatible with Duo through SAML 2.0 or OpenID Connect (OIDC). To maintain zero-knowledge encryption, Bitwarden separates authentication and decryption into two discrete steps: authentication through Duo, then decryption and vault access through a Bitwarden master password. As a result, decryption keys never pass through Bitwarden or Duo servers.

Single Sign-On flow to access Bitwarden |
Single Sign-On flow to access Bitwarden


The Bitwarden and Duo integration brings additional security to businesses and teams in two ways: as a form of multi-factor authentication (MFA) and as a Single Sign-On (SSO) provider. In addition, the MFA functionality can be used for individuals and also enforced across the organization. Using just one or both integrations can drastically improve your business’s security posture, and deploying the solutions is simple and straightforward.

Secure Your Business Data with End-to-End Encryption

Choose the right Bitwarden plan for your business and start your free 7-day trial today.

For Teams & Business
Unlimited Users
Upgrade anytime
per user/month
  • All Premium Features, Plus:
  • Unlimited Collections & Items
  • Directory Connector
  • API access
  • 24/7 Priority Tech Support
For Enterprise
Unlimited Users
Expand anytime
per user/month
  • All Teams Features, Plus:
  • Self-Hosting Deployment Option
  • SSO Authentication
  • Enterprise Policies
For Teams & Business
Free for Everyone
Every Wednesday at 12 pm ET
See a Live Demo
Join us to see Bitwarden in action.
© 2023 Bitwarden, Inc.