syriusz

YEAH! There it is! And now with MS Store version I've got full-time Enpass unlock with Windows Hello (biometric) and passkeys synced! https://www.enpass.io/blog/general/enpass-completes-passkey-integration-with-passkey-management-for-mac-windows-and-linux/ Thank you Enpass Development Team!

Do you have your Windows Hello properly configured and you login to Windows machine by TouchID/FaceID of Windows Hello ? If so, I guess there might be some incompatibilities in AMD version of your TPM module... I've found a lot of issues in google related to such AMD PSP (TPM) issues unfortunately...

Hi, I've just tried the latest Enpass BETA for Windows (6.9.2 but Website version only because I don't have access to MS Store version for beta) and passkeys work perfect! This is amazing user experience when you can login to your passkey-based account (github, google, passkeys.io, ... etc.) with one click/tap using your passkey previously saved (on iOS) in Enpass and now synced with your Enpass Windows version! I can't wait when this new Enpass version is available as stable release (and published in official MS Store)! Great job Enpass Team!

If anyone missed this news on Enpass blog - there is another great step announced - full passkeys support on Android! https://www.enpass.io/blog/security/enpass-for-android-now-supports-managing-passkeys/ Since I use iOS for mobile Enpass (which also supports passkeys sync for a few weeks) now the best news for me is: "Enpass for desktop computers already syncs passkeys created on mobile, and will support passkey creation and login within a few weeks." I can't wait to have this functionality too! Great work Enpass Team! Thank you!

All right! Thank you very much!

Hi, Thank you for your quick reply! It seems that both versions of Enpass for Windows PC (this downloaded from the website and the one installed from the Microsoft Store) behaves in exactly the same way, but... Aha! That seems to be the reason of my problem! My old laptop (the one with the newest Windows 11, where described problem exists) seems to have an old version of TPM 1.2 - see screenshot. My second laptop (the one with still Windows 10 OS) has TPM version 2.0! - see second screenshot. I plan to upgrade my laptop (the one with TPM 2.0) from Windows 10 to Windows 11 today. Could you please confirm that the issue described here is NOT related to Windows version (10 vs 11), but TPM version only, so I could be sure that after Windows upgrade (10 -> 11) I will still have Enpass full-time unlocking with Windows Hello? Thank you! Regards, Rafal

Hi, I'm using Enpass Desktop latest version (for Windows) downloaded from enpass.io webpage. On Windows 10 laptop, when I configure to use Windows Hello - it works on first run, so I don't have to enter master password. See Enpass settings in attachment (Windows10.png). On Windows 11 laptop, when I configure to use Windows Hello - it still requires master password on first run - then (on next Enpass wakeups) Windows Hellow works. See Enpass settings in attachment (Windows11.png). Is this a know issue with Enpass on Windows 11 and we are just waiting for the next Enpass update/fix/release? Or this is some config issue on my side? Dear Support, could you please help? Regards, Rafal

First important step to passkey-sync functionality described on the blog post: https://www.enpass.io/blog/security/enpass-steps-into-the-passwordless-future-with-passkey-management-for-ios/ But even more important is the declaration there: "And we’re excited to be bringing the simplicity and security of synced passkeys to Mac, Windows, Android and Linux very soon as well." Fingers Crossed! (no moji for that ;-)

This Enpass support for passkeys on iOS is an important step, but it is something that we've already had before in iCloud keychain. The main difference is that such passkeys are not stored on Apple's servers (iCloud), but they are under our control (in Enpass). Unfortunately (as I understand) passkeys are NOT yet available on non-iOS systems, but as we can read in declaration on the blog post: "And we’re excited to be bringing the simplicity and security of synced passkeys to Mac, Windows, Android and Linux very soon as well." and that's a real good news! See this feature request:

Yep, +1 for passkey future! GitHub has just released passkey auth in BETA - I've tried it - it's AWESOME! :-) https://github.blog/2023-07-12-introducing-passwordless-authentication-on-github-com/

Ok thanks for the link and I’m really glad to read this! Thank you for your hard work and I’m happy that Enpass Team monitors such security issues! Best regards, syriusz

Master password can be extracted from memory dump created without admin priviledges and after locked password manager: https://redmaple.tech/blogs/2023/extract-bitwarden-vault-passwords/ Are we (Enpass users) safe? regards, syriusz

It is NOT a good idea to enter your user/password (even protected by 2FA/MFA) to any site/service on some public/untrusted computer. You never know what runs on such machine, so you should assume it is compromised and risky. Thus, Enpass should not be needed there. If there is some special one-time emergency case and you have to login somewhere using not your own machine, you should setup 2FA/MFA first on such site/service, simply manually read your password from Enpass (on your mobile for example) and type it in manually. After that, change your password to this site/service ASAP when you are back home.