Jump to content

Search the Community

Showing results for tags '2fa'.



More search options

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


Forums

  • General discussion
    • Hot topics
    • Enpass Support & Troubleshooting
    • Autofilling and Desktop Browser Extensions
    • Data Security
    • Announcements
  • Help us improving Enpass
    • Feature requests
    • Enpass Beta
    • Localization
  • General discussion

Find results in...

Find results that contain...


Date Created

  • Start

    End


Last Updated

  • Start

    End


Filter by number of...

Joined

  • Start

    End


Group


Found 10 results

  1. boistordu

    yubikey support

    I'm going to repeat myself but please support yubikey feature. IT's pretty simple, yubikco is giving all the API we need to do this: We know that it should be for web app but if you say was the ONLY usecase then -> we wouldn't use it to auth in windows 7 locally -> we wouldn't use it to auth in keepass locally -> we wouldn't use it to auth to QubesOS and decrypt the device LOCALLY Should I continue? Yubikey CAN and SHOULD be used to decrypt encrypted assets in ALLL password manager. We should never pretend to know better since there are always better version of ourselves and in this case it's also true. If theoreticians of security and cryptology use it then we should too. simple as that.
  2. Hello, How can I use TOTP (2FA) within Enpass? Is there somewhere a tutorial available? Thank you! Best regards OLLI
  3. Some hardware auth tokens such as Yubikey support a challenge-response mode. i.e. you initialise the token with a secret which is henceforth only available to the token (backup of the key excluded). You take the user's password and send it as the challenge to the token, which calculates a HMAC using the key and returns the response, which is used as the database password. e.g. https://sourceforge.net/p/passwordsafe/discussion/134800/thread/7463e2a3/#7e4e It'd be neat if enpass supported this.
  4. Hello, Here is a proposal to enhance security mainly for cloud/webdav users but not only : The goal of 2FA is to have two different things to use for authentication (basicaly something we know, something we have, ect...) As such, I feel that storing 2FA and passwords in the same storage renders 2FA completely useless. Wouldn't it be better if it was possible to split passwords and 2FA data in different files in a different location ? or even having two different apps. I've given some though about this and off course, I think any developer would agree this should be even in completely different applications. One could say we can use Google Authenticator or Microsoft authenticator or another for this however these applications does not sync with cloud/webdav and can be only used on a single device which I think is greatly ridiculous if you were to lose or break the device holding the application. And we can't have a two instances of Enpass on every device either... This is just a proposal but this would be a nice add. Thanks for listening
  5. Google Authenticator 2FA Implementation Hi, First off, I would like to start by saying I love the product and I use both the desktop and paid mobile version. I think it would be great if there was something built into Enpass that could replace Google Authenticator, something that is able to store your 2 factor authentication secrets, and then display and copy the codes. In the past when ever I've dealt with Authenticators, it has always been a struggle to keep the secrets synced between devices, and I know this is a strong point for Enpass. I think this could be a feature that would draw a lot of people to Enpass. Thank you for your consideration.
  6. Any chance your Enpass developers could create a 2-Step Verification feature to be used within the Enpass app, rather than us having to use Google or some other alternative third party app for our 2 step (factor) verification logins. It makes sense to have that within Enpass, plus it would allow us to backup and encrypt our verification codes within the Enpass encrypted database. Just an idea.. What do you think?
  7. I have a lot of passwords/items and try to use MFA where I can. If there was a view that I could click on to show all accounts that support MFA/2FA or an icon/note on the detail page this would help me identify and setup MFA on other accounts. I normally use this site to identify sites but its not exactly easy to use or identify the sites I use. https://twofactorauth.org/
  8. I really like Enpass and use it multiple Windows devices. Everything works fine. Then I activated OneDrive two factor authentication, and sync stopped working. I installed Enpass new device while havin 2FA enabled. It could read data from OneDrive, but after initial load sync didn't work. After disabling 2FA sync started working with every device. Any workarouds? Any fix coming up? Or is this stupid user error?
  9. I am looking for a solution to the problem of using Enpass locally between iPads, iPhone and MacBook Pro. Whilst using the iPads, I've employed my own hosted WebDav but again the management of such a server requires time and effort unlike iCloud, OneDrive for Business or local Folder. Cloud sync would be good if it is a Trusted store such as Apple or Microsoft. But do we really 'trust' these big corps with our password data? I would like to build a cross platform WebDav for secure password management for people to use solely for this purpose only. Who would be interested? I'm thinking deploying WebDav on a Swiss Server, designing a web interface for Enpass and then syncing between devices through WI or SSH. I've tested WebDav and EnPass on Digital Ocean before but it's a lot to manage. Any other solutions to secure cloud password storage?
  10. Simply put I'm suggesting a multi-line text field that can be secured. Sites using multi-factor authentication (MFA) often have a set of recovery codes. One can't add these easily to Enpass as I don't have an option to have a secure text field. While talking about fields it could be nice to have a master list of fields that are already setup and can be added to any item (ie, I just add the recovery codes field I've already added).
×