Master password changed yet vault still accessible
I changed my master password on my PC and the android app was logged in. It prompted me to sign in but my vault was still accessible when I dismissed the login screens. I could read all the passwords and everything. This seems like a real security hole. There was a notification it was offline but everything was still accessible. I am expecting that when a master password is changed the app would be signed out. Have I got this wrong?
Comments
-
Hi @kruts
Changing your account password won't deauthorise existing devices. You'll need to enter the new account password on your devices to allow them to sync new data.
To remove your account from a device, you should Deauthorize it from https://start.1password.com/profile – click the ⚙️ gear button next to a device and then Deauthorize Device, like this:
If you lose a device, take a look at the advice in this article:
☞ If your device was lost or stolen, and it has your 1Password data on it
Please let me know if you have any questions, or would like any further help.
— Grey
0
