Local Password Support

gregldixon
gregldixon
Community Member
in Mac

I see another thread on this but it is closed. However I still think it is worth the discussion. I've complained before about the inability to support a local password (and using a local vault which worked perfectly for this < version 8 and was told that is not the way the app should be used). However the feature is very helpful:

  1. I'm able to use a random generated strong password as my overall master password which is good to protect my online account from attack
  2. On my personal, trusted devices, I want to be able to use an easy to remember password.

I know we can use TouchID and Watch etc but we're still forced to frequently re-enter the master password. And version 8 is even worse because if it locks, you have to quite and reopen the app to get the Watch unlock option available.

God help me if all my devices would require the master password. So to get around this I keep a text file with the master password on my desktop. Yes I should generate backup codes.I've done that but can't remember where I keep the file. Either way, both these methods seem even less secure than having a rememberable password I can use on my trusted devices and a complicated password to keep my account safe from online hacking.

Any reason why we're not allowed to have this?

1Password Version: Not Provided
Extension Version: Not Provided
OS Version: Not Provided
Browser:_ Not Provided

Comments

  • DavidB
    DavidB
    Community Member

    these methods seem even less secure than having a rememberable password I can use on my trusted devices and a complicated password to keep my account safe from online hacking.

    Sorry if I am not understanding, but why can't a memorable password prevent online hacking?

    David

  • Dave_1P
    Dave_1P
    edited June 2023

    Hello @gregldixon! 👋

    I'm sorry that you're running into frustration when unlocking 1Password for Mac. You can choose to have 1Password prompt you for your password less often by changing the "Require Password" option:

    1. Open and unlock 1Password for Mac.
    2. Click on 1Password next to the  in the menu bar.
    3. Click on Settings.
    4. Click on Security.
    5. Change "Require Password" to the desired option.

    I'm able to use a random generated strong password as my overall master password which is good to protect my online account from attack
    On my personal, trusted devices, I want to be able to use an easy to remember password.

    Your 1Password account already uses a dual-key system to protect your data both on your local device and online. Your account password protects your data locally on your device while your Secret Key protects your data off of your device. The two work together to ensure that only you can access your data:

    image

    You can read more about our security here: Find Out How Safe 1Password Really Is

    So to get around this I keep a text file with the master password on my desktop.

    Your account password should be the "one password" (hence our name) that you remember. I recommend that you choose a secure but memorable password and then memorize it. You shouldn't write your account password anywhere but on your Emergency Kit. You can find a guide on choosing a good account password here: How to choose a good 1Password account password

    Yes I should generate backup codes.I've done that but can't remember where I keep the file.

    1Password 8 doesn't use "backup codes" to replace the account password. Can you clarify a little further what you mean by this? I look forward to hearing from you.

    -Dave

  • gregldixon
    gregldixon
    Community Member

    I typed my whole reply but wasn't logged in. When I went to 'Post Comment' it required me to login which I did then promptly dumped my previous reply. I have redo it. Grrr.

    @Dave_1P it's not frustration, it's just a way we feel would be better. I've gone through your reply telling me the way it's done and I have to do it. So I then tried to use my easy to remember password which is 8 characters however I'm prevented from using anything less than 10.

  • Dave_1P
    Dave_1P

    @gregldixon

    I'm sorry that you lost your draft, the team is working on a fix for the posting issue. For now, please login to the forum before writing your draft.

    Your account password needs to be at least 10 characters long. I recommend using our guide to create a memorable, but still secure, password: How to choose a good 1Password account password

    -Dave

  • gregldixon
    gregldixon
    Community Member

    I feel like this whole exercise has gone nowhere.

  • Dave_1P
    Dave_1P

    @gregldixon

    I'm sorry that you didn't find my responses helpful. Are there any questions that I haven't answered? I'm happy to help as much as possible. 🙂

    I recommend that you choose a stronger account password that uses 10 characters or more. All of your most sensitive data is secured by that account password since it is the secret that is needed to decrypt your data locally on your device. The stronger your account password, the more protection against local attacks if someone manages to steal or compromise your Mac.

    You mentioned that you use Touch ID and your Apple Watch to unlock 1Password. As I wrote previously, when using Touch ID or an Apple Watch to unlock 1Password, you can choose to have 1Password prompt you for your password less often by changing the "Require Password" option:

    1. Open and unlock 1Password for Mac.
    2. Click on 1Password next to the  in the menu bar.
    3. Click on Settings.
    4. Click on Security.
    5. Change "Require Password" to the desired option.

    -Dave

  • gregldixon
    gregldixon
    Community Member

    Yeah I got all that @Dave_1P . Not complaining but was already aware of these things. It's an idea that was being asked for (not just by me) pre-version 8 when local vaults (and associated passwords) could be used. It would be helpful. But, as we usually see, our suggestions are pretty much countered by 1Password with 'this is how you do it'. So ....

  • Dave_1P
    Dave_1P

    @gregldixon

    We truly appreciate the feedback, and all of it is considered by team. Please keep the suggestions coming!

    In this case, I'm not fully understanding the benefit of adding a "local" password since your account password is already your "local password": it protects the data on your devices. Your Secret Key protects your data off of your devices. Adding another password just seems like it will confuse folks and lead them to forget their account password, and get locked out of their data if they lose their device, since they won't be using it regularly.

    Let me know if there's something that I'm misunderstanding.

    There are no plans to bring back old standalone vaults. 1Password.com memberships are the future of 1Password and you can read some of our founder Dave's thoughts here: The future of local/standalone vaults — 1Password Support Community

    -Dave

This discussion has been closed.