Expected behavior with no network connection and Duo

ocabj
ocabj
Community Member
edited November 2023 in Business and Teams

I was trying to find documentation on this, but couldn't find any FAQ addressing this question.

What is the expected behavior when logging into 1Password (client) where the account has Duo MFA and there is no network connectivity?

Will the authentication and authorization be successful without invoking Duo?


1Password Version: Not Provided
Extension Version: Not Provided
OS Version: Not Provided
Browser: Not Provided

Comments

  • ag_max
    edited November 2023

    Hi @ocabj, I'll be happy to assist.

    When your device is without an active internet connection and you unlock the 1Password app previously set up, you'll be able to access your data locally after enter your account password (or unlocking via biometrics). After your device reconnects to the internet you'll be able to authenticate using Duo and access the current set of data within your account. For a brand new 1Password app, you'll need to have an active internet connection to sign in for the first time, and authentication will also be required for the first time setup.

  • ocabj
    ocabj
    Community Member

    Thank you for responding.

    In response to the information provided, is there a distinct difference between 1Password 'locking' itself after X minutes (whatever is defined by the user profile) vs the user using "Sign out..." on the account?

    Or in other worse, if the application locks itself and the user does not have network connection (e.g., mobile phone) and needs to access a secret stored in 1Password, will that person be able to unlock?

  • @ocabj

    Thank you for the reply. Signing out of an account removes that account's data from the app on your device. This action should be performed rarely, such as when you're leaving an organization and no longer need to use your work account.

    Locking the app doesn't remove any data and is different from signing out. Locking the 1Password app simply prevents access to the app and encrypts the data locally on your device. You'll need to enter your account password, or use biometrics, to unlock the app and decrypt your data again. You can read more about auto-lock here: How to set 1Password to lock automatically

    Or in other worse, if the application locks itself and the user does not have network connection (e.g., mobile phone) and needs to access a secret stored in 1Password, will that person be able to unlock?

    Yes they would be able to unlock. You only need internet access when first adding your 1Password account to the app on your device. You can test this by turning on Airplane mode on your device, manually locking 1Password, and then trying to unlock it.

    You can manually lock 1Password on a device like an iPhone by following these steps:

    1. Open and unlock 1Password.
    2. Tap the icon for your account or collection at the top left. (If you’re using an iPad, tap your account or collection at the top of the sidebar.)
    3. Tap Lock.
    4. Then use your account password or biometrics to unlock the app.

    Once the test is done, remember to turn off Airplane mode. Let me know if you have any other questions.

    -Dave

This discussion has been closed.