- cross-posted to:
- privacyguides@lemmy.one
- technology@lemmy.world
- cross-posted to:
- privacyguides@lemmy.one
- technology@lemmy.world
Bitwarden Authenticator is a standalone app that is available for everyone, even non-Bitwarden customers.
In its current release, Bitwarden Authenticator generates time-based one-time passwords (TOTP) for users who want to add an extra layer of 2FA security to their logins.
There is a comprehensive roadmap planned with additional functionality.
Available for iOS and Android
No import? No scan qr code from image?
No export either, just Google Backups.
Also the feature roadmap looks bad. They don’t plan to add any of the features you’d expect from a standalone 2FA app, they just plan to sync with Bitwarden and eventually integrate completely with Workforce. So it looks like a bait and switch with no way to get your codes out.
Aegis is waaaay better
I wish it had a desktop app. Id switch to it instantly.
Hell yeah, I find Mauth as ditto to it.
Is there a FOSS 2FA app that syncs between Linux, MacOS and Android (using a self-hosted Server)?
Ente Auth.
Aegis? I use that
I don’t know about Mac OS but Bitwarden syncs just fine to my Android and Linux devices from my server.
Are you talking about the Bitwarden app mentioned here for 2FA specifically (because apparently it’s not very good) or the Bitwarden/Vaultwarden (backend) password managers (which are great)?
Bitwarden and Vaultwarden
What’s wrong with Aegis?
What’s wrong with alternatives?
Nothing, but this particular alternative is pretty awful. Literally zero features besides TOTP code generation, and they don’t plan to make it better. I really don’t understand why this app exists.
The only people who would possibly care about it is existing Bitwarden users who want to use it to hold the code for their Bitwarden account independently from account. But they say they plan to add Bitwarden sync to it so?..
Honestly it just looks like a super lazy attempt to draw people to Bitwarden (assuming it doesn’t turn into a sleazy attempt of holding codes captive with no way to get them out).
You can have synced authentication right now on their password manager, so unless they remove features I don’t think they will remove the waybto export codes from bw.
Weird. If I copy the TOTP code from bitwarden into their 2fa app I get different codes. Not even after a rotation ( one isn’t ahead of the other ). That doesn’t seem right :/
TOTP is a defined standard, specifically RFC 6238.
But I still have 3 different apps on my phone so that I can get on to various customer VPNS. 🤷♂️Because they use proprietary algorithms not TOTP.
Wait - so far its only the Microsoft MFA code that does it.
Microsoft MFA has the option of being set up (by admins) with either standard TOTP or with their proprietary algorithm.
If the admins for the realm you’re trying to use have chosen the proprietary one you need to use the Microsoft Authenticator app. Regular TOTP generators will accept the code but the code they make won’t work.
Can the regular Bitwarden generator make good codes? If so, it means they figured out (or were told by Microsoft) how the proprietary algorithm works. But since this standalone app is open source they couldn’t add that algorithm to it.
My main issue is that if I add the bitwarden TOTP secret string manually multiple times its generating different codes between the entries. Which seems like something that shouldn’t happen.
It is a different format to the other ones I’ve got though.
Fuck Microsoft authenticator though. Had to restore it to a new phones once and if you don’t do it on initial startup you can’t restore it at all. Good thing I had a secondary app that still had them. Absolute garbage.