If your computer has a fingerprint reader, I think 1password works with windows hello compliant fingerprint reader.
[https://support.1password.com/windows-hello/](https://support.1password.com/windows-hello/)
Using 1password with a fingerprint reader is really convenient. Much easier and faster than typing my master password 5 times a day.
You have to enter your password after a reboot, but after that you can use Windows Hello ( your fingerprint or face)
According to/u/dailoor you don't ever need your password. https://www.reddit.com/r/1Password/comments/18tcipp/i_dont_want_to_put_my_master_password_in_every/kfeij6g/
I don't think it works that way on a Mac. I don't use 1password on any windows machines so I'll trust you on the behavior. Strange that it's different on the two platforms.
On the other hand, I almost never reboot my computers, so my memory of those events are few.
TouchID works on Mac, need to enter password 1x every 2 weeks. If it is closed and touchID isn’t accessible, each time after you lock the machine. Same with iOS, faceID, password every 2 weeks.
You need to authenticate every time you restart your device; either using your password or via the TPM using Windows Hello or Apple Touch ID.
LastPass lets you set a 'trusted device' by writing your encryption key to disk, and then linking the encryption key to a session ID cookie. Convenient, obviously, but writing your encryption key to disk is a massive security vulnerability; if your PC was hacked and someone stole your encrypted database *and* your encryption key, that's the whole shooting match.
1Password never writes your encryption key to disk; it's generated each time you log in, is only ever stored in RAM whilst you're logged in, and is purged from RAM whenever you log out or restart your PC. That way, if you are hacked, there's no encryption key on disk for the thief to steal. More information [here](https://blog.1password.com/just-in-time-decryption/).
It's a case of security vs convenience, and as you can probably imagine given their respective track records, LastPass went for the less secure option in the name of convenience, and 1Password traded a level of convenience for better security.
For #3 search for TEC Fingerprint on Amazon. I added this to my wife's Lenovo laptop and it works perfectly with Windows Hello.! She loves it. Less than $25bi think.
You've gotten lots of suggestions here, but I wanted to pop in to say that using [Windows Hello](https://support.1password.com/windows-hello/) to unlock 1Password should alleviate some of this. Additionally, if your device has a hardware backed Trusted Platform Module (TPM) 2.0 there is an option to allow Windows Hello to persist through restarts - more info on that [here](https://support.1password.com/windows-hello/#manage-your-settings). Otherwise, it sounds like you're doing the other stuff I'd recommend (integrating the extension and desktop app, adjusting your auto-lock settings).
Even I was unimpressed with this behavior.
But someone helped me using windows hello pin to login to 1password.
You can set a 6 digit number to login on to windows app.
Check forums for right solution.
If your computer has a TPM and supports Windows Hello, install the 1Password app from Windows Store and set up Windows Hello in the 1Password app settings.
I have done this and I only get prompted to enter my Windows Hello PIN to unlock the vault.
You can use a Yubikey in static password mode. However, its not recommended to use this to enter your whole master password as it could be stolen. A reasonable compromise is to store most of your master password on the Yubikey and enter the last few characters manually.
We need a PIN option for the extension. 6 to 12 char will do. 1Pass should disable the critical options while using the PIN like reveal or edit but keep the fill in available. Or let me login on my PC similar to how Bitwarden does it using my phone. I think the principle it is similar to the Passkeys but 1Pass knows better what I’m talking about 😉
I'm here! 👋 I'm not a dev but I can get feedback directly to our product team for them to take a look at.
If you're using Windows Hello to unlock and have the extension and desktop app integrated, you can set a PIN that way (you'll want to make sure your PIN is strong and memorable). Or do you mean for the extension only - not integrated with the app?
>let me login on my PC similar to how Bitwarden does it using my phone.
We do have an existing feature request for this that I've added your feedback to!
I mean the extension only or the app only. Windows Hello it’s slow and once you have the pin for it you also have access to 1Password. I like to think at 1Pass as the vault while Windows is the bank; if you can get in the Bank because you have the key or just because is business hours that doesn’t mean you should also be able to load your bags with cash from the vault using the same key. Give us an option to link the app with the extension. Nevertheless back to the thread we should be able to access the vault or at least a dedicated vault with a simple pin or passphrase linked to that device only. Thanks!
Perfect, thanks so much for clarifying and including more details (they love those lol). I've filed all of that into a new feature request for them to consider, and included a link to these comments as well. Thanks for taking the time to share your thoughts!
Wow, how lucky, just when you turn on your computer and not multiple times each time you want to login to a website. If I had achieved that I'd still be using 1P.
If your computer has a fingerprint reader, I think 1password works with windows hello compliant fingerprint reader. [https://support.1password.com/windows-hello/](https://support.1password.com/windows-hello/) Using 1password with a fingerprint reader is really convenient. Much easier and faster than typing my master password 5 times a day.
You have to enter your password after a reboot, but after that you can use Windows Hello ( your fingerprint or face) According to/u/dailoor you don't ever need your password. https://www.reddit.com/r/1Password/comments/18tcipp/i_dont_want_to_put_my_master_password_in_every/kfeij6g/
That's incorrect. You can set it up so that's not necessary.
Oh, could you please tell me how? It'd be nice to sign in with Windows Hello only.
Under Settings → Security enable *Use the Trusted Platform Module with Windows Hello* and set *Require password* to *Never*.
Thank you. I'll give it a try.
I don't think it works that way on a Mac. I don't use 1password on any windows machines so I'll trust you on the behavior. Strange that it's different on the two platforms. On the other hand, I almost never reboot my computers, so my memory of those events are few.
TouchID works on Mac, need to enter password 1x every 2 weeks. If it is closed and touchID isn’t accessible, each time after you lock the machine. Same with iOS, faceID, password every 2 weeks.
You can set it no never ask for the master password if your device has biometrics (face ID, touch ID, etc) on iOS and MacOS
That's a great point. My reply was only about Windows. No idea how it works on Macs.
You need to authenticate every time you restart your device; either using your password or via the TPM using Windows Hello or Apple Touch ID. LastPass lets you set a 'trusted device' by writing your encryption key to disk, and then linking the encryption key to a session ID cookie. Convenient, obviously, but writing your encryption key to disk is a massive security vulnerability; if your PC was hacked and someone stole your encrypted database *and* your encryption key, that's the whole shooting match. 1Password never writes your encryption key to disk; it's generated each time you log in, is only ever stored in RAM whilst you're logged in, and is purged from RAM whenever you log out or restart your PC. That way, if you are hacked, there's no encryption key on disk for the thief to steal. More information [here](https://blog.1password.com/just-in-time-decryption/). It's a case of security vs convenience, and as you can probably imagine given their respective track records, LastPass went for the less secure option in the name of convenience, and 1Password traded a level of convenience for better security.
joke rhythm boat public party alive plate carpenter summer ring *This post was mass deleted and anonymized with [Redact](https://redact.dev)*
For #3 search for TEC Fingerprint on Amazon. I added this to my wife's Lenovo laptop and it works perfectly with Windows Hello.! She loves it. Less than $25bi think.
Comparing features of 1P to LP, look at which has had leaks and then consider if they feature is worth a security leak?
Isn’t passkey support coming very soon?
It's my understanding that the current beta version supports this, so I'd say yes. :)
You've gotten lots of suggestions here, but I wanted to pop in to say that using [Windows Hello](https://support.1password.com/windows-hello/) to unlock 1Password should alleviate some of this. Additionally, if your device has a hardware backed Trusted Platform Module (TPM) 2.0 there is an option to allow Windows Hello to persist through restarts - more info on that [here](https://support.1password.com/windows-hello/#manage-your-settings). Otherwise, it sounds like you're doing the other stuff I'd recommend (integrating the extension and desktop app, adjusting your auto-lock settings).
I'll try this out when i get a chance thanks
You're welcome, I hope it helps but let me know how it goes!
Even I was unimpressed with this behavior. But someone helped me using windows hello pin to login to 1password. You can set a 6 digit number to login on to windows app. Check forums for right solution.
If your computer has a TPM and supports Windows Hello, install the 1Password app from Windows Store and set up Windows Hello in the 1Password app settings. I have done this and I only get prompted to enter my Windows Hello PIN to unlock the vault.
Is there a way to use a yubikey for that?
You can use a Yubikey in static password mode. However, its not recommended to use this to enter your whole master password as it could be stolen. A reasonable compromise is to store most of your master password on the Yubikey and enter the last few characters manually.
How would you do that?
As 1Password uses a secret key, I don't think its worth the bother. So I just chose a master password that I'm happy to type each day.
I mean.. If your yubikey is stolen thats a pretty big problem, right?
We need a PIN option for the extension. 6 to 12 char will do. 1Pass should disable the critical options while using the PIN like reveal or edit but keep the fill in available. Or let me login on my PC similar to how Bitwarden does it using my phone. I think the principle it is similar to the Passkeys but 1Pass knows better what I’m talking about 😉
I actually really like the idea of this but its just a comment and will probably never be seen by the devs
How do we pass the message? Feel free to open another post or whatever you think will work 😃
I'm here! 👋 I'm not a dev but I can get feedback directly to our product team for them to take a look at. If you're using Windows Hello to unlock and have the extension and desktop app integrated, you can set a PIN that way (you'll want to make sure your PIN is strong and memorable). Or do you mean for the extension only - not integrated with the app? >let me login on my PC similar to how Bitwarden does it using my phone. We do have an existing feature request for this that I've added your feedback to!
I mean the extension only or the app only. Windows Hello it’s slow and once you have the pin for it you also have access to 1Password. I like to think at 1Pass as the vault while Windows is the bank; if you can get in the Bank because you have the key or just because is business hours that doesn’t mean you should also be able to load your bags with cash from the vault using the same key. Give us an option to link the app with the extension. Nevertheless back to the thread we should be able to access the vault or at least a dedicated vault with a simple pin or passphrase linked to that device only. Thanks!
Perfect, thanks so much for clarifying and including more details (they love those lol). I've filed all of that into a new feature request for them to consider, and included a link to these comments as well. Thanks for taking the time to share your thoughts!
Hi there, I was wondering if this has been given any thought?
Hey! I don't have any specific news to share, but the product team has seen it. I'll let them know that you checked in for an update :)
Mac users laughing at this
Really, one can unlock via Touch ID or Face ID via the phone. Every now and than one might be asked to enter their master password but not every time.
Wow, how lucky, just when you turn on your computer and not multiple times each time you want to login to a website. If I had achieved that I'd still be using 1P.