Afterconverting most of my team to 1Password, I'm disappointed that there is not a reporting function that can notify the Administrator of Team Member passwords that are weak/vulnerable/repeated/etc.
Even with a strong request from management, users are not very likely to spend time on password review. We cannot rely on users being the party that is responsible for reviewing our corporate risk. Both in the framework of a one-off basis, or on an ongoing basis. There needs to be some visibility on vulnerabilities for the corporate admin.
If you're using 1Password Business, you have access to the Insights section of your account on 1Password.com. This will allow you to review any reused, weak, or compromised passwords, as well as items where two-factor authentication has not been enabled. Clicking on one of the sections will open a list view so your administrative can use Watchtower to make the necessary changes to strengthen your items.
That said, the Insights functionality currently has no reporting into Private vaults, which are only accessible to individual team members, which I understand is presenting a problem for your team. I've shared your feedback with our team internally to continue tracking interest to see if this can be better addressed in the future. Let me know if I've instead misread your concern, and we can regroup from there.
Previous responses have said that it's a "display issue" so that the end user isn't confused where truly private vs. corporate-visible passwords lie. I've presented a solution in that you could just notify us that a user has issues needing addressing, and then the admin could meet with that person to demonstrate the Watchtower capabilities for their private vault.
I'd be happy to discuss further offline, but I thought that the best approach is a public post. I invite others to piggyback this comment and request the feature be added if they think it would be valuable. I've seen this issue several times, and I can't help but feel that it should have already been addressed.
I can definitely understand the frustration, as I realize getting more insight into the password health of team members has been requested for quite some time. This topic is pretty complex in both a technical and security manner. Your feedback is much appreciated and although it may seem like this request is being ignored, our team is still collecting feedback and tracking interest.
In addition to posting in the Community, you and anyone else interested in this functionality are also welcome to send us at
busines...@1password.com using the email associated with your 1Password account to share more feedback and details about your use case and requirements. This will allow the team to better ask follow up questions and share details that may be relevant but better shared privately.
Can you help me with the following challenge? I want to review all (vault) access we have provided to our users in 1Password Business, be it directly or via Group memberships. This is part of our regular User Access Review (UAR) cycle. Is there an easy or best practice way of doing this?
I noticed that there's no report on e.g. group memberships or access grants for vaults, which both would immensely easy this process. Currently I'm going through each vault and group individually to check access but this is quite tedious and gets complicated when access types provided are not straightforward, i.e. with individual rights settings.
Depending on how your account is structured, if you have more vaults than users and groups, it might be worthwhile doing things from a user/group perspective than a vault perspective. Instead of going through each vault in your account and examining which groups and users have access to it, go through the groups and users instead - when you examine these objects, you see what vaults and permissions they have, and it may be quicker to do things that way around.
I'm aware of the option of coming from one side (vaults) or the other (users/groups) and I used both to conduct the UAR . But it's a lot of clicking and going back and forth, so I was hoping I just missed something like an access rights export that would list all vaults with their granted rights and and and esport for all users and the user/group memberships. Especially with the growing number of users and vaults we're expecting in the future, having this kind of structure overview would be helpful.
No problem, @MatthiasDanner! Right now, that's the best way to go about pulling together that information. I'll provide your feedback about such a feature to our engineering teams on your behalf, for their future consideration - you can always ask about features in our forums here, or contact us via our support site (if you want to give details of your specific setup as a use-case for suggestions, for example): -us/
I have been using Bitwarden for about 6 months now. Prior to that I used LastPass (Premium) for many years. And before I went for Bitwarden, I reviewed many password managers. And even after I started using Bitwarden I continued to test 1Password for that potentially being where I would land because of some of its nice features. But now I am done searching/reviewing and will stick with Bitwarden.
What is not talked about below are the functionalities that BOTH PW Managers already have, but mostly the differences of why I chose Bitwarden and where I feel Bitwarden can be improved in key areas. Also, this does not contain things I do not like about 1Password. This is mostly Bitwarden oriented.
1Password has earned a reputation for being one of the best password managers around. It has an easy-to-use and sleek-looking interface, strong end-to-end encryption and interesting integrations on top of its service.
While it lacks a free version, its premium plans offer a ton of value that makes the spend worth it. For those looking for an all-around password management solution, 1Password should definitely be on your list.
1Password data is end-to-end encrypted and utilizes the gold standard AES 256-bit encryption to keep your data secure. It also uses a zero-knowledge approach, which means that only the user has access to their own information.
1Password should also be commended for its commitment to regular security audits done by independent third parties. As of May 2023, 1Password has completed 19 security tests that continually assess its security and features.
In October 2023, 1Password announced that it detected suspicious activity on its Okta instance that it uses to manage employee-facing apps. 1Password said it immediately terminated the activity and emphasized that no user data or sensitive systems were compromised. While that is good news, security incidents like this are important to be aware of.
Overall, 1Password is a secure password manager to use in 2024. Its high-end encryption, zero-knowledge architecture and regular security audits show that it can be a reliable and safe way to securely store logins and passwords.
On top of expected features such as encryption and password sharing, 1Password comes with unique features such as a Watchtower, Travel Mode and dedicated integrations with other services. Find out how to use 1Password here.
These integrations are perfect for users who already have active Fastmail and Privacy subscriptions. While a bundled plan for these services is ideal, having the option to use these services within 1Password is a meaningful value-add.
Authentication is another key aspect of a password manager. It adds an additional layer of security as it requires extra information outside of a username or password before gaining access to your account.
NordPass is a password management solution from well-known software provider Nord Security. It is best for organizations that want tons of subscription options at different time durations. It offers one- and two-year plans for both individual and business users and has a full-fledged free version that allows for unlimited password storage.
For those on a budget, Bitwarden is a top choice. It has a generous free version that allows for unlimited passwords and use on unlimited devices. It also operates on an open-source platform, making it a great solution for users who value transparency and collaboration in their software.
1Password is a worthy password manager that offers high-end encryption, reasonable pricing for its individual subscription and a quality desktop and mobile app experience. Its Travel Mode is a standout and presents a tangible benefit to frequent travelers who want to protect their stored logins on the go.
While I do wish that 1Password had a full free version, its 14-day trial across all its plans is a good enough compromise for those on a strict budget. Its autofill function could also see a bit of improvement. Despite these drawbacks, 1Password is a solid password management solution that I highly recommend most people to try out.
My review of 1Password involved a detailed analysis of its security features, price and real-world performance. I had hands-on experience with 1Password through a 14-day free trial of its Individual Premium plan.
I rated 1Password on everything from its password management features to its pricing based on an internal algorithm to get a rating of 4.3 out of 5 stars. The scoring was based both on 1Password on its own and in relation to other available password managers.
Thanks for signing up! Keep an eye out for a confirmation email from our team. To ensure any newsletters you subscribed to hit your inbox, make sure to add
newsl...@nl.technologyadvice.com to your contacts list.
For most people, a password manager must work on all your devices to be useful. 1Password recognizes that reality and gives you attractive apps to access passwords across multiple platforms. It also has excellent password organization systems, a data breach monitor, and multi-factor authentication. However, 1Password lacks a free service tier and a password inheritance system. It's a very capable app, but you may prefer our Editors' Choice winner, Bitwarden, which is free and provides high-quality, open-source password management.
3a8082e126