Bitwarden Authenticator is a standalone app that is available for everyone, even non-Bitwarden customers.

In its current release, Bitwarden Authenticator generates time-based one-time passwords (TOTP) for users who want to add an extra layer of 2FA security to their logins.

There is a comprehensive roadmap planned with additional functionality.

Available for iOS and Android

      • Scrollone@feddit.it
        link
        fedilink
        English
        arrow-up
        4
        ·
        8 months ago

        I use my Microsoft account with a standard OTP app, you don’t need their own app.

          • sugar_in_your_tea@sh.itjust.works
            link
            fedilink
            English
            arrow-up
            1
            ·
            8 months ago

            Is that a thing? Usually those have a fallback to a regular TOTP code.

            I use Okta for work because we integrate SSO with it everywhere, but I could technically enter a code every time and swap out the Okta app for the other TOTP app I use.

            My company is a MS shop, but they use TOTP as the second factor, and even that is optional. My department uses Okta, which is a completely separate system (we’re a weird, separate unit entirely from most of the rest of the company).

        • 0x0@programming.dev
          link
          fedilink
          English
          arrow-up
          1
          ·
          8 months ago

          I did too until it kept rejecting my tokens frequently - changing to M$ Authenticator “solved” it.

          • sugar_in_your_tea@sh.itjust.works
            link
            fedilink
            English
            arrow-up
            2
            ·
            edit-2
            8 months ago

            They must now require HOTP or something now. TOTP doesn’t care what machine it’s on, whereas HOTP does (well, you could spoof it if you really wanted).

      • sugar_in_your_tea@sh.itjust.works
        link
        fedilink
        English
        arrow-up
        2
        ·
        8 months ago

        They’re probably using HOTP or something else, not TOTP. TOTP is literally just the key + any clock. Or maybe it’s the “click button to authenticate” and not the “enter code to authenticate,” which might not be HOTP or TOTP, but something else entirely (e.g. Steam’s system is neither AFAIK).

        If it’s TOTP, you just need to get the key and can use any authenticator app.