Will the Norton Password Manager ever incorporate standard security features we’ve come to expect from most password managers such as Two-Factor codes & Passkeys?
1 Like
Two factor identification is already a feature for loging into your Norton account and since that login is required before the vault password then it is an integral part of password manager login.
As for passcodes that are stored on your device it would be a vulnerability if someone stole your phone.
Two factor is not a feature for any type of login and is only applicable to your norton account. This isn’t good enough.
Passkeys are much more secure as the intruder would need to have the physical device in order to pass authentication, making their remote attempts less successful.
@sushicombo Have you reviewed this Norton article? Your Norton account DOES indeed support 2F2 as you stated.
Password manager uses your account login, and its 2F2 to first verify who you are. Please review the below information,.
AI Overview
[image]
Norton Password Manager login with 2FA requires you to first log in to your Norton account using your email and password, then provide a verification code from a chosen 2FA method. This adds an extra layer of security beyond just your password.
[image]
Here’s a breakdown of the process:
- Norton Account Login: You’ll need to log in to your Norton account, which uses 2FA.
- Verification Code: After entering your email and password, you’ll be prompted to enter a verification code. This code can be received through:
- Mobile authenticator app: Scan a QR code with an authenticator app (like Google Authenticator) to get the code.
- SMS or voice call: Receive a code via text message or phone call.
- Password Manager Login: Once you’ve successfully logged into your Norton account with 2FA, you can then access your Norton Password Manager vault. If you remain logged into your Norton account on the same device, subsequent logins to the vault may only require your vault password.
Although I do not work for Norton, I can give what I believe would be a logical view of what Norton may be thinking about adding passkey support. Will Norton ever support passkeys in their current format? Probably not, because, they CAN use a secondary website to validate the keys. Although websites are not specifically required for passkeys. Norton as it should would regard that as an additional security issue to their products. Passkeys and facial, biometric and PINS would make having a PWM essentially useless.
SA
You’ve misread my post. I am not talking about TOTP for my Norton account, I’m specifically talking about TOTP on individual 3rd party accounts created via Norton Password Manager
for example: Bitwarden Authenticator here
I’m aware of separate authenticators, the suggestion is to include the TOTP fields directly from the PWM itself, most of them already include this as a standard (1Password,Bitwarden,Keypass etc)
Bitwarden Authenticator here is integrated or dedicated app.
Caveat: I run Bitdefender Premium integrated authenticator.
Integrated authentication generates six-digit [time-based one-time passwords (TOTPs) using SHA-1 and rotates them every 30 seconds.
Not at all related to the suggestion.
Respectfully, disagree.
1 Like
For a Guru, you sure don’t know how to read lol.
Your opening post read, to me, like you want Norton Password Manager to include an integrated authenticator.
Do you want Norton Password Manager to include an integrated authenticator?
Correct, much like every other standard PWM have today. It’s not a difficult request to comprehend.
Thanks for confirming my basic understanding of your opening post.
If you know how to read you’d understand that including this field should be standard, Unfortunately you don’t seem very knowledgable in this area.
Okay…educate me.
Norton Password Manager is free. What free password manager offers an integrated authenticator?
Bitwarden Authenticator here offers an integrated or dedicated authenticator app.
You are dense. I’m not looking at a bitwarden authenticator.
Okay…educate me.
Norton Password Manager is free. What free password manager offers an integrated authenticator?
Keypass includes this and it’s free.
Does 1Password or Bitwarden offer free password manager with integrated authenticator?
AI Overview
1Password does not have a permanently free version. However, it does offer a 14-day free trial for all its subscription tiers. This trial allows users to explore all the premium features of 1Password before committing to a paid plan.
While some other password managers offer free versions with limited features, 1Password focuses on providing a comprehensive trial period to showcase its full functionality.
AI responses may include mistakes.
============================================
Oh okay. I’ve not run KeePass for a while.
AI Overview
KeePass has built-in TOTP (Time-based One-Time Password) functionality, meaning it can act as an authenticator for services that support two-factor authentication (2FA) using TOTP. KeePass can store TOTP secret keys and generate the corresponding one-time passwords, eliminating the need for a separate authenticator app.
- Security Considerations:
While convenient, it’s crucial to understand that storing TOTP keys alongside passwords in the same KeePass database may pose a security risk if your database is compromised. It’s recommended to use separate KeePass databases or files for storing passwords and TOTP keys, or to use a different, dedicated authenticator app for sensitive accounts.
AI responses may include mistakes.
================================================
Caveat: Bitwarden Premium is my daily rider…and Aegis Authenticator.