Bitwarden PIN Security

TL;DR

This guide explains how Bitwarden’s PIN protection works and how to set it up for enhanced security, especially on mobile devices. It covers enabling the PIN, understanding its behaviour, and troubleshooting common issues.

1. What does the Bitwarden PIN protect?

The Bitwarden PIN isn’t a replacement for your Master Password. Instead, it adds an extra layer of security on top of it, primarily when accessing your vault on mobile devices. Specifically, it protects:

• Auto-fill: Prevents auto-filling logins without the correct PIN.
• Copy/Paste: Stops copying usernames and passwords to your clipboard without the PIN.
• View Vault: Requires the PIN before you can see your saved items in the app.

On desktop, it mainly protects auto-fill.

2. Enabling the Bitwarden PIN

1. Open the Bitwarden App: Launch the Bitwarden application on your mobile device (iOS or Android).
2. Navigate to Settings: Tap the ‘Settings’ icon (usually a cogwheel) in the bottom navigation bar.
3. Select Security: Find and tap on the ‘Security’ option within settings.
4. Enable PIN Protection: Toggle the switch next to ‘PIN Protection’.
5. Create Your PIN: You’ll be prompted to enter a 4-digit (or more, depending on your device/settings) numeric PIN. Confirm it by entering it again.

Bitwarden will then ask you to confirm the PIN works before saving it.

3. Understanding PIN Behaviour

• PIN Timeout: After a period of inactivity (default is 5 minutes, configurable in settings), Bitwarden will automatically lock and require the PIN again.
• Failed Attempts: Too many incorrect PIN attempts will temporarily lock you out. The lockout duration increases with each failed attempt.
• Master Password Recovery: If you forget your Master Password, the PIN cannot be used to recover it. You’ll need access to your recovery method (e.g., recovery key).

4. Changing Your PIN

1. Navigate to Security Settings: As in step 2, go to ‘Settings’ -> ‘Security’.
2. Change PIN: Tap the ‘Change PIN’ option.
3. Enter Current PIN: You’ll be asked for your existing PIN.
4. Set New PIN: Enter and confirm your new PIN.

5. Disabling Your PIN

1. Navigate to Security Settings: Go to ‘Settings’ -> ‘Security’.
2. Disable PIN Protection: Toggle the switch next to ‘PIN Protection’ to turn it off.
3. Confirm: You may be asked to confirm your Master Password before disabling the PIN.

6. Troubleshooting Common Issues

• Forgot Your PIN: There is no way to reset a forgotten Bitwarden PIN directly. If you have enabled recovery key, use that to restore access and then change your Master Password (which will require setting a new PIN).
• PIN Not Working: Ensure you are entering the correct PIN. Check for Caps Lock if using a keyboard. Repeated failed attempts may cause a temporary lockout – wait for the timer to expire.
• Auto-fill Still Works Without PIN: Verify that ‘Enable Auto-fill’ is enabled in your Bitwarden settings and that the PIN protection setting is still active. Restarting the app can sometimes resolve this issue.