I’ve used Bitwarden as my password manager and authenticator for a long time. I’ve been testing Pass and I really like it overall.
But the thing I realized is that in order to sign in to my Proton account, I need to provide an OTA code. No problem when I’m using a separate password manager/authenticator. But when Pass is my authenticator I don’t have access to the OTA code (if I were to log out of all devices).
What are others doing in this situation?
I use Aegis as my 2FA for Proton and have my password memorized. Everything else, including all other 2FAs are in Proton Pass
Aegis is fine but you need to make sure you have a super reliable backup because losing your 2FA codes is an absolute nightmare. Losing dozens of them, you’re going to spend weeks on the phone/emailing people to get access to your accounts and the solution is usually sending them pics of your ID.
You can export an encrypted backup from Aegis as a JSON, then just zip and encrypt that if you’re really worried. You can import the same thing to the Proton 2FA app.
It’s “Proton Pass”, not “Pass”. The latter will lead to great confusion.
I use Ente Auth for all TOTP. It’s free, encrypted, and actually provides the codes for the next cycle so you don’t have to stare at it for 5 seconds waiting for it to tick over.
If you have your passwords and TOTP in the same place then you have no 2FA.
