storage-p
All guides

Two-factor authentication and auto-lock

Two settings harden your account: TOTP two-factor on sign-in, and an auto-lock that wipes the vault key from memory after inactivity. Both live in Account → Security.

Enable TOTP two-factor

  1. Go to Account → Security → Enable TOTP and start the setup.
  2. Scan the QR code with Google Authenticator, 1Password, Aegis or any TOTP app — or enter the secret manually.
  3. Type the current 6-digit code to confirm. From now on sign-in asks for your master password plus a TOTP code.

Configure auto-lock

In Account → Security → Auto-lock choose a timeout: a number of minutes, one hour, or Never. After that much inactivity the vault locks and the vault key is zeroed in memory, so your master password is required to continue.

Run the security audit

The built-in audit flags weak, reused and stale passwords and logins without 2FA. It runs entirely on your device — nothing leaves the browser — so it is safe to run often.