DocsUser GuideManaging Passwords

Managing Passwords

Create, organize, autofill, and rotate credentials with bervice. This guide covers the password generator, TOTP/2FA, sharing, security checks, and incident response.

Quick Start

  1. Press NNew Login, enter title, URL, username.
  2. Click Generate to create a strong password or passphrase.
  3. Optionally add TOTP by scanning the site’s QR or pasting otpauth://.
  4. Save → assign to a Space and add tags for organization.
  5. Install a browser extension for autofill and auto-save prompts.

Password Generator

  • Random mode: 16–24 chars, include digits & symbols.
  • Passphrase: 4–6 words with separators; easy to type, strong entropy.
  • Per-site rules: limit symbols, require specific length, avoid ambiguous chars.
  • Generator can fill directly into focused fields in the browser.

See Browser Extensions.

Security Policies

  • Enable Auto-lock and Biometric unlock in Settings → Security.
  • Use unique passwords for every site; the audit flags reuse/weakness.
  • Store recovery codes separately from logins; keep an offline copy.

Organization

  • Group by Spaces (Personal, Work, Project…)
  • Add Tags like #finance, #dev
  • Pin favorites for quick access

Search

  • Global search (Ctrl/ + K) across titles, URLs, notes
  • Filters: space, tag, type, last updated
  • Open in side panel for safe preview

Imports

  • Use CSV/JSON or encrypted archives; items are re-encrypted locally
  • Run Tools → Find Duplicates after import
Import/Export Options

Autofill with Browser Extensions

  • Unlock desktop app → extension mirrors unlock state
  • Edit login → add exact domain/subdomain for precise matching
  • Disable other managers to avoid duplicates
  • Use inline generator on sign-up pages
  • Approve Save to bervice prompts after logins
  • Shortcut: Ctrl/ + Shift + K to open extension

Troubleshooting? See Password Management Issues.

Add TOTP (2FA)

  1. Open a login → Add TOTP
  2. Scan the site’s QR or paste otpauth:// URI / base32 secret
  3. Verify a code to finish binding

Enable automatic time sync on all devices to avoid invalid codes.

Backup & Recovery

  • Store site-provided recovery codes in a separate secure note
  • Keep an offline copy (printed or USB)
  • Never share TOTP seeds or backup codes

Sharing Credentials Safely

  • Share the item inside a Team Space; do not send plaintext
  • Use Can edit for maintainers; Viewer otherwise
  • Revoke access by removing from the shared space

Rotation & Hygiene

  • Use Security Audit to find weak/reused passwords
  • Rotate after role changes or suspected exposure
  • Schedule periodic reviews via Tasks

If a Password May Be Compromised

  1. Rotate the password immediately with the generator
  2. Invalidate active sessions/devices on the affected site
  3. Enable/refresh TOTP and update recovery codes
  4. Audit where the same credentials were reused and rotate
  5. Document the incident in a secure note or ticket

Dashboard Overview

Security audit & quick actions.

Browser Extensions

Autofill & generator.

Troubleshooting

Unlock, imports, TOTP.

Previous

Dashboard Overview

Next

Adding Passwords