What is the recommended way of managing device passwords when using a password manager?
I use a bitwarden as my password manager, set up on both my phone and laptop, along with ente auth for MFA when websites allow auth apps, but with this:
- I want a secure password for both my devices, but memorizing three different complex passwords (one for each device + master password for password manager) is difficult, and I know I won’t be able to keep track of them
- While biometrics can let me reauthenticate myself on a device, you often have to use the device password at some points, like after updates or restarting it. Since I need a device for both the password manager and the auth app (which I also need to log into my password manager), I can’t reliably use the password manager to store my device passwords
Is there any recommended way of approach this? Besides having three passwords and (optionally?) storing the device ones in the password manager, the only two ideas I came up with are:
- Reusing your master password for device logins. My gut reaction is that this is horrible to do, but since even if my master password is leaked somehow, this wouldn’t give them physical access to my devices to log into them, and without them having access to my devices they wouldn’t be able to use the authenticator app to handle MFA logins
- Using a physical security key as passkey manager for passwordless login. I’d still want to know though how this scenario would be handled if a device doesn’t support initial login via a physical security key passkey/requires a password