Password, 2fa, and their backups management, need critique!

To me his approach / setup is rather simple, it is basically KeePassXC + Aliasing + MFA, password generation and expiry and TOTP are built in functions. Syncing is simple enough (just any clouds), Passkey is optional.

An inherited friction point for Syncing database through encrypted clouds rather than NAS like synology, is that when you access via Android (not sure about IOS), the phone will keep a cache and open the same cache over and over again, rather than opening the latest version.

So personally I prefer using personal NAS to sync across devices, and Cloud will be used as a backup only.

Really? Simpler than what I have suggested? I’m not even sure that’s objectively true but this is a subjective matter so I guess I understand. Though I personally cannot see why.

I am not saying @kissu’s approach is “simpler" than yours, I am simply saying it is simple.

I personally wont rely on cloud based password managers due to their past incidents. There is nothing wrong with your approach, it is just my preference.

But I dont mind having a online backup.

Thank you for clarifying. I was confused there was a second.

Very similar to my approach but I keep all my passwords in Bitwarden and memorise two, bitwarden and my authenticator app.

My backup for bitwarden is my emergency contact, one emergency being if I forget my password!

My authenticator provides encrypted backups so it doesn’t matter where I store them (they go in the cloud).

I don’t favour the idea of written passwords not least because I’m just as likely to forget where I put them as forget the passwords themselves.