Create and/or store MFA codes in ESET Password Manager

[rgmorrisaz 0]

I am testing ESET Password Manager and really enjoy the features so far. However for sites/apps that require an MFA code is there a way to store these inside of the Password Manager account for the site/app? Or is this perhaps a feature being considered in a future update? An example of this feature would be seen in other password manager apps such as Keeper Security, MYKI, 1Password, etc. Thanks for any information you could provide.

[Marcos 5,074]

Not sure if I'm missing something but OTP even at a particular website is always different so storing it would not make sense.

[rgmorrisaz 0]

Hi Marcos, thanks for your reply. I believe the other password managers I mentioned utilize a secret key, encrypted of course, to store the authorizations. It's an extremely useful feature that keeps one from having to constantly switch between apps. Let me know if that doesn't make sense. 

[peteyt 393]

2 hours ago, rgmorrisaz said:

I am testing ESET Password Manager and really enjoy the features so far. However for sites/apps that require an MFA code is there a way to store these inside of the Password Manager account for the site/app? Or is this perhaps a feature being considered in a future update? An example of this feature would be seen in other password manager apps such as Keeper Security, MYKI, 1Password, etc. Thanks for any information you could provide.

 

2 hours ago, Marcos said:

Not sure if I'm missing something but OTP even at a particular website is always different so storing it would not make sense.

I believe what the user is meaning is using the password manager as an authenticator. Found this for 1Password https://support.1password.com/one-time-passwords/

What this basically seems to suggest is with some password managers you can use the app to also show the 2FA codes, similar to the Google Authentication App. I myself use an app called Authy for this.

This is an interesting idea but not sure what i think as having your passwords and the authentication tokens in the same place could also be risky 

[rgmorrisaz 0]

Yes, peteyt is spot on. This is exactly what I am checking on to see if ESET Password Manager supports, or plans on supporting in the future, storing and using OPT/2FA/Biometric tokens (in an encrypted fashion). References provided below for two other vendors which I use. From what I can tell in my testing today ESET Password Manager does not seem to provide this feature. If so perhaps I am just overlooking it?

Reference (Keeper): https://docs.keeper.io/user-guides/tips-and-tricks/protecting-totp-codes

Reference (MYKI): https://myki.com/app/features/autofill-2fa

 

[peteyt 393]

2 hours ago, rgmorrisaz said:

Yes, peteyt is spot on. This is exactly what I am checking on to see if ESET Password Manager supports, or plans on supporting in the future, storing and using OPT/2FA/Biometric tokens (in an encrypted fashion). References provided below for two other vendors which I use. From what I can tell in my testing today ESET Password Manager does not seem to provide this feature. If so perhaps I am just overlooking it?

Reference (Keeper): https://docs.keeper.io/user-guides/tips-and-tricks/protecting-totp-codes

Reference (MYKI): https://myki.com/app/features/autofill-2fa

 

I should also note that Eset's password manager is not actually developed by Eset or is at least based on another companies product. It previous used StickyPassword but can't remember who it uses now or if Eset adds its own stuff to it. So I presume it probably depends on what the original developer plans. 

I should note this seems to be a common practise for AVs and is no reason to be concerned. As far I'm aware this is the only feature not developed in house