So either use auth-anon-layout > main a > bit-icon or auth-anon-layout > main > div > a > bit-icon.
Since version v1.33.0 you can modify the CSS which Vaultwarden previously embedded in the web-vault.
This way it makes it more easier for users to tweak the style and layout or even hide items.
To modify the CSS you need to add a templates directory in your data directory, or provide the correct path via the TEMPLATES_FOLDER environment variable.
Within this directory you need to create another directory called scss which will hold the file(s) for modifying the stylesheet Vaultwarden will serve.
A password manager is great for remembering all your logins, but you still need to keep track of the details for logging into that password manager! Some items to keep tabs on include the account email address, master password, two-step login (2FA) details, recovery codes, and more. vaultwarden
Host your own password manager, Vaultwarden, securely and efficiently. Install Vaultwarden as a Docker container and secure it with Fail2Ban.
some sysadmin • March 9, 2026 2:55 PM
Different tools for different use-cases. My org self-hosts a vaultwarden instance with account recovery auto-enabled. If our admin accounts were to be compromised, it’d be game over for the whole org. (well, provided our SIEM also failed at alerting us that multiple vault recoveries were taking place in a short amount of time)
As a sysadmin responsible for a 300-ish users network I simply cannot afford to have a password manager that does not have central management and most importantly an account recovery feature in case of forgotten passwords.
Our initial rollout was KeepassXC on test users (30 people) and a fourth of them forgot the master password within 2 weeks. At this point I’m either taking a central vault with potential backdoors or I’m ok with letting users store their passwords in a plain text .docx.
In private though KeepassXC all the way.
The Bitwarden vision is to imagine a world where no one gets hacked. We carry this forward in our mission to help individuals and companies manage their sensitive information easily and securely. Bitwarden believes that:
Basic password management for individuals can and should be free. We provide just that, a basic free account for individuals.
Individuals and families should take an active role in their security using TOTPs, emergency access, and other supporting security features.
Organizations can greatly improve their security profile through organizational password management and secure sharing.
Clone the item back to your individual vault by using the Options menu to select Clone. This can be done from the Admin Console or, if you are an Owner, Admin, or have Manage collection access to the collection the item is kept in, it can also be done from your Vaults view.
Delete the item from the organization vault by selecting Delete from the Options menu.
This guide covers the Bitwarden approach to onboarding and succession planning for members of your organization, starting with our approach to the relationship between members and organizations, then covering the simplest use-cases for onboarding and succession, and finally and moving on to the levers and options at your disposal to fit Bitwarden to your needs.
Store and sync passkeys in Bitwarden
To log into websites and other apps, store your passkeys in your secure Bitwarden vault, which gets synced anywhere you go. https://vimeo.com/880292801?fl=pl&fe=vl
Also available in beta, Windows 11 integrates with the Bitwarden desktop app to store and use passkeys natively with other applications.
Securely access your vault with a passkey
Use a passkey to sign into the Bitwarden web app and browser extension to streamline authentication, while using WebAuthn PRF passkey technology for secure vault encryption.
https://player.vimeo.com/video/887354174?h=87c13cfdeb
So, are passkeys shareable? The short answer is yes, when managed properly. Read on to learn more about passkeys, how they differ from passwords, and how teams and families can share passkeys without compromising security.
The Bitwarden web app provides the richest Bitwarden experience for personal users and organizations. Many important functions such as setting up two-step login or administering an organization must be done from the web app.
This article describes how to format .csv and .json files for importing into Bitwarden. The formats are identical to Bitwarden vault exports. To select a file type and format, determine the destination vault and which item types you need to import:
Format your file based on whether you're importing to an individual or organization vault.
Bitwarden .csv files only include logins and secure notes. If you need to also handle identities and cards, use a .json file.
As a benefit to employees, Enterprise organizations can offer sponsorships for free Families organizations. Sponsored families organizations allow users to securely share personal credentials with up to five family members or friends, encouraging good security habits at home as well as at work.
Contrary to what password managers say, a server compromise can mean game over.
Emergency access allows users to designate and manage trusted emergency contacts, who can request access to their vault in cases of emergency.
Security is constantly evolving. Today, a new in-depth security report is available, continuing the Bitwarden commitment to transparency and trusted open source security. The audit, conducted by the prestigious Applied Cryptography Group at ETH Zurich, proactively tested Bitwarden core cryptography operations against the hypothetical event of a maliciously compromised server. All issues identified in the report have been addressed by the Bitwarden team and have been included in the attached cryptography report for full transparency.
Bitwarden was selected for analysis by ETH Zurich primarily due to its open source architecture, where code is available to the public on GitHub for inspection, auditing, and contribution. With this model, the world's leading academic researchers and professional minds, like the ETH Zurich Applied Cryptography Group, can stress-test Bitwarden infrastructure and code with penetration testing and security audits.
Academics say they found a series of flaws affecting three popular password managers, all of which claim to protect user credentials in the event that their servers are compromised.
The team, comprised of researchers from ETH Zurich and Università della Svizzera italiana (USI), examined the "zero-knowledge encryption" promises made by Bitwarden, LastPass, and Dashlane, finding all three could expose passwords if attackers compromised servers. //
As one of the most popular alternatives to Apple and Google's own password managers, which together dominate the market, the researchers found Bitwarden was most susceptible to attacks, with 12 working against the open-source product. Seven distinct attacks worked against LastPass, and six succeeded in Dashlane.
Welcome to the family! This course shows you how to use your Bitwarden account, access items shared by your Family Admin, and keep your personal passwords organized and secure.
Vaultwarden is an unofficial Bitwarden server implementation written in Rust. It is compatible with the official Bitwarden clients, and is ideal for self-hosted deployments where running the official resource-heavy service is undesirable.
Vaultwarden is targeted towards individuals, families, and smaller organizations. Development of features that are mainly useful to larger organizations (e.g., single sign-on, directory syncing, etc.) is not a priority, though high-quality PRs that implement such features would be welcome.
There have been several audits done on Vaultwarden of which some are publicly available, read more about it on our Vaultwarden Audits wiki page.
Supported features