I just migrated. And realized that I can't separate my password manager from my email account password. Which just feels like an incredible oversight on the development teams part. I'm very thankful for an incredible password manager like this but there really should be separation between this and email. Or this and the rest of the Proton ecosystem. The goal here is to be secure. Reduce the attack surface. Not expand it.

This is what I wanted. Not an extra password that was released recently.

As an addendum to my comment about allowing direct login into Proton Pass using a passKEY, I think allowing direct login using a 6-digit TOTP (generated by a third-party authenticator app like Duo Mobile or Authy) would also be a viable option. I would still avoid allowing direct login into Proton Pass with nothing but a single passWORD because then literally anyone with Internet access would in principle be able to breach your Proton Pass account, as opposed to only someone who has access to your biometric data (in the case of a passkey) or at the very least your smartphone (in the case of an authenticator app-generated TOTP).

@Proton, thank you for working so diligently on the Pass product, releasing and shipping new features so promptly. It really is awesome!

I just request that when you consider this ticket's upvote count in your feature-planning process, please add about 2000 to it. That number is from this ticket's parent (#46727686) which got reworked into something else entirely, but whose upvotes were really for what THIS ticket is now proposing.

I hope you agree that's only fair to the community and their valued votes.

I was really happy when I saw they implemented separate password so I can finally migrate from BitWarden, but to my surprise they added additional password instead of a separate one!

Please Proton, listen to your community here and let us have a separate password that we can use to login only into Proton Pass and skip regular proton account password completely.

I would support this only if you would be logging directly into Proton Pass with a passKEY (which most browsers and mobile devices now support natively, meaning that the passkey would not need to be stored inside Proton). Quantum computing is going to radically change the security of conventional static passWORDS; as such, I think having only a single static passWORD (that has to be short enough that you can remember it in your head) protect *all* of the credentials stored in Proton Pass would be a significant security liability, especially considering that Proton Pass is accessible online and is thus attackable by anyone who knows or can guess your username.

Personally, I use two-password mode coupled with a 2FA authenticator app just for my *regular* Proton account, and I also took advantage of the extra password option recently added to Proton Pass, meaning that a potential attacker has to get through not one but FOUR layers of authentication to reach my Proton Pass credentials (which is exactly how I like it). However, for those who aren't as die-hard about security as I am, I think adding the option for direct passKEY (not passWORD) login would be a reasonable compromise.

Sorry Proton team but the issue was completely misunderstood. ProtonPass needs it's own completely separate master password that can be used to unlock it. Other Proton services would then have their own account and password stored within the Pass vault. Two passwords, one of them being stored within ProtonPass already makes no sense.

Thanks for opening a new ticket. Looking forward to the seperate password for Proton Pass.

Current setup makes me afraid that one day I will be signed out of Proton services on all my devices and no way to regain access.

Everything said previously, with one addition: passwordless login.

Please, please allow logging in WITHOUT the default protonmail password, using a totally distinct master password.

ALSO, please allow logging in using a passkey without involving any master password at all, generating a recovery key upon setup.

Unless this is implemented, I cannot recommend this to my friends and family, who cannot and will not ever remember a complex master password.

It's really a shame Proton is forcing us to vote again, when they misinterpreted the original issue 🤦

It's really a shame Proton is forcing us to vote again, when they misinterpreted the original issue 🤦

Very disappointed this is a new issue. The actual idea was marked completed when it wasn't.

proton this is very disappointing.

i am sure there are reasons why you did not "solve" this issue the way the community was expecting you to, but you still have the opportunity to do the right thing, which has always been the core mission of proton.

after much research, i decided to migrate to the proton ecosystem just a few days ago. i paid for a multi-year plan, set up the apps, and then ran into a massively frustrating wall that had me scouring the internet, reddit, etc. for hours until landing on this forum where i found thousands of people upset over the same exact thing:

how do i log in to proton if my proton credentials are stored... in proton???

please consider how ridiculous that question is... but that is our reality if using the proton ecosystem.

some password managers are better than others in terms of quality (security), but in essence they all work the same tried and true way:

the user memorizes ONE very long and complicated master password that is not digitally stored or written down ANYWHERE. there is the risk of forgetting it, which is the user's fault, but otherwise there is literally nothing more secure than this. then, by entering this password from memory, in addition to 2FA, one is able to access all his/her passwords in a vault and use autofill to deploy dozens of safely stored, extremely long and secure, impossible to remember passwords for any all all websites a user frequents.

the way things are set up in proton now, this is not possible and it is very inconvenient. despite paying for proton services i still have to use other products given this flaw in proton pass. similar to user Maarten's comment i still have to use bitwarden to store my proton credentials to make all of this work properly. i must log in to bitwarden with my memorized master password and 2FA, then go to the proton log in page, autofill with bitwarden, then get access to proton pass and my vault.

technically speaking, this works on my laptop because my browser supports multiple password manager extensions - proton pass and bitwarden. however, this DOES NOT work on my iphone because iOS only allows ONE password manager to be active. this means i have to go into settings on my iphone, choose bitwarden as my default password manager, go back to bitwarden and log in with my master password, then go to the proton app, autofill using bitwarden, then go back to settings, change my default password manager from bitwarden to proton pass, then use proton pass to autofill sites that i visit on my phone.

this is beyond inconvenient.

you could tell me, just make your proton ecosystem password your master password, but this has issues as well. if someone has multiple proton accounts, as many do, then i would have to use the same master password for all proton accounts (not safe) or have several master passwords, one for each proton account (not at all easy to remember).

i appreciate the "extra password" solution you just provided, but it's a reverse solution that is not ideal nor optimal. you put the cart before the horse instead of the horse before the cart.

at the end of the day we all support proton's mission and all want to use your services. we believe in what you're doing and that's why we are here. for us to use proton pass EXCLUSIVELY which i imagine is what you want, then we need to store all of our credentials inside proton pass (and not be using other password managers in tandem). this makes proton pass a UNIQUE entity (like all password managers) in that they need to be set up differently than other apps. they need a special master password that is different than the password to other proton apps (mail, vpn, calendar, drive).

again, i cannot log in to proton mail if my proton mail credentials are stored in proton pass, because proton mail and proton pass are using the same credentials. this is silly. give proton pass it's own master password and the other apps (mail, calendar, vpn, and drive) can keep their shared credentials. this will allow me to open my proton pass vault on my own, then use proton pass exclusively to access not only the other proton services but also all the services that i use.

please make this right. thank you.

I think the other comments make it clear what functionality we're looking for. A single password that can be memorised to access our Proton Pass passwords. Ideally we would use Proton Pass to login to our Proton services, such as Proton Mail.

After updating my MacOS version just now, I had to go through the following steps to access my passwords in Proton Pass:

1. Open Proton Pass, which asks for my Proton Account username and password.
2. Open 1Password and look up Proton Account username and password.
3. Copy username from 1Password, paste in Proton Pass.
4. Copy password from 1Password, paste in Proton Pass.
5. Get presented with TOTP screen.
6. Open Authy to copy TOTP code, paste in Proton Pass.
7. Get presented with additional password screen.
8. Fill out additional password from memory.

I want to fully remove 1Password from my workflow, and be able to access my Proton Pass passwords using a single password that I have memorised. I will not be able to memorise both my Proton Account password and my Proton Pass password.

I don't mind logging in with my Proton Account credentials to install Proton Pass on a new system (Mobile/desktop app or browser extension). But once installed, I want to use Proton Pass to login to my Proton Account for mail, VPN, etc.

The feature that was just released is not useful at all. Like in all other password manager, we need an EXCLUSIVE password just for the password manager that is different from the proton account. Without this, one ends up needing another password manager just for proton accounts, which is absurd.

It's frustrating that we're voting on this issue again, especially since the previously implemented solution doesn't align with what we initially requested and voted for.

The primary advantage of a password manager is the need to remember only one complex, high-entropy password for future-proofing.

However, the current two-password system not only fails to enhance security but potentially compromises it by encouraging users to create two separate, likely weaker passwords.

Proton has consistently had a willingness to listen to user feedback and implement changes accordingly. It's so weird that this particular issue remains unresolved.
We should have:

A separate, single password for Proton Pass.

The option to disable TOTP in favor of using only security keys.

These basic features should have been addressed long ago and represent the minimum acceptable solution to this problem

Came here from https://protonmail.uservoice.com/forums/953584-proton-pass/suggestions/46727686-separate-password-for-proton-pass (with 2190 votes) which was marked as completed, while not yet implemented.

Transfer the votes! Don't try to fool us

This issue is keeping me from switching from Bitwarden. I already voted for this once before.