To help protect RPI accounts and data, follow these best practices when using password managers.

Use a password manager to create and store strong, unique passwords for each account.
Keep your personal and RPI credentials separate - use different accounts or tools.
Use multi-factor authentication (MFA) or passwordless login wherever available.

Choose a password manager that:
 - Encrypts your data
 - Requires a strong master password or biometric login
 - Offers secure backup and recovery options

What You Should Avoid
- Do not store RPI passwords in personal browser-based password managers (e.g., Chrome, Edge,
Firefox).
- Do not save institutional credentials on shared or unmanaged devices.
- Do not share your password manager account or credentials with others.
- Avoid using password managers that do not offer encryption or require a master password.

We recommend using passwordless authentication for RPI services whenever possible.

Note - RPI does not currently offer an enterprise password manager, so users are responsible for choosing
secure tools and using them appropriately.
Tools to Explore
- Bitwarden - Open-source, cross-platform, supports passwordless and MFA.
- 1Password - User-friendly, strong security features, supports passkeys.
- Dashlane - Offers both personal and business plans, with dark web monitoring.
- Keeper - Enterprise-grade security, supports biometric login.
- NordPass - Simple interface, zero-knowledge architecture.
Always review the security features and privacy policies of any password manager before use.