The main premise behind 2FA is that after you enter your password (the first step, method, factor, or evidence in proving your identity), you will be prompted to enter a token generated either by an Authenticator app, a hardware security key (like Yubikey), or sent via SMS (text message) to your phone. These days SMS is considered an unsafe method for sending the 2FA token due to the possibility that mailicious actors could intercept your SMS messages and thus gain access to your 2FA protected accounts. Most banks still use SMS as the 2FA token delivery method and hopefully they will upgrade their security practice soon.

Your Secrets password manager has a built-in Authenticator app that you can use with any website that supports Authenticator apps as a 2FA method. Not all websites support Authenticator apps, but if they do, then you should make use of the Authenticator app in your Secrets password manager.

This article will guide you in setting up Secrets as your Authenticator 2FA method for your Google account and Paypal account. After this, you should be able to set up Secrets as your Authenticator app for other websites, such as social media sites, financial sites, etc.

Enabling 2FA on your accounts at Google, Paypal and others will require you to complete a secondary step (entering the 2FA token generated in Secrets) each time you log in, in addition to your primary login method, which is your account password. When setting up 2FA on your various accounts, remember that it is best practice to set up multiple 2FA methods in case you lose access to one of your 2FA methods. You’ll see that Google provides multiple 2FA methods that you can set up but Paypal only provides Authenticator app or the use of a Hardware Security Key, which is a more advanced 2FA method that we will cover in a future article.

Guide to setting up 2FA on Google & Paypal:

Table of Contents:

• Step 2: Set up 2FA on your Google account
• Step 3: Set up 2FA on your Paypal account

Step 1: Sign in to your Google Account

If you’re already signed in to your Google account, like via Gmail, then click on your profile icon on the upper right and select Manage your Google Account. Otherwise, follow this link to directly navigate to your Google account management, where we will set up the 2FA methods.

2FA set up in Secrets is best done via the Bitwarden Browser Extension apps or Desktop apps.

Step 2: Set up 2FA on your Google account

From the Google Account page, select Security on the left sidebar and then select 2-Step Verification under “How you sign in to Google”.

From the page that pops up, select Get started.

Google first forces you to set up a phone number for SMS as a default 2FA method. So go ahead and do that. Enter your phone number and then enter the 6-digit passcode that Google sends to your phone.

If it all looks good, select Turn on.

And then you’ll be back on the Security page and you can confirm that you have the default 2FA method set up. Next, we will set up Authenticator app as a 2FA method.

At the bottom of the 2FA section, select the button that says Authenticator.

You can also navigate to the Authenticator app settings page by clicking once again on the right arrow at 2-Step Verification and then selecting Authenticator app.

From the Authenticator app page, select Set up authenticator.

The page will initially only show you a QR code that you can scan with your Secrets mobile app but it’s easier to do this with the Browser Extension app. Select Can't scan it?.

Now you’ll be presented with the secret key that we will save in our Secrets login entry for this Google account. Copy the string of letters and number in Step 2.

Open your Bitwarden Browser Extension App, select the login entry for this Google Account, click on Edit, and then in the input box below Password labeled Authenticator key (TOTP), paste the string of letters and numbers. This is the secret key that Secrets will use to generate unique one-time passcodes (OTP) that will match what your Google account is expecting when it prompts you for the 2FA token.

After clicking Save, you’ll see that the Verification code field starts displaying a 6-digit 2FA token (or one-time passcode) that refreshes every 30 seconds. Copy this code and paste it in the Google account pop-up view for setting up your authenticator app and click Verify.

If it all looks good, you’ll now see that you have set up Authenticator as a 2FA method for your Google account.

Click the back arrow to come back to the 2-Step Verification page, which should now show you that the more-secure Authenticator app has been selected by Google as your default 2FA method with your phone being a backup 2FA method. We should set up one more backup 2FA method, which is generating and saving 2FA backup codes. Click on Backup codes.

Select Get backup codes.

And now you’ll be presented with 10 one-time use 2FA backup codes. These codes can give access to your account if someone knows your password so guard these backup codes just like they were a password. We recommend saving these backup codes in your Secrets login entry for this Google account and logging in to your Secrets account from multiple devices to avoid getting yourself locked out. You could also print these backup codes and put them in a bank safety deposit box.

Back on the 2-Step Verification page you’ll see that you have Authenticator app set up as your default 2FA method, then your phone number as your first backup and the 2FA backup codes as a secondary backup. Now this a robust 2FA setup because there are multiple 2FA methods set up on this one account and it is very unlikely that you would be locked out of this account or that a bad actor might gain access to your account.

Let’s see what a login flow would look like now that you have 2FA set up on your Google account. Sign out or logout of your Google account and then sign in again.

Enter your Google account password.

Then you will be prompted to enter a verification code from your authenticator app, referring to the login entry in Secrets for this Google account.

In the Bitwarden Browser Extension App, search for your login entry for this Google account and click on the far right clock icon to copy the verification code or OTP to your clipboard. If you’re curious why a clock icon is shown for this 2FA token, it’s because this token is a Time-based One Time Passcode that refreshes every 30 seconds.

Alternatively, click on the view icon of this login entry and then from the Verification code line, click the copy icon on the far right to copy the verification code to your clipboard. It’s ok if the timer reaches zero and expires, you have a few seconds to enter the passcode before you’ll need to enter a refreshed one.

On the Google login vew, paste the Verification code and click Next.

That’s it! You’ve set up Secrets as your Authenticator app for your Google account and now your Google account is better secured from bad actors.

Step 3: Set up 2FA on your Paypal account

Along with securing your Google account with 2FA, you should also enable 2FA on your financial accounts and other accounts that are important to you or even just any website that offers it as an option. As an example, here are the steps to set up 2FA on your Paypal account.

Login to your Paypal account, click the settings icon on the upper right, then select Security, and then click on Set up to the right of 2-step verification.

Choose Use an authenticator app.

Below the QR code, copy the secret key string of letters and numbers.

In your Bitwarden Browser Extension App, find your Paypal login entry, click on Edit and in the Authenticator key (TOTP) field, paste the secret key and click Save. Now copy the 6-digit verification code from the Bitwarden app.

And paste it in the Paypal prompt and click Confirm.

If it all looks good, you’ll see that 2-step verification is now turned on in your Paypal account. Paypal currently doesn’t offer 2FA backup codes as a backup method and only offer setting up a hardware security key as a secondary 2FA method. We’ll cover that in a future article.

There you have it! You have now secured your Google account and Paypal account with two-factor authentication.

If you need further help setting up 2FA on websites, please don’t hesitate to reach out and contact us.

The main premise behind 2FA is that after you enter your password (the first step, method, factor, or evidence in proving your identity), you will be prompted to enter a token generated either by an Authenticator app, a hardware security key (like Yubikey), or sent via SMS (text message) to your phone. These days SMS is considered an unsafe method for sending the 2FA token due to the possibility that mailicious actors could intercept your SMS messages and thus gain access to your 2FA protected accounts. Most banks still use SMS as the 2FA token delivery method and hopefully they will upgrade their security practice soon.

Since your Secrets password manager stores all of your logins, we highly recommend that you secure your password vault with 2FA. Doing so protects all of your logins by preventing a malicious actor from accessing your vault, even if they somehow discover or guess your master password, which you should commit to memory and never write down it anywhere.

Enabling 2FA on your vault will require you to complete a secondary step each time you log in, in addition to your primary login method (your master password). You won’t need to complete the secondary step to unlock your vault, only to log in.

This article will guide you in setting up multiple different 2FA methods for your vault. Setting up multiple 2FA methods is best practice so that in case you lose access to one of your 2FA methods you will be able to use one of your other 2FA methods to gain access to your vault.

Guide to setting up Two-Step Login (2FA) on your Secrets Vault:

Table of Contents:

• Step 2: Set up Email as a 2FA Method
• Step 3: Save your 2FA Recovery Code
• Step 4: Set up Authenticator App as a 2FA Method on Apple iOS
• Step 5: Set up Authenticator App as a 2FA Method on Android

Step 1: Sign in to your Ayam Secure Secrets Web Vault

2FA set up happens in the Secrets Web Vault (secrets.ayamsecure.com) rather than the browser extension or mobile apps.

Step 2: Set up Email as a 2FA Method

Once you’re signed in to your Web Vault, on the upper right, select the profile icon and choose Account settings.

Then from the left sidebar, select Security, and then from the tabs, select Two-step login.

Notice the prominent warning about permanently losing access to your Secrets Vault if your lose access to all your 2FA methods. As a backup, you can use a Recovery Code that will be available after we set up a 2FA method.

First, we’ll set up Email as a 2FA method and then we’ll set up Authenticator app as a second 2FA method.

At the bottom of the page, click on the Manage button to the right of Email, which is the last 2FA “provider”, another name for method.

After entering your master password, ensure that the correct email address is entered in the first input box and then click Send email after which you should see a message saying Verification email sent to ... your email address.

Go to your email inbox and look for the email from Ayam Secure Secrets with the subject of Your Two-step Login Verification Code.

Copy the 6-digit passcode and return to your Secrets Web Vault and paste the passcode in the second input box and click on Turn on.

After verifying that everything looks good, click on the Close button.

Now you have enabled Email as a 2FA method on your Secrets vault and you can confirm this by the green checkmark icon next to Email.

If you ever want to disable this Email 2FA method, visit this same page, click on Manage and Turn off.

Step 3: Save your 2FA Recovery Code

Now that you have a 2FA method enabled, let’s view and save your Recovery Code.

At the top of the Two-step login page, click on View recovery code and after entering your master password, you will be shown your recovery code.

Copy the string of 32 letters and numbers and save it in a safe place. We recommend saving it in your Secrets Vault as that is most likely the safest place for all of your secrets.

Of course, there could be a situation where you lose access to your 2FA methods and to log in to your Secrets Vault, you need the recovery code that is saved in your Secrets Vault. For this reason we recommend using the Bitwarden app on different devices, so that you can always have access to your vault. For example, using the Bitwarden mobile app on your phone secured with your fingerprint or Face ID biometrics, using the desktop app, and using the browser extension app.

Remember that you only need your 2FA token when logging in to your Secrets Vault. So, as long as you are logged in to your Secrets Vault on various devices, which should lock after a certain idle time has passed, you will be able to unlock your Secrets Vault with only your master password.

To save the recovery code in your Secrets Vault, click on the Vaults menu item on the upper left to navigate back to your Secrets Vault, and then find your Ayam Secure Secrets login item.

If you haven’t already saved your Secrets login in your Secrets Vault, do so now by clicking on New and then Item. We recommend saving your Secrets login details in your Secrets Vault so that in case you forget your master password, you can open your vault on your phone, which if it’s secured by biometrics won’t prompt you for your master password.

Click on your Secrets login item, then towards the bottom under Custom Fields, select New custom field of type Text.

Give this custom field a name of 2FA Recovery Code and paste the contents in Value and click Save.

You can also save this recovery code in any other location that you deem to be highly secure, such as a bank safety deposit box.

Step 4: Set up Authenticator App as a 2FA Method on Apple iOS

(Click here to jump down to the Android section)

Email is not considered the most secure 2FA method because a malicious actor could intercept your emails and read your 2FA token that is sent in plain text. A more secure 2FA method is using an Authenticator App that automatically generates the 6-digit 2FA token, which refreshes every 30 seconds.

On Apple iPhone, starting with iOS 15, there is a built-in feature to generate 2FA tokens. We recommend this method for iPhone users because this 2FA item gets backed up via iCloud Keychain to your iCloud account so that when you get a new iPhone, you won’t have to set up this 2FA method again.

In your Secrets Web Vault, select the profile icon and choose Account Settings, then select Security, then select Two-step login. Next to Authenticator app, click Manage.

After entering your master password, you will be shown a QR code that you can scan with your iPhone.

On your iPhone, open the Settings app and select Passwords.

Pass the Passwords app 2FA prompt by either using your Touch ID, Face ID, or a passcode.

Then select the + icon in the upper right to create a new login item.

In the Website section, enter: secrets.ayamsecure.com and then select Done.

From the Account Options section of this login item, select Set Up Verification Code....

In the menu that pops up, select Scan QR Code and point your phone’s camera at the QR code shown in your Secrets Web Vault.

Enter the 6-digit code shown in your phone’s Password app for this login item in Part 3 of the 2FA set up in your Secrets Web Vault and click on Turn on.

Now you have enabled Authenticator App as a 2FA method on your Secrets vault and you can confirm this by the green checkmark icon next to Authenticator app.

When logging in to your Secrets Vault, you will be prompted for this 2FA token. If your phone is not nearby, you can choose Use another two-step login method and select Email.

Step 5: Set up Authenticator App as a 2FA Method on Android

Email is not considered the most secure 2FA method because a malicious actor could intercept your emails and read your 2FA token that is sent in plain text. A more secure 2FA method is using an Authenticator App that automatically generates the 6-digit 2FA token, which refreshes every 30 seconds.

For Android, there are multiple authenticator apps to choose from. We recommend Aegis Authenticator primarily because its 2FA token settings can be backed up and moved to a new phone. It’s also free, secure, and open-source.

In your Secrets Web Vault, select the profile icon and choose Account Settings, then select Security, then select Two-step login. Next to Authenticator app, click Manage.

After entering your master password, you will be shown a QR code that you can scan with your phone.

On your Android phone, open the Aegis Authenticator app and click on the red + button to add a new 2FA entry.

In the menu that pops up, select Scan QR code and point your phone’s camera at the QR code shown in your Secrets Web Vault.

In Aegis, under the Note input box, type something to help you remember why you created this 2FA entry, such as 2FA Token for my Secrets Vault and click Save.

Enter the 6-digit code shown in Aegis for this login item in Part 3 of the 2FA set up in your Secrets Web Vault and click on Turn on.

After verifying that everything looks good, click on the Close button.

Now you have enabled Authenticator App as a 2FA method on your Secrets vault and you can confirm this by the green checkmark icon next to Authenticator App.

When logging in to your Secrets Vault, you will be prompted for this 2FA token. If your phone is not nearby, you can choose Use another two-step login method and select Email.

There you have it! You have now secured your Secrets Vault with Two-step login with multiple 2FA methods including saving your backup recovery code.

If you need further help setting up 2FA on your vault, please don’t hesitate to reach out and contact us.

One of the best features of Secrets is the ability to safely and securely share passwords and other private data such as credit card information, WiFi passwords, etc. with others users in your Secrets Organization. This article will help you get started with a two-person organization so you can experience secure sharing in no time.

Here is a step-by-step guide on how to use Organizations:

Table of Contents:

• Step 2: Create your organization
• Step 3: Update your default collection
• Step 4: View all your Vault items
• Step 5: Move a vault item to your organization vault
• Step 6: Invite users to your organization
• Step 7: Viewing vault items in the Browser Extension Apps

Step 1: Sign in to your Ayam Secure Secrets Web Vault

Organization management happens primarily in the Secrets Web Vault (secrets.ayamsecure.com) rather than the browser extension apps.

Step 2: Create your organization

Once you’re signed in to your Web Vault, on the left-hand sidebar, under All vaults, you’ll see My vault, which is your default personal vault and then an option to create a New organization. Go ahead and click that.

On the New organization screen, give your organization a name and then enter the email that you used to sign up for Secrets, and click Submit.

Once your organization is created, you will then be taken to your organization’s vault and shown the Default collection of this vault.

It’s important to understand that now there is a personal vault that only you can access and an organization vault that can be accessed by members of the organization and no one else.

Another important point to note is that vault items (such as logins, cards, identities, secure notes) can only belong to one vault, either your personal vault or the shared organization vault. Once you share a vault item from your personal vault to an organization vault, you will then have to access your organization vault to be able to edit this vault item.

Don’t worry, it’s much easier than this because on the home page of your Web Vault you can see the vault items from all your vaults together. Also, in the browser extension apps, you will be able to see vault items from all your vaults.

Step 3: Update your default collection

Organization vaults store their vault items in a collection, which is just a group. You can have as many collections as you want. Go ahead and update the Default collection and give it a name that the members of your organization will recognize because when you share a vault item to an organization vault, you will have to select the collection that it gets added to.

Step 4: View all your Vault items

Click on Vaults in the top menu bar and you will be taken to the home page of your Web Vault and it will be showing your vault items from all your vaults together. Under the Owner column, you can see which vault items belong to which vaults.

Step 5: Move a vault item to your organization vault

If you want to move a vault item from your personal vault to the organization vault, click on the 3 dots menu icon on the far right of the vault item and select Move to organization.

In the modal that pops up, select your organization and the collection in your organization to move this vault item to.

Now, in the All vaults view, you can see in the Owner column the vault item now belongs to the organization vault.

Instead of thinking of sharing vault items from your personal vault to the organization vault, it’s better to think of moving vault items between vaults because as mentioned above, vault items can only belong to one vault at a time.

Now, from the left-hand sidebar, under All vaults, you can select My vault and the vault items will filter to show just the vault items in your personal vault. And likewise, you can select the organization vault to see just the vault items that are in the organization vault.

Step 6: Invite members to your organization

Once your organization is setup, to invite other members to your organization (such as your family or team members), in your Web Vault, click on Organizations in the top menu bar, then the Members tab below your organization name and then click Invite member.

In the modal that pops up, there are 2 tabs. In the Role tab, enter the email of the member you want to invite (ensure that they have already setup their Secrets account before inviting them to your organization and use the same email address that they setup their Secrets account with). Choose the role that this member should have. Owner and Admin roles are similar in Secrets as billing and subscriptions are handled outside of Secrets.

In the Collections tab, you can choose to give fine-grain authorization to this member or just select Grant access to all current and future collections if this is a member you trust, then click Save.

Back on the Members tab of your Organization page, you will see that the member you invited has an invited tag next to their name.

Then, the member you just invited will receive an email from hi@ayamsecure.com with the subject of Join “your organization name”. They should click the Join Organization Now button in the email and then in the page that opens up in the browser, they should click Log in (since they should already have a Secrets account setup).

After they have logged in, you as the organization owner need to confirm their membership. From the Members tab of your Organization page, click on the 3 dots menu icon next to the invited member and select Confirm.

The Confirm User modal pops up asking you to verify the member’s security fingerprint phrase.

Ask the invited member to login to their Web Vault and then click on their profile on the top right of the menu bar and then select Account settings.

On the right side of the My account page is the member’s security fingerprint phrase. Confirm that the phrase shown here matches the phrase shown in the owner’s Confirm User modal and then click on Confirm.

Now, finally, the invited member is a confirmed member of your organization.

They can now access all the vault items that have been shared to your organization’s vault.

Step 7: Viewing vault items in the Browser Extension Apps

On a day-to-day basis, you will most likely be interacting with your Secrets vault items with the Browser Extension Apps. Read this article on how to setup the Browser Extension Apps.

Open the Bitwarden browser extension app and confirm that you can see your organization’s collection from the Vault tab.

Select the collection to view the vault items in that collection.

From the Vault tab, click on Logins and you will see all your login vault items from all your vaults. The vault items that are in your organization vault have a boxy shared vault icon next to the vault item name.

To move an item from your personal vault to your organization vault, click on the vault item you want to move and then scroll down and click on Move to organization.

Then select the organization and the collection in your organization vault that you want to move this vault item to and click on Move on the upper right.

Back on your Logins view, you can now see that the item you just moved to your organization vault has the boxy shared vault icon next to the vault item name.

There you have it! You now know how to create an organization in Secrets, invite and confirm a member to your organization, and move vault items from your personal vault to your organization vault.

If you need further help setting up your organization or organizing your vault items, please don’t hesitate to reach out and contact us.

Step 1: Create an Ayam Secure Secrets account

Before you can start migrating your data from 1Password to Secrets, you need to create a Secrets account. Vist the Secrets service page and pick a subscription plan. After you checkout, follow the steps on the how to get started with Secrets page to create your account.

Step 2: Export your data from 1Password

Next, you need to export your data from 1Password. This can be done only via the 1Password desktop apps on MacOS or Windows.

Open the 1Password desktop app and click on “File” in the top menu and select “Export”. Choose the vault you want to export (if you have multiple vaults, you will have to repeat this import process for each vault).

Enter your master password, choose the 1PUX file format and click Export Data to download the file. Save it on your desktop in a place you’ll be able to find it for the next step (most likely your Desktop or Downloads folder).

Step 3: Import your data into Secrets

Once you have exported your data from 1Password, you can import it into Secrets. To do this, log in to the Secrets Web Vault in your browser (secrets.ayamsecure.com) and click on Tools in the top left-hand menu. Then, select Import data and choose the 1Password (1pux) file format for your import. Follow the prompts to import your data into Secrets.

Step 4: Check your imported data

After importing your data into Secrets, it’s a good idea to check that everything has been imported correctly. Take some time to go through your passwords and other data to ensure that everything is in order. If you notice any errors with your imported credentials, you can fix them manually by editing that specific credential.

Step 5: Delete your data from 1Password

Once you have successfully migrated your data to Secrets, you should delete your data from 1Password. This is an important step to ensure that your data is not compromised. To do this, follow the instructions from 1Password on how to delete items. open 1Password and select the vault you want to delete.

In conclusion, migrating from 1Password to Secrets is a straightforward process that can be completed in just a few steps. By following the above guide, you can ensure that your data is securely transferred to your new password manager. Secrets offers a robust set of features and is a popular choice among users who are looking for a reliable and user-friendly password manager.

Next, you can read this guide on how to use Secrets to its full potential and keep your sensitive data safe and secure.

Step 1: Create an Ayam Secure Secrets account

Before you can start migrating your data from 1Password to Secrets, you need to create a Secrets account. Vist the Secrets service page and pick a subscription plan. After you checkout, follow the steps on the how to get started with Secrets page to create your account.

Step 2: Export your data from LastPass

Next, you need to export your data from LastPass. This can be done by logging into your LastPass web vault, clicking on Advanced Options in the lower left-hand menu, and then from the Manage your Vault section, select the Export option.

At this stage, LastPass will send you an email to confirm the export. From your email inbox, confirm the export, then return to your LastPass web vault, and select the Export option again to complete the export. Depending on your browser, your data will either be automatically saved as a .csv or printed to the screen in a .csv format.

If your data was printed to the screen, highlight the text and copy and paste it into a new export.csv file using your note pad editor (make sure to save the file as a .csv and not .txt).

Step 3: Import your data into Secrets

Once you have exported your data from LastPass, you can import it into Secrets. To do this, log in to the Secrets Web Vault in your browser (secrets.ayamsecure.com) and click on Tools in the top left-hand menu. Then, select Import data and choose the LastPass (csv) file format for your import. Follow the prompts to import your data into Secrets.

Step 4: Check your imported data

After importing your data into Secrets, it’s a good idea to check that everything has been imported correctly. Take some time to go through your passwords and other data to ensure that everything is in order. If you notice any errors with your imported credentials, you can fix them manually by editing that specific credential. If you’re having some issues importing your data, please follow the troubleshooting steps here or contact us for further help.

Step 5: Delete your data from LastPass

Once you have successfully migrated your data to Secrets, you should delete your account from LastPass. This is an important step to ensure that your data is not compromised. To do this, log into your LastPass account and then visit this Delete Account page to start the process of deleting your account.

In conclusion, migrating from LastPass to Secrets is a straightforward process that can be completed in just a few steps. By following the above guide, you can ensure that your data is securely transferred to your new password manager. Secrets offers a robust set of features and is a popular choice among users who are looking for a reliable and user-friendly password manager.

Next, you can read this guide on how to use Secrets to its full potential and keep your sensitive data safe and secure.

One important aspect to understand is that Ayam Secure Secrets implements an open-source Bitwarden server where your encrypted passwords are stored in an encrypted database. You can access your passwords from various applications. When you access your passwords from the Web App, this Web App is served by Ayam Secure. You can also access your passwords using applications from Bitwarden, such as the Browser Extensions (which is highly recommended to get the most use out of a password manager), mobile apps for your phone from the app stores, and desktop apps.

So keep in mind that Secrets and Bitwarden refer to the same password manager.

Here is a step-by-step guide to make the most use out of Secrets:

Step 1: Create an Ayam Secure Secrets account

Before you can start using Secrets, you need to create a Secrets account. Vist the Secrets service page and pick a subscription plan. After you checkout, follow the steps on the how to get started with Secrets page to create your account.

Step 2: Add your existing passwords to Secrets

The next step is get your existing passwords into your Secrets/Bitwarden password vault. Read this post if you’re migrating from 1Password, this post if you’re migrating from LastPass, and this post if you’re migrating from Google Chrome’s password manager. If you’re importing passwords from another source, get help from the Bitwarden help site.

Step 3: Download and install the Bitwarden Browser Extension Apps

To get the most use of Secrets/Bitwarden, download and install Bitwarden’s Browser Extension App for your browser. Download the extension for Chrome here, the extension for Firefox here, and for other browsers here.

After it has been installed, click on the Bitwarden Browser Extension App icon, which is usually on the upper right of your browser.

Before you login to your Secrets/Bitwarden vault, please change the Server URL by clicking on the dropdown arrow below the Email address input box, next to bitwarden.com and click on self-hosted.

Enter this for the Server URL: https://secrets.ayamsecure.com and click Save on the upper right.

Then you’ll be back on the login screen. Ensure that below the Email address input box, it states: Logging in on self-hosted. Enter your Email address, check the box that says Remember email, and click Continue.

Next enter your Master Password and if you have setup Second Factor Authentication on your vault (you definitely should), enter the passcode and then you’ll be logged in to your vault through this Extension App.

One of the great features of Secrets/Bitwarden is its ability to autofill passwords. Once you have added your passwords to your vault, you can use Bitwarden to automatically fill in your login credentials when you visit a website or service. Verify that this setting is enabled by first clicking on the Settings icon in the lower right of the Extension App.

Then click on the first option under Manage: Auto-fill.

And ensure that the Auto-fill on page load setting is checked, which is the default. While you’re on this screen, also ensure that the Default URI match detection is set to Base domain. This means that if you saved a login’s url as https://account.google.com, Bitwarden will show you this login if you’re on any other https://google.com site.

You can then click Back or click outside the Extension App to minimize it.

Now, visit a website for which you have a login saved and test out the auto-fill feature. If it doesn’t auto-fill, simply click on the Bitwarden icon in your browser’s toolbar and select the login you want to use. Bitwarden will then fill in your username and password for you.

Step 4: Download and install the Bitwarden Mobile and Desktop Apps

You can install the Bitwarden Mobile app for iPhone from the Apple App Store and for Android from the Google Play store. If you want, you can also install the Bitwarden Desktop App for Windows, MacOS, or Linux by visiting this Bitwarden website and clicking on the platform you are using. Follow the prompts to install the app.

Step 5: Add new passwords to your vault

Now that your vault is set up, you can start adding new passwords to it. To do this, click on the + button in the upper right of the Bitwarden Extension app and select “Login” from the Type dropdown menu. Enter the website URL, username, and password for the website or service you want to add. You can also add notes to store additional information regarding this login credential and you can add this credential to a folder to help you organize your passwords. Don’t forget to click Save on the upper right when you’re done. You can edit your folders and add new ones through the Web App located at https://secrets.ayamsecure.com.

Step 6: Generate secure passwords

Another useful feature of Bitwarden is its password generator. This tool allows you to generate strong, unique passwords that are difficult to guess or crack. To use the password generator, click on the “Generator” button in the lower right of the Bitwarden Extension app and customize the settings as needed. Then, copy and paste the generated password into the website or service you want to use it for.

Step 7: Share passwords securely using Organizations

Bitwarden also allows you to share passwords securely with other users in your Secrets/Bitwarden Organization. Read this article on how to use Organizations in Secrets.

In conclusion, Ayam Secure Secrets (powered by Bitwarden) is a popular and user-friendly password manager that can help you securely store and manage your passwords. By following the above guide, you can learn how to use Secrets to its full potential and keep your sensitive data safe and secure.

Step 1: Set up Nextcloud

The first step is to set up Nextcloud on your server or hosting platform. Nextcloud can be installed on a variety of platforms, including Linux, Windows, and macOS. You can also use a cloud hosting provider that offers Nextcloud as a pre-installed option. Follow the installation instructions provided by Nextcloud or your hosting provider.

Step 2: Export your Dropbox data

Before migrating to Nextcloud, you need to export your data from Dropbox. To do this, log in to your Dropbox account and go to the “Settings” page. Click on the “Export” button and select the files and folders you want to export. Choose the format for your exported files and click on the “Export” button.

Step 3: Import your data to Nextcloud

Once you have exported your data from Dropbox, you can import it to Nextcloud. To do this, log in to your Nextcloud account and click on the “Files” app. Then, click on the “Upload” button and select the files and folders you want to import. You can also drag and drop files directly into the web interface.

Step 4: Set up syncing

Nextcloud offers a desktop syncing client that allows you to automatically sync files between your computer and Nextcloud. To set up syncing, download and install the Nextcloud client for your operating system. Then, log in to your Nextcloud account and select the folders you want to sync.

Step 5: Share files and collaborate

Now that you have migrated to Nextcloud, you can start sharing files and collaborating with others. Nextcloud offers a variety of collaboration features, including document editing, calendaring, and chat. To share a file, select the file you want to share and click on the “Share” button. Enter the email address of the person you want to share the file with and customize the sharing settings as needed.

In conclusion, migrating from Dropbox to Nextcloud is a straightforward process that allows you to switch to an open-source and more privacy-focused cloud storage and file sharing service. By following the above guide, you can learn how to migrate your data and start using Nextcloud to its full potential.

Step 1: Set up Nextcloud

The first step is to set up Nextcloud on your server or hosting platform. Nextcloud can be installed on a variety of platforms, including Linux, Windows, and macOS. You can also use a cloud hosting provider that offers Nextcloud as a pre-installed option. Follow the installation instructions provided by Nextcloud or your hosting provider.

Step 2: Export your Google Drive data

Before migrating to Nextcloud, you need to export your data from Google Drive. To do this, log in to your Google Drive account and go to the “Settings” page. Click on the “Download your data” button and select the files and folders you want to export. Choose the format for your exported files and click on the “Create export” button.

Step 3: Import your data to Nextcloud

Once you have exported your data from Google Drive, you can import it to Nextcloud. To do this, log in to your Nextcloud account and click on the “Files” app. Then, click on the “Upload” button and select the files and folders you want to import. You can also drag and drop files directly into the web interface.

Step 4: Set up syncing

Nextcloud offers a desktop syncing client that allows you to automatically sync files between your computer and Nextcloud. To set up syncing, download and install the Nextcloud client for your operating system. Then, log in to your Nextcloud account and select the folders you want to sync.

Step 5: Share files and collaborate

Now that you have migrated to Nextcloud, you can start sharing files and collaborating with others. Nextcloud offers a variety of collaboration features, including document editing, calendaring, and chat. To share a file, select the file you want to share and click on the “Share” button. Enter the email address of the person you want to share the file with and customize the sharing settings as needed.

In conclusion, migrating from Google Drive to Nextcloud is a straightforward process that allows you to switch to an open-source and more privacy-focused cloud storage and file sharing service. By following the above guide, you can learn how to migrate your data and start using Nextcloud to its full potential.

Here is a step-by-step guide on how to use Nextcloud:

Step 1: Install Nextcloud

To use Nextcloud, you need to first install it on a server or hosting platform. Nextcloud can be installed on a variety of platforms, including Linux, Windows, and macOS. You can also use a cloud hosting provider that offers Nextcloud as a pre-installed option. Follow the installation instructions provided by Nextcloud or your hosting provider.

Step 2: Create an account

After installing Nextcloud, you need to create an account. This can be done by visiting the Nextcloud login page and clicking on the “Create an account” button. Enter your username, email address, and password and click on the “Create account” button.

Step 3: Upload and share files

Now that you have created an account, you can start uploading and sharing files. To do this, log in to your Nextcloud account and click on the “Files” app. Then, click on the “Upload” button to upload a file from your computer. You can also drag and drop files directly into the web interface.

To share a file, select the file you want to share and click on the “Share” button. Enter the email address of the person you want to share the file with and customize the sharing settings as needed. You can also create public links that allow anyone with the link to access the file.

Step 4: Collaborate on documents

Nextcloud also offers document collaboration features that allow multiple users to edit the same document in real-time. To use this feature, create a new document in the Nextcloud “Documents” app and invite collaborators by clicking on the “Share” button. Collaborators can then edit the document simultaneously and see changes in real-time.

Step 5: Use the calendar and contacts apps

Nextcloud also offers a calendar app that allows you to manage your schedule and appointments. You can create and edit events, set reminders, and share your calendar with others. Nextcloud also has a contacts app that allows you to manage your contacts and sync them across devices.

Step 6: Use the chat app

Nextcloud also has a chat app that allows you to communicate with others in real-time. You can create channels for different topics and invite others to join. You can also send direct messages to other users.

In conclusion, Nextcloud is a powerful and versatile platform that offers a variety of features for file sharing, collaboration, and communication. By following the above guide, you can learn how to use Nextcloud to its full potential and streamline your workflows.

Here are some reasons why you should care about your data privacy:

1. Protects Your Personal Information

   Your personal information is valuable, and it is your right to keep it private. This includes sensitive data such as your name, address, social security number, and financial information. If this information falls into the wrong hands, it can be used for identity theft, fraud, or other malicious purposes.

2. Maintains Your Reputation

   Your online reputation is essential, whether you’re an individual or a business. If your personal information is leaked or compromised, it can negatively impact your reputation. For businesses, this can lead to a loss of customer trust and can damage the brand’s image.

3. Prevents Cybercrime

   Cybercrime is a growing concern, with hackers and cybercriminals constantly finding new ways to exploit vulnerabilities in technology. By taking data privacy seriously, you can help prevent cybercrime from occurring. This not only protects you but also helps to make the internet a safer place for everyone.

4. Protects Your Financial Information

   Your financial information is among the most sensitive data that you have, and it’s important to keep it private. This includes bank account numbers, credit card details, and other financial information. If this information is stolen, it can lead to financial loss and damage your credit score.

5. Ensures Your Personal Safety

   In some cases, your personal safety may depend on keeping your data private. For example, if you are a victim of domestic violence or stalking, your location data can be used to track you. It’s essential to keep your data private to protect your safety in such situations.

6. Maintains Your Legal Rights

   Data privacy laws protect your right to privacy, and it’s important to understand and exercise those rights. By keeping your data private, you can ensure that your legal rights are protected and that you’re not inadvertently waiving them.

Conclusion

Data privacy is an essential aspect of our digital lives, and it’s important to understand why it matters. It protects your personal information, maintains your reputation, prevents cybercrime, protects your financial information, ensures your personal safety, and maintains your legal rights. By taking data privacy seriously, you can enjoy a safer and more secure online experience, and protect yourself from the negative consequences of data breaches and cybercrime.

1. Use Strong Passwords

   A strong password should be at least 12 characters long and include a combination of upper and lower case letters, numbers, and special characters. Avoid using predictable passwords such as “123456” or “password.” Instead, use a passphrase, which is a sequence of random words, to make it easier to remember and harder to crack.

2. Use a Password Manager

   A password manager is a secure software tool that stores all your passwords in an encrypted format. It allows you to create and store strong passwords for all your accounts without having to remember them. Password managers also help you avoid using the same password across multiple accounts, which is a security risk.

3. Enable Two-Factor Authentication

   Two-factor authentication (2FA) adds an extra layer of security to your accounts by requiring an additional authentication factor, such as a code generated by an app or a fingerprint scan, along with your password. It is an effective way to prevent unauthorized access to your accounts.

4. Change Your Passwords Regularly

   Regularly changing your passwords helps prevent them from being compromised. It is recommended to change your passwords every 90 days. Additionally, if you suspect that one of your accounts has been compromised, change the password immediately.

5. Use Different Passwords for Each Account

   Using the same password for multiple accounts is a significant security risk. If one of your accounts is compromised, hackers can use the same password to gain access to all your other accounts. It is crucial to use a different password for each account.

6. Avoid Sharing Your Passwords

   Sharing your passwords with others, even with family and friends, is never a good idea. If you must share your password, create a temporary one and change it as soon as the other person is done using it.

7. Be Cautious of Phishing Scams

   Phishing scams are attempts to trick you into revealing your passwords and other sensitive information. Be cautious of emails or messages that ask you to click on a link or provide your login credentials. Always verify the legitimacy of the request before providing any personal data.

Conclusion

Effective password management is crucial in keeping your online identity safe and secure. Use strong passwords, enable two-factor authentication, use a password manager, change your passwords regularly, use different passwords for each account, avoid sharing your passwords, and be cautious of phishing scams. By following these best practices, you can ensure that your digital identity is protected, and you can enjoy a safer and more secure online experience.

Is My Personal Data Available on the Black Market?

Unfortunately, the answer is most likely yes. Hackers and cybercriminals are constantly seeking new ways to steal personal data and sell it on the black market. According to a recent report by security company Norton, personal data such as email addresses, credit card information, and social security numbers are readily available on the black market for a relatively low price.

While it may be impossible to prevent your personal data from being stolen, there are steps you can take to reduce the risk of it being sold on the black market.

How to Protect Your Personal Data

1. Use Strong Passwords

   One of the most important steps you can take to protect your personal data is to use strong passwords. Use a combination of upper and lowercase letters, numbers, and special characters. Avoid using easily guessable passwords, such as your birthdate or the name of a pet. Use different passwords for each of your online accounts.

2. Enable Two-Factor Authentication

   Two-factor authentication (2FA) provides an extra layer of security by requiring a second form of authentication, such as a text message or fingerprint, in addition to your password. This can significantly reduce the risk of your personal data being stolen.

3. Be Cautious of Phishing Scams

   Phishing scams are a common way for hackers to steal personal data. Be cautious of emails or messages that ask for personal information, such as login credentials or credit card numbers. Always verify the legitimacy of the request before providing any personal data.

4. Use a Virtual Private Network (VPN)

   A VPN encrypts your internet connection and hides your IP address, making it more difficult for hackers to steal your personal data. Use a VPN whenever you connect to public Wi-Fi networks or when accessing sensitive data.

5. Keep Your Software Up to Date

   Keeping your software up to date is critical in protecting your personal data. Software updates often include security patches that address known vulnerabilities. Make sure to keep your operating system, antivirus software, and other applications up to date.

Conclusion

Your personal data may already be available on the black market, but by taking proactive steps to protect it, you can reduce the risk of it being sold or used for fraudulent purposes. Use strong passwords, enable two-factor authentication, be cautious of phishing scams, use a VPN, and keep your software up to date. By following these simple tips, you can protect your personal data and enjoy a safer and more secure online experience.

What are Digital Assets?

Digital assets refer to any online accounts, files, or data that have value or significance to an individual. These may include social media accounts, email accounts, cloud storage, digital photos, online banking, and other financial accounts. Managing these digital assets is an important part of estate planning, as they may contain personal information, intellectual property, or other sensitive data that should be protected.

The Importance of Password Management in Estate Planning

One of the challenges of managing digital assets is keeping track of the numerous passwords and login information for various online accounts. In many cases, individuals have dozens of online accounts, each requiring a unique username and password. Without a system for managing these passwords, it can be difficult for loved ones to access these accounts after an individual passes away.

Using a password manager can help simplify the process of managing digital assets in estate planning. A password manager is a secure online tool that stores login information for all your online accounts in one place. This tool can generate strong, unique passwords for each account, making it easier to manage your digital assets and protect your personal information.

How Password Management Can Help with Estate Planning

Here are a few ways that password management can help with estate planning:

1. Access to Digital Assets

   When someone passes away, their loved ones may need access to their digital assets in order to manage their affairs. This may include closing or transferring online accounts, retrieving important documents or files, or accessing financial accounts. If the deceased individual did not leave behind a way to access these accounts, it can be a challenge for their loved ones to manage their digital assets.

   By using a password manager, individuals can store all their login information in one place and share access with their designated beneficiaries. This can make it easier for loved ones to access important digital assets after an individual passes away.

2. Simplified Account Management

   Using a password manager can help simplify the process of managing online accounts during an individual’s lifetime. Rather than trying to remember dozens of different passwords or using the same password for multiple accounts, individuals can use a password manager to generate strong, unique passwords for each account. This can help protect their personal information and prevent security breaches.

3. Secure Storage

   Password managers are designed to be secure and protect sensitive information. This can help ensure that digital assets are protected during an individual’s lifetime and after they pass away. By using a password manager, individuals can be confident that their login information is stored securely and only accessible by authorized individuals.

Choosing a Password Manager for Estate Planning

When choosing a password manager for estate planning, it’s important to select a tool that is secure, easy to use, and offers the features you need. Some password managers offer advanced features like the ability to designate beneficiaries or automatically transfer assets after an individual passes away.

It’s also important to ensure that your designated beneficiaries are aware of your password manager and how to access it. You may want to include instructions in your will or trust or share the information with your beneficiaries directly.

Conclusion

Managing digital assets is an important part of estate planning, and using a password manager can help simplify the process. By storing all your login information in one secure location, you can make it easier for your loved ones to access important digital assets after you pass away. When choosing a password manager for estate planning, be sure to select a tool that is secure, easy to use, and offers the features you need.

Pros of Using Free Services on the Internet

1. Cost

   The most obvious benefit of using free services on the internet is that they don’t cost anything. This is particularly appealing for individuals and businesses who may not have the financial resources to pay for expensive software or subscription-based services.

2. Convenience

   Many free services on the internet are designed to be user-friendly and easy to use. They often require little to no technical knowledge, making them accessible to a wide range of users. This convenience can save time and effort, making it easier for people to complete tasks and stay connected with others.

3. Innovation

   Free services on the internet are often created by startups or individual developers who are looking to disrupt the market with innovative products. These services can bring fresh perspectives to the table and offer users unique features and functionality that may not be available with traditional paid services.

Cons of Using Free Services on the Internet

1. Privacy Risks

   One of the biggest concerns with using free services on the internet is the potential privacy risks associated with them. Many free services collect user data, such as browsing history and personal information, in order to sell targeted advertising or use it for other purposes. This data can be vulnerable to hacking or other security breaches, which can lead to identity theft or other privacy violations.

2. Lack of Control

   Users of free services on the internet often have little control over how their data is used or shared. This can be particularly concerning for businesses, which may have confidential or proprietary information that they need to protect.

3. Unreliability

   Free services on the internet are often offered by small or new companies that may not have the resources to offer the same level of reliability and support as more established companies. This can lead to service outages, lost data, or other issues that can disrupt business operations or cause other problems for users.

4. Limited Features

   Free services on the internet may offer limited features or functionality compared to paid services. This can be a drawback for users who need more advanced capabilities or who require specific features that may not be available with free services.

How to Mitigate Privacy Risks

While there are potential privacy risks associated with using free services on the internet, there are steps you can take to mitigate these risks. Here are a few tips:

1. Read the Terms and Conditions

   Before using a free service on the internet, be sure to read the terms and conditions carefully. This will help you understand how your data will be collected, used, and shared.

2. Limit the Data You Share

   When using free services on the internet, only share the minimum amount of data necessary to use the service. Avoid sharing sensitive or personal information, such as your social security number or financial information.

3. Use Strong Passwords

   Use strong passwords and two-factor authentication to protect your accounts from unauthorized access.

4. Monitor Your Accounts

   Regularly monitor your accounts for suspicious activity or unauthorized access. Report any issues immediately to the service provider or law enforcement.

Conclusion

Free services on the internet offer many benefits, but they also come with potential privacy risks. As a user, it’s important to be aware of these risks and take steps to protect your data. By understanding the pros and cons of using free services on the internet with regards to data privacy, you can make informed decisions about which services to use and how to use them safely.

Password managers are tools that help you store and manage your passwords securely. They generate complex passwords and store them in an encrypted database, which can be accessed using a master password or biometric authentication. But the question is, do you really need a password manager? Let’s explore the reasons why you should consider using one.

1. Password reuse is a security risk

   One of the biggest security risks is password reuse. People tend to use the same password for multiple accounts because it’s easier to remember. However, if a hacker manages to steal one password, they can gain access to all the accounts that use the same password. Password managers help you avoid this risk by generating unique and complex passwords for each account.

2. Complex passwords are hard to remember

   Another security risk is using weak passwords. Many people use simple passwords that are easy to guess, such as “123456” or “password”. Password managers generate complex passwords that are difficult to guess, such as “T&H7NpS@Jw#4Ku*”. These passwords are much more secure, but they can be hard to remember. Password managers remember them for you, so you don’t have to.

3. Two-factor authentication

   Many websites and apps now offer two-factor authentication (2FA) as an additional security layer that requires you to provide two forms of authentication to access an account. This could be something you know (such as a password) and something you have (such as a security token). Password managers can store your 2FA codes, so you don’t have to switch between apps to enter the code every time you log in.

4. Convenience

   Using a password manager is convenient because it saves you time and effort. You don’t have to remember multiple passwords or write them down on a piece of paper. Password managers auto-fill the login credentials for you, so you don’t have to type them every time. This saves you time and hassle, especially if you have many accounts.

5. Secure sharing

   Sometimes, you need to share your login credentials with someone else, such as a colleague or a family member. Password managers make this process easy and secure by allowing you to share the password without revealing it. You can share the password with someone else, and they can use it to log in without seeing the actual password.

6. Password hygiene

   Using a password manager helps you maintain good password hygiene. This means you can change your passwords regularly without worrying about remembering them. Password managers can also help you identify weak or duplicate passwords and prompt you to change them.

7. Protection against phishing attacks

   Phishing attacks are one of the most common cyber threats. Hackers create fake websites that look like legitimate ones and trick you into entering your login credentials. Password managers protect you against such attacks by verifying the website’s authenticity and auto-filling the login credentials only on the legitimate website.

8. Backup and recovery

   Password managers offer backup and recovery options, so you don’t have to worry about losing your passwords if your device gets lost or stolen. Some password managers also offer cloud storage, which means your passwords are synced across all your devices.

Now that we’ve explored the benefits of password managers, let’s look at some of the drawbacks.

1. Cost

   Some password managers are free, while others require a subscription fee. If you don’t have many online accounts, the cost may not be worth it for you.

2. Single Point of Failure

   If your password manager’s database is not encrypted and if a hacker gains access to it, they would have access to all of your passwords. While almost all modern password managers are designed to be highly secure with end-to-end encryption, this could still be a potential risk.

3. Learning Curve

   Password managers can take some time to set up and learn how to use effectively. If you’re not very tech-savvy, this may be a drawback.

In conclusion, whether or not you need a password manager depends on your individual needs and preferences. If you have a lot of different online accounts, struggle to remember all of your passwords, or want to improve your online security, a password manager may be a good option for you. However, if you only have a few accounts and feel comfortable managing your passwords on your own, you may not need one. Ultimately, the decision is up to you.