Users without permission can reveal passwords with Chrome.

Hello 1Password team and community,

As you know in 1Password Business we can limit the permissions that certain users to (not reveal passwords) and just used them... But if they enable the password saving function in Chrome (or any browser) then they can reveal and copy passwords.

What can we do? This does not allow from protect our passwords with work groups.

Thank you!


1Password Version: Not Provided
Extension Version: Not Provided
OS Version: Not Provided
Sync Type: Not Provided


1Password Version: Not Provided
Extension Version: Not Provided
OS Version: Not Provided
Sync Type: Not Provided

Comments

  • JadC
    JadC
    1Password Alumni
    edited July 2018

    Hi @franciscoesser, the reveal password permission does NOT guarantee that the password can never be seen. Indeed, if a user has the ability to to fill a password but not reveal it, there is nothing stopping a user from finding clever ways around it that are out of our control (e.g. viewing the password in the "Save password" browser prompt). We added this feature due to user demand, but it has its limitations.

    The only way to ensure that a user can't read the password is to not give them access to it.

    You can read more about client permissions here: Client-enforced permissions.

    Please let us know if you have any other questions or concerns.

This discussion has been closed.