In my experience, everything synced across beautifully.Īll told, I had 1Password up and running on three phones and four computers in about 20 minutes, which includes removing LastPass from those devices. Ultimately, it boils down to two steps: export your LastPass vault, then import it to 1Password. In fact, 1Password has an excellent guide on doing just that on its support site. The switch literally took like five minutes. That’s actually so incorrect I feel stupid just saying it. In my head, this was going to take hours. I have an embarrassing confession: the main reason I didn’t switch sooner is that I didn’t want to spend the time to do it. Switching Was More Painless Than I Ever Expected That said, 1Password works just as well, so you’re not losing anything if you make the leap.
iOS password autofill options seem to work much more reliably than Android’s, as I haven’t experienced any problems with LastPass on iOS. Now, to be fair, if you’re an iOS user, you probably haven’t experienced any of these issues. LastPass doesn’t have anything like that. After that, the association is stored, so logging in the next time will be even easier. And in the case when it doesn’t associate a password from a site with its corresponding app, you can search directly from the prompt and assign the password to the site right there-it takes just a few taps. For starters, there hasn’t been a single time that it hasn’t offered a prompt on a password box. And there isn’t a way to search directly from the autofill prompt.Īgain, 1Password fixes all of those issues. And others, it prompts but says there are no saved passwords for that app/site. I’m not sure what the determining factor is here, but sometimes the autofill feature works fine on LastPass.
One of my biggest peeves with LastPass is how utterly unreliable the Android app’s autofill option has been-even after Google implemented the autofill API, which I hoped would solve these issues. The Android App Is Far More Reliable You can search the 1Password vault right from the autofill dialog Cam Even if you’re not considering a switch right now, it’s worth a read. It’s a link to the 1Password blog about what would happen if the company is ever part of a breach, which starts with the words “1Password has never been hacked.” If you’re considering a switch, this is worth a read. It’s fair to give credit where it’s due.īut if you Google “ 1password data breach” the first option isn’t some high-profile leak that 1Password was a part of. And in all of those cases, LastPass did a notable job of disabling or patching these vulnerabilities. To be fair, some of these weren’t major just exploits that were discovered. Since 2011, LastPass has been involved in five data breaches or other security incidents-2011, 2015, 2016, 2017, and 2019. But it’s been years now and neither of those things have been done. Now, LastPass could fix both of these issues pretty easily by forcing 2FA and auto-locking the vault by default. (If you use LastPass and don’t want to switch, please enable this feature Account Options > Extensions Preferences > Log Out after this many minutes of inactivity.) Why isn’t this enabled by default? Both 1Password and LastPass lock the vault after a period of inactivity on mobile, but the same doesn’t apply to browser extensions. You know what else 1Password does that LastPass doesn’t? Auto-lock the vault in the Chrome extension by default. That’s a big level up on security for all your passwords. This key is also stored on your trusted devices, so it’s easy to keep secure but hard to lose. The key is automatically generated and shared with you in a document when you sign up for 1Password. This is a highly complex key that is required every time you log in on a new device (note: only on the first log in-after the device is confirmed, you can log in with just your username and password). First of all, it doesn’t just force 2FA out of the box, but it sets a “secret key” when you create your account. You should not have to opt in to better security, especially in a password manager.īut 1Password does things differently. You can change this behavior in LastPass’ extension settings, but it’s just baffling that auto-lock isn’t enabled by default. That’s a disaster just waiting to happen. At that point, anyone who has access to your computer also has access to your passwords. After that, as long as the computer stays online, you’ll never be asked to log in again.
And if you install the Chrome extension, you only have to log in once.