{"id":1153,"date":"2022-12-25T09:23:16","date_gmt":"2022-12-25T17:23:16","guid":{"rendered":"https:\/\/angrysysadmins.tech\/?p=1153"},"modified":"2022-12-25T09:23:19","modified_gmt":"2022-12-25T17:23:19","slug":"password-managers-migrate-from-lastpass-to-bitwarden","status":"publish","type":"post","link":"https:\/\/angrysysadmins.tech\/index.php\/2022\/12\/bailey\/password-managers-migrate-from-lastpass-to-bitwarden\/","title":{"rendered":"Password Managers: Migrate from LastPass to Bitwarden"},"content":{"rendered":"\n

Given LastPass has once more been compromised, and this time it has been confirmed that password vaults have been accessed by the attacker, now is a very good time to transition away from it. Personally I feel that Bitwarden is a very strong option for a password manager to transition to. It is open source, you can host it yourself, and their free tier is probably the most generous one there is. So this guide will go over how to transition from LastPass to a self hosted Bitwarden.<\/p>\n\n\n\n

Preparing a Domain<\/h2>\n\n\n\n

In order to have a pleasant experience with self-hosted Bitwarden, we’re going to need a domain to access it at. Free options such as no-ip<\/a> and duckdns <\/a>should work fine, or you can buy a domain or make a subdomain of one you already own. I’m personally going with the last option and am going to redact what the domain is. Just make sure you have a domain and it points to your server’s IP.<\/p>\n\n\n\n

Setting up the Server<\/h2>\n\n\n\n

First we’ll set up the Bitwarden instance. It runs in Docker, and doesn’t require much in terms of host resources. So basically any tier of a VPS (Linode, Digital Ocean, Vultr, etc) should be sufficient, or you can host it on your own hardware. Oracle also currently has a weirdly generous free tier on their cloud service, probably attempting anything they can to get some of AWS and Azure’s business.<\/p>\n\n\n\n

Docker<\/h3>\n\n\n\n

Once you have a server, step one is installing Docker and Compose. This process will change a bit depending on what flavor your host distro is. I am going to assume Ubuntu for any installs going forward, but once things are installed the process should be the same for any version of Linux.<\/p>\n\n\n\n

sudo apt install apt-transport-https ca-certificates curl software-properties-common\n\ncurl -fsSL https:\/\/download.docker.com\/linux\/ubuntu\/gpg | sudo gpg --dearmor -o \/usr\/share\/keyrings\/docker-archive-keyring.gpg\n\necho \"deb [arch=$(dpkg --print-architecture) signed-by=\/usr\/share\/keyrings\/docker-archive-keyring.gpg] https:\/\/download.docker.com\/linux\/ubuntu $(lsb_release -cs) stable\" | sudo tee \/etc\/apt\/sources.list.d\/docker.list > \/dev\/null\n\nsudo apt update\nsudo apt install docker-ce docker-compose-plugin<\/code><\/pre>\n\n\n\n
This will make sure we always have the latest version of Docker, from the Docker maintainers. And now for some extra setup that is recommended by Bitwarden and Docker. We’ll make a Bitwarden user and add it to the Docker group, so that the container can be ran by that user without being privileged to run commands as root.<\/p>\n\n\n\n
Create Bitwarden User and Folder<\/h3>\n\n\n\n
sudo useradd -m bitwarden\nsudo passwd bitwarden # make sure to set a strong password. Ubuntu can do adduser to combine these steps\n\nsudo groupadd docker # some distros will do this during the install\nsudo usermod -aG docker bitwarden # add bitwarden to the docker group\n\nsudo mkdir \/opt\/bitwarden # Bitwarden will use this folder for persistent storage\nsudo chmod -R 700 \/opt\/bitwarden\nsudo chown -R bitwarden:bitwarden \/opt\/bitwarden # only Bitwarden and root can access this folder<\/code><\/pre>\n\n\n\n
Install Bitwarden<\/h3>\n\n\n\n
su - bitwarden # become Bitwarden\ncd \/opt\/bitwarden\n\ncurl -Lso bitwarden.sh https:\/\/go.btwrdn.co\/bw-sh && chmod 700 bitwarden.sh\n.\/bitwarden.sh install<\/code><\/pre>\n\n\n\n
Enter your domain, say yes to Let’s Encrypt unless you plan to add SSL some other way, name your database (default will be vault). After that step it will ask you for an installation id. You can get one from https:\/\/bitwarden.com\/host\/<\/a>. Enter your email and it will give you your ID and key. Paste both in and wait while setup finishes.<\/p>\n\n\n\n
Before starting the server, there’s some config stuff that needs to be set. In \/opt\/bitwarden\/bwdata\/env\/global.override.env<\/code> near the bottom are settings for SMTP. I personally used gmail as it is easy to setup and removes the annoyance of running a personal email server:<\/p>\n\n\n\n
globalSettings__mail__replyToEmail=youremail@gmail.com\nglobalSettings__mail__smtp__host=smtp.gmail.com\nglobalSettings__mail__smtp__port=587\nglobalSettings__mail__smtp__ssl=true\nglobalSettings__mail__smtp__username=youreamil@gmail.com\nglobalSettings__mail__smtp__password=APP PASSWORD\n----\nadminSettings__admins=youremail@gmail.com<\/code><\/pre>\n\n\n\n
To generate an app password, you can go to https:\/\/security.google.com\/settings\/security\/apppasswords<\/a> and create one, which you will then paste into that setting. Double check everything is correct, and then we can start the server with:<\/p>\n\n\n\n
.\/bitwarden.sh start<\/code><\/pre>\n\n\n\n
The first start might take a little bit longer than future ones, but soon after running that command we can access the main webpage of our Bitwarden instance and create an account. If SMTP is working correctly, you’ll get an email from yourself when you make the account.<\/p>\n\n\n\n
Transferring Passwords from LastPass<\/h2>\n\n\n\n
LastPass allows users to export their passwords as a CSV file from their Vault, and Bitwarden is able to import that CSV. In your Vault, at the bottom left click Advanced Options -> Export. Re-enter your Master Password, and then it will give you the CSV.<\/p>\n\n\n\n
Now in Bitwarden, in the web UI choose Tools in the top menu -> Import Data on the sidebar. Choose LastPass as the format, and then select the CSV you downloaded.<\/p>\n\n\n\n
Once you’ve confirmed everything looks correct, I strongly suggest ending your LastPass subscription and then deleting your account.<\/p>\n\n\n\n
Maintaining Bitwarden<\/h2>\n\n\n\n
To update Bitwarden’s container, you can su - bitwarden<\/code> and then run cd \/opt\/bitwarden && .\/bitwarden.sh update<\/code> to pull new versions of all the containers. If no one else should be able to make an account after you’ve made yours, edit \/opt\/bitwarden\/bwdata\/env\/global.override.env<\/code> and change globalSettings__disableUserRegistration=false<\/code> to true and then restart Bitwarden.<\/p>\n\n\n\n
To use the browser extension and applications, on the sign in page click on the Gear icon and then enter the URL of the self hosted instance. You’ll be able to sign in and access your passwords now.<\/p>\n","protected":false},"excerpt":{"rendered":"
Given LastPass has once more been compromised, and this time it has been confirmed that password vaults have been accessed by the attacker, now is a very good time to transition away from it. Personally I feel that Bitwarden is a very strong option for a password manager to transition to. It is open source, 
Read More »<\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[8,190],"tags":[6],"coauthors":[37],"class_list":["post-1153","post","type-post","status-publish","format-standard","hentry","category-linux","category-security","tag-linux"],"yoast_head":"\nPassword Managers: Migrate from LastPass to Bitwarden - Angry Sysadmins<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/angrysysadmins.tech\/index.php\/2022\/12\/bailey\/password-managers-migrate-from-lastpass-to-bitwarden\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Password Managers: Migrate from LastPass to Bitwarden - Angry Sysadmins\" \/>\n<meta property=\"og:description\" content=\"Given LastPass has once more been compromised, and this time it has been confirmed that password vaults have been accessed by the attacker, now is a very good time to transition away from it. Personally I feel that Bitwarden is a very strong option for a password manager to transition to. It is open source, Read More »\" \/>\n<meta property=\"og:url\" content=\"https:\/\/angrysysadmins.tech\/index.php\/2022\/12\/bailey\/password-managers-migrate-from-lastpass-to-bitwarden\/\" \/>\n<meta property=\"og:site_name\" content=\"Angry Sysadmins\" \/>\n<meta property=\"article:published_time\" content=\"2022-12-25T17:23:16+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2022-12-25T17:23:19+00:00\" \/>\n<meta name=\"author\" content=\"Cat Kasin\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Cat Kasin\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/angrysysadmins.tech\\\/index.php\\\/2022\\\/12\\\/bailey\\\/password-managers-migrate-from-lastpass-to-bitwarden\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/angrysysadmins.tech\\\/index.php\\\/2022\\\/12\\\/bailey\\\/password-managers-migrate-from-lastpass-to-bitwarden\\\/\"},\"author\":{\"name\":\"Cat Kasin\",\"@id\":\"https:\\\/\\\/angrysysadmins.tech\\\/#\\\/schema\\\/person\\\/151b2d23439b55b970060836f317a14d\"},\"headline\":\"Password Managers: Migrate from LastPass to Bitwarden\",\"datePublished\":\"2022-12-25T17:23:16+00:00\",\"dateModified\":\"2022-12-25T17:23:19+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/angrysysadmins.tech\\\/index.php\\\/2022\\\/12\\\/bailey\\\/password-managers-migrate-from-lastpass-to-bitwarden\\\/\"},\"wordCount\":756,\"commentCount\":0,\"keywords\":[\"Linux\"],\"articleSection\":[\"Linux\",\"Security\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/angrysysadmins.tech\\\/index.php\\\/2022\\\/12\\\/bailey\\\/password-managers-migrate-from-lastpass-to-bitwarden\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/angrysysadmins.tech\\\/index.php\\\/2022\\\/12\\\/bailey\\\/password-managers-migrate-from-lastpass-to-bitwarden\\\/\",\"url\":\"https:\\\/\\\/angrysysadmins.tech\\\/index.php\\\/2022\\\/12\\\/bailey\\\/password-managers-migrate-from-lastpass-to-bitwarden\\\/\",\"name\":\"Password Managers: Migrate from LastPass to Bitwarden - Angry Sysadmins\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/angrysysadmins.tech\\\/#website\"},\"datePublished\":\"2022-12-25T17:23:16+00:00\",\"dateModified\":\"2022-12-25T17:23:19+00:00\",\"author\":{\"@id\":\"https:\\\/\\\/angrysysadmins.tech\\\/#\\\/schema\\\/person\\\/151b2d23439b55b970060836f317a14d\"},\"breadcrumb\":{\"@id\":\"https:\\\/\\\/angrysysadmins.tech\\\/index.php\\\/2022\\\/12\\\/bailey\\\/password-managers-migrate-from-lastpass-to-bitwarden\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/angrysysadmins.tech\\\/index.php\\\/2022\\\/12\\\/bailey\\\/password-managers-migrate-from-lastpass-to-bitwarden\\\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/angrysysadmins.tech\\\/index.php\\\/2022\\\/12\\\/bailey\\\/password-managers-migrate-from-lastpass-to-bitwarden\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/angrysysadmins.tech\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Password Managers: Migrate from LastPass to Bitwarden\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/angrysysadmins.tech\\\/#website\",\"url\":\"https:\\\/\\\/angrysysadmins.tech\\\/\",\"name\":\"Angry Sysadmins\",\"description\":\"A site full of angry sysadmins here to vent and help\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/angrysysadmins.tech\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/angrysysadmins.tech\\\/#\\\/schema\\\/person\\\/151b2d23439b55b970060836f317a14d\",\"name\":\"Cat Kasin\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/e83bfa1b7d9ce082bd6b68938f580039db8d5571ad6c5d012e6a5243a189309e?s=96&d=mm&r=g23b0ffb86dd6c08514a66a6a50f7a0a9\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/e83bfa1b7d9ce082bd6b68938f580039db8d5571ad6c5d012e6a5243a189309e?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/e83bfa1b7d9ce082bd6b68938f580039db8d5571ad6c5d012e6a5243a189309e?s=96&d=mm&r=g\",\"caption\":\"Cat Kasin\"},\"description\":\"I build virtual environments and challenges for Cybersecurity students to complete as a way to gain experience before graduating and entering the workforce.\",\"url\":\"https:\\\/\\\/angrysysadmins.tech\\\/index.php\\\/author\\\/bailey\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Password Managers: Migrate from LastPass to Bitwarden - Angry Sysadmins","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/angrysysadmins.tech\/index.php\/2022\/12\/bailey\/password-managers-migrate-from-lastpass-to-bitwarden\/","og_locale":"en_US","og_type":"article","og_title":"Password Managers: Migrate from LastPass to Bitwarden - Angry Sysadmins","og_description":"Given LastPass has once more been compromised, and this time it has been confirmed that password vaults have been accessed by the attacker, now is a very good time to transition away from it. Personally I feel that Bitwarden is a very strong option for a password manager to transition to. It is open source, Read More »","og_url":"https:\/\/angrysysadmins.tech\/index.php\/2022\/12\/bailey\/password-managers-migrate-from-lastpass-to-bitwarden\/","og_site_name":"Angry Sysadmins","article_published_time":"2022-12-25T17:23:16+00:00","article_modified_time":"2022-12-25T17:23:19+00:00","author":"Cat Kasin","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Cat Kasin","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/angrysysadmins.tech\/index.php\/2022\/12\/bailey\/password-managers-migrate-from-lastpass-to-bitwarden\/#article","isPartOf":{"@id":"https:\/\/angrysysadmins.tech\/index.php\/2022\/12\/bailey\/password-managers-migrate-from-lastpass-to-bitwarden\/"},"author":{"name":"Cat Kasin","@id":"https:\/\/angrysysadmins.tech\/#\/schema\/person\/151b2d23439b55b970060836f317a14d"},"headline":"Password Managers: Migrate from LastPass to Bitwarden","datePublished":"2022-12-25T17:23:16+00:00","dateModified":"2022-12-25T17:23:19+00:00","mainEntityOfPage":{"@id":"https:\/\/angrysysadmins.tech\/index.php\/2022\/12\/bailey\/password-managers-migrate-from-lastpass-to-bitwarden\/"},"wordCount":756,"commentCount":0,"keywords":["Linux"],"articleSection":["Linux","Security"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/angrysysadmins.tech\/index.php\/2022\/12\/bailey\/password-managers-migrate-from-lastpass-to-bitwarden\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/angrysysadmins.tech\/index.php\/2022\/12\/bailey\/password-managers-migrate-from-lastpass-to-bitwarden\/","url":"https:\/\/angrysysadmins.tech\/index.php\/2022\/12\/bailey\/password-managers-migrate-from-lastpass-to-bitwarden\/","name":"Password Managers: Migrate from LastPass to Bitwarden - Angry Sysadmins","isPartOf":{"@id":"https:\/\/angrysysadmins.tech\/#website"},"datePublished":"2022-12-25T17:23:16+00:00","dateModified":"2022-12-25T17:23:19+00:00","author":{"@id":"https:\/\/angrysysadmins.tech\/#\/schema\/person\/151b2d23439b55b970060836f317a14d"},"breadcrumb":{"@id":"https:\/\/angrysysadmins.tech\/index.php\/2022\/12\/bailey\/password-managers-migrate-from-lastpass-to-bitwarden\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/angrysysadmins.tech\/index.php\/2022\/12\/bailey\/password-managers-migrate-from-lastpass-to-bitwarden\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/angrysysadmins.tech\/index.php\/2022\/12\/bailey\/password-managers-migrate-from-lastpass-to-bitwarden\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/angrysysadmins.tech\/"},{"@type":"ListItem","position":2,"name":"Password Managers: Migrate from LastPass to Bitwarden"}]},{"@type":"WebSite","@id":"https:\/\/angrysysadmins.tech\/#website","url":"https:\/\/angrysysadmins.tech\/","name":"Angry Sysadmins","description":"A site full of angry sysadmins here to vent and help","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/angrysysadmins.tech\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/angrysysadmins.tech\/#\/schema\/person\/151b2d23439b55b970060836f317a14d","name":"Cat Kasin","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/e83bfa1b7d9ce082bd6b68938f580039db8d5571ad6c5d012e6a5243a189309e?s=96&d=mm&r=g23b0ffb86dd6c08514a66a6a50f7a0a9","url":"https:\/\/secure.gravatar.com\/avatar\/e83bfa1b7d9ce082bd6b68938f580039db8d5571ad6c5d012e6a5243a189309e?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/e83bfa1b7d9ce082bd6b68938f580039db8d5571ad6c5d012e6a5243a189309e?s=96&d=mm&r=g","caption":"Cat Kasin"},"description":"I build virtual environments and challenges for Cybersecurity students to complete as a way to gain experience before graduating and entering the workforce.","url":"https:\/\/angrysysadmins.tech\/index.php\/author\/bailey\/"}]}},"_links":{"self":[{"href":"https:\/\/angrysysadmins.tech\/index.php\/wp-json\/wp\/v2\/posts\/1153","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/angrysysadmins.tech\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/angrysysadmins.tech\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/angrysysadmins.tech\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/angrysysadmins.tech\/index.php\/wp-json\/wp\/v2\/comments?post=1153"}],"version-history":[{"count":3,"href":"https:\/\/angrysysadmins.tech\/index.php\/wp-json\/wp\/v2\/posts\/1153\/revisions"}],"predecessor-version":[{"id":1158,"href":"https:\/\/angrysysadmins.tech\/index.php\/wp-json\/wp\/v2\/posts\/1153\/revisions\/1158"}],"wp:attachment":[{"href":"https:\/\/angrysysadmins.tech\/index.php\/wp-json\/wp\/v2\/media?parent=1153"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/angrysysadmins.tech\/index.php\/wp-json\/wp\/v2\/categories?post=1153"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/angrysysadmins.tech\/index.php\/wp-json\/wp\/v2\/tags?post=1153"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/angrysysadmins.tech\/index.php\/wp-json\/wp\/v2\/coauthors?post=1153"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}