bitwarden/help
1
0
Fork 0
mirror of https://github.com/bitwarden/help synced 2025-12-06 00:03:30 +00:00
Code Issues Releases Wiki Activity

New 'Business Resources' category & some cleanup of the articles therein (#723)

Browse Source
This commit is contained in:
fred_the_tech_writer
2021-09-02 09:53:27 -04:00
committed by GitHub
parent 95728a8b73
commit 01dbf48dd6
9 changed files with 191 additions and 229 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
_articles/getting-started/proof-of-concept.md
View File

@@ -1,12 +1,12 @@
---
layout: article
title: Proof-of-Concept Project Checklist
categories: [organizations]
categories: [business]
featured: false
popular: false
hidden: true
hidden: false
tags: [project guide, poc]
order: 99
order: 05
redirect_from:
- /article/bitwarden-proof-of-concept-project-guide/
---

206
_articles/importing/teams-enterprise-migration-guide.md
View File

@@ -1,37 +1,42 @@
---
layout: article
title: Teams and Enterprise Organization Migration Guide
categories: [import-export]
title: Teams and Enterprise Migration Guide
categories: [business]
featured: false
popular: false
hidden: false
tags: [import, teams, enterprise, onboarding, security]
order: 11
order: 04
---
## Bitwarden: Making migration easy
Securing your Organization with Bitwarden is straightforward and secure.
Secure migration of your Organization with Bitwarden is straightforward and secure. Simply follow the steps in this guide to migrate data and users from your existing password manager:
Simply follow the below steps to migrate data and users from your existing password manager:
1. [Export your data](#step-1-export-your-data).
2. [Create and configure your Bitwarden Organization](#step-2-setup-your-bitwarden-organization).
3. [Import your data into Bitwarden](#step-3-import-data-to-your-organization).
4. [Onboard your users](#step-4-onboard-users-to-the-organization).
5. [Configure access to Collections and Vault items](#step-5-configure-access-to-collections-and-items).
1. [Export your data](#exporting-data)
2. [Create and configure your Bitwarden Organization](#creating-an-organization)
3. [Import your data into Bitwarden](#importing-data)
4. [Onboard your users](#onboarding-users) and [share](#sharing-collections-and-items)
If you need assistance during your migration, our [Customer Success team is here to help!](#migration-support)
{% callout success %}
If you need assistance during your migration, our [Customer Success team is here to help](https://bitwarden.com/contact){:target="\_blank"}!
{% endcallout %}
## Scope
This document will describe the best practices for migrating secure data from your current password manager(s) to a Bitwarden Teams or Enterprise Organization, building an infrastructure for security based on simple and scalable methods.
This document describes the best practices for migrating secure data from your current password manager(s) to a Bitwarden [Teams or Enterprise Organization]({{site.baseurl}}/article/about-organizations/), building an infrastructure for security based on simple and scalable methods.
Password management is crucial for organizational security and operational efficiency. Providing insight into the best methods to perform migration and configuration is designed to minimize the trial-and-error approach that is often needed when exchanging enterprise tools.
The below steps are listed in the recommended order for ease of use and smooth onboarding for users.
Steps in this document **are listed in the recommended order** for ease of use and smooth onboarding for users.
## Exporting data
## Step 1: Export your Data
Exporting your data from another password manager may be a bit tricky. We recommend paying special attention to the location of the following types of data during export:
Exporting data from another password manager will be different for each solution, and in some cases may be a bit tricky. Use one of our [Import & Export Guides]({{site.baseurl}}/import-export/) for help, for example with exporting from [Lastpass]({{site.baseurl}}/article/import-from-lastpass/#export-from-lastpass) or [1Password]({{site.baseurl}}/article/import-from-1password/#export-from-1password).
Gathering a full export of your data may require assigning shared folders or items to a single user for export, or performing multiple exports between users with appropriate permissions. Additionally, exported data may include personal data alongside shared/organizational data, so be sure to remove personal items from the export file before [importing to Bitwarden](#).
{% callout info %}
We recommend paying special attention to the location of the following types of data during export:
- Secure documents
- Secure file attachments
@@ -40,131 +45,105 @@ Exporting your data from another password manager may be a bit tricky. We recomm
- Shared Folders
- Nested shared items
- Any customized structures within your password management infrastructure
{% endcallout %}
### Important notes on exported data
## Step 2: Setup your Bitwarden Organization
Data imported into Bitwarden is defined as one of four item types:
- Login (username, password, 2FA keys)
- Card (Credit Cards, Bank Cards)
- Identity (Name, address fields, personal information)
- Secure Note
Bitwarden Organizations relate users and Vault items together for [secure sharing]({{site.baseurl}}/article/sharing/) of Logins, Notes, Cards, and Identities.
Bitwarden currently limits the length of item fields to 1,000 characters, and Secure Notes to 10,000 characters. Items that exceed that criteria should be saved as separate files (text, key, pem, ssh, etc.) and added as attachments to an item.
{% callout success %}
It's important that you create your Organization first and [import data to it directly]({{site.baseurl}}/article/import-to-org/), rather than importing the data to an individual account and then [moving items]({{site.baseurl}}/article/sharing/) to the Organization secondarily.
{% endcallout %}
- [More on Items](https://bitwarden.com/help/article/managing-items/)
- [Attaching a file to an item](https://bitwarden.com/help/article/attachments/)
1. **Create your Organization**. Start by creating your Organization. To learn how, check out [this article]({{site.baseurl}}/article/about-organizations/#create-an-organization).
Gathering a full export of your data across your existing password manager may require assigning all shared folders to a single user, or performing multiple exports - one for each segment of shared folders.
{% callout note %}To self-host Bitwarden, create an Organization on the Bitwarden cloud, generate a [license key](https://bitwarden.com/host/), and use the key to [unlock Organizations]({{site.baseurl}}/article/licensing-on-premise/#organization-license) on your server.{% endcallout %}
Exported data from your previous password manager may contain data from both your Personal vault, as well as any Shared folders that the exporting user was assigned to. Be sure to remove any personal vault items before importing data into a Bitwarden Organization.
2. **Onboard Administrative Users**. With your Organization created, further setup procedures can be made easier by onboarding some [administrative users]({{siter.baseurl}}/article/user-types-access-control). It's important that you **do not begin end-user onboarding** at this point, as there are a few steps left to prepare your Organization. Learn how to invite admins [here]({{site.baseurl}}/article/managing-users/#onboard-users).
3. **Configure Identity Services**. Bitwarden Enterprise Organizations support [Login with Single-Sign-On]({{site.baseurl}}/article/about-sso/) using either SAML 2.0 or OpenID Connect (OIDC). To configure SSO, navigate to the [Business Portal](https://bitwarden.com/help/article/about-business-portal/), accessible from the Web Vault by [Organization Owners and Administrators]({{site.baseurl}}/article/user-types-access-control/).
## Creating an Organization
4. **Enable Enterprise Policies**. [Enterprise Policies]({{site.baseurl}}/article/) enable Enterprise Organizations to implement roles for users, for example requiring use of Two-step Login. It is highly recommended that you configure Policies before onboarding users.
Shared or company-level data is stored in a Bitwarden Organization. The best practice is to create this Organization first and import it directly, instead of importing the data into an individual account and then sharing it with the organization secondarily.
## Step 3: Import Data to your Organization
For more on creating a Bitwarden Organization, visit [this article.](https://bitwarden.com/help/article/about-organizations/)
To import data to your Organization:
Self-hosted instances will need to create an Organization on the Bitwarden cloud instance to generate their [license key](https://bitwarden.com/host/) and can then proceed with [installing and configuring a Bitwarden Server instance.](https://bitwarden.com/help/article/install-on-premise/)
1. Open your Organization and navigate to the **Tools** tab:
{%callout%}
Self-hosting is available for Enterprise plans.
{%endcallout%}
{% image importing/org-tools.png Organization Tools %}
3. Select **Import Data** from the left-hand Tools menu.
3. From the format dropdown, choose a **File Format** (see [Import Recommendations](#import-recommendations) below).
4. Select the **Choose File** button and add the file to import.
### Configuring Identity services
{% callout warning %}Import to Bitwarden can't check whether items in the file to import are duplicative of items in your Vault. This means that **importing multiple files will create duplicative** Vault items if an item is already in the Vault and in the file to import.{% endcallout %}
5. Select the **Import Data** button to complete your import.
Bitwarden Enterprise plans support Login with Single-Sign-On using either SAML 2.0 or OpenID Connect (OIDC).
Currently, file attachments are not included in Bitwarden import operations and will need to be uploaded to your Vault manually. For more information, see [File Attachments]({% link _articles/features/attachments.md %}).
Each Bitwarden Organization can configure one SSO provider. Configuration for this is located in the [Business Portal](https://bitwarden.com/help/article/about-business-portal/), accessible from the Web Vault by Organization Owners and Administrators.
{% callout success %}
You should also recommend to employees that they export their personal data from your existing password manager and prepare it for import into Bitwarden. Learn more [here]({{site.baseurl}}/import-export/).
{% endcallout %}
For more details on Login with SSO configurations and examples of Identity Provider (IdP) settings and naming conventions, please visit [these help articles](https://bitwarden.com/help/article/about-sso/).
### Import Recommendations
### Enabling enterprise policies
When importing data to your Organization, you have two options:
Policies are found in the [Business Portal](https://bitwarden.com/help/article/about-business-portal/)
1. To import the default file format from your prior password manager.
2. To condition a Bitwarden-specific `.CSV` for import.
Policies allow you to control the actions of users within your Organization. It is recommended to configure these policies prior to onboarding users. For a complete list and details for Enterprise Policies, please see our helpful article [here.](https://bitwarden.com/help/article/policies/)
We recommend formatting your file for import as a Bitwarden `.CSV` for best results, or for advanced users, as a Bitwarden `.JSON` file. For instructions on shaping a Bitwarden-specific import file, refer to [this import guide]({{site.baseurl}}/article/condition-bitwarden-import/). For more import documentation, see [these articles]({{site.baseurl}}/import-export/).
## Importing data
## Step 4: Onboard Users to the Organization
Importing information into Bitwarden can be performed in both an Individual Vault and Organization Vault. The below instructions are for Organization Imports.
Bitwarden supports both manual onboarding via the Web Vault and automated onboarding by syncing to your existing directory service:
There are two options to import data into your Organization:
### Manual Onboarding
1. Using the default CSV export file from your prior password manager
2. Creating a Bitwarden specific CSV from your exported data
To ensure the security of your Organization, Bitwarden applies a 3-step process for onboarding a new member, [Invite](#invite) → [Accept](#accept) → [Confirm](#confirm). Learn how to invite new users [here]({{site.baseurl}}/article/managing-users/#onboard-users).
The best practice for most Organizations is to format your data into a Bitwarden CSV, or for advanced users, a Bitwarden JSON file for import into your Organization vault.
### Automated Onboarding
For instructions on shaping a Bitwarden specific import file, please refer to the guide [here.](https://bitwarden.com/help/article/condition-bitwarden-import/)
Automated user onboarding is available through [Bitwarden Directory Connector]({{site.baseurl}}/article/directory-sync), a standalone application available in a [Desktop app]({{site.baseurl}}/article/directory-sync-desktop/) and [CLI]({{site.baseurl}}/article/directory-sync-cli/) that will synchronize users and groups from your existing directory service.
A collection of data import and export documentation is available [here.](https://bitwarden.com/help/import-export/) to assist with imports from additional sources.
Users are automatically invited to join the Organization, and can be confirmed manually or automatically using the [Bitwarden CLI tool](https://bitwarden.com/help/article/cli/#confirm).
{%callout%}
Importing multiple times will create duplicate records in your Bitwarden Vault.
{%endcallout%}
- Learn more about how syncing works [here]({{site.baseurl}}/article/directory-sync/).
- Discover how to configure user and group filters for Directory Connector [here]({{site.baseurl}}/article/user-group-filters/).
- See more Directory Connector documentation [here]({{site.baseurl}}/directory-connector/).
### Individual user data import
## Step 5: Configure Access to Collections and Items
Bitwarden supports a variety of import formats from other password management platforms. Individual users can import their data into their Bitwarden Vault on their own, and do not require Administrative assistance.
For more on importing individual data, check out our helpful article [here.](https://bitwarden.com/help/import-export/)
## Onboarding users
Bitwarden supports both manual and automated user invitation and onboarding. Best practice is to manually onboard any necessary Administrative users during configuration and initial deployment, ensuring all Organization configurations including Enterprise Policies, Login with SSO, and Directory Connector are ready prior to automating the User invitation and onboarding process.
### Manual onboarding
Manual onboarding is done via the Web Vault. More information on manual user onboarding can be found in this [helpful article](https://bitwarden.com/help/article/managing-users/)
### Automated onboarding
Automated user onboarding is also available when leveraging Bitwarden Directory Connector - a standalone application available in a [Desktop app](https://bitwarden.com/help/article/directory-sync-desktop/) and a [CLI tool](https://bitwarden.com/help/article/directory-sync-cli/) - synchronizing user and group information to the Bitwarden Organization. These users are automatically invited to join the Organization, and can be confirmed manually or automatically using the [Bitwarden CLI tool](https://bitwarden.com/help/article/cli/#confirm).
- Learn more about how syncing works [here.](https://bitwarden.com/help/article/directory-sync/)
- Discover how to configure user and group filters for Directory Connector [here.](https://bitwarden.com/help/article/user-group-filters/)
- Documentation for multiple Directory Connector options is available [here.](https://bitwarden.com/help/directory-connector/)
## Sharing Collections and items
Share Vault items with your end-users by configuring access through Collections, Groups, and Group-level or user-level permissions:
### Collections
Bitwarden empowers Teams and Organizations to share sensitive data easily, securely, and in a scalable manner. This is accomplished by segmenting shared secrets, items, logins, etc. into Collections.
Bitwarden empowers Teams and Organizations to share sensitive data easily, securely, and in a scalable manner. This is accomplished by segmenting shared secrets, items, logins, etc. into **Collections**.
Collections organize secure items in many ways, including but not limited to: business function, group assignment, application access levels, or even security protocols. Collections perform the same functions as shared folders, allowing for consistent access control and sharing amongst groups of users.
Collections can organize secure items in many ways, including but not limited to business function, group assignment, application access levels, or even security protocols. Collections function as shared folders, allowing for consistent access control and sharing amongst groups of users.
Shared folders from other password managers can be imported as Collections into Bitwarden by using the Organization Import template found [here](https://bitwarden.com/help/files/bitwarden_export_org.csv) and placing the name of the shared folder in the Collection column.
Shared folders from other password managers can be imported as Collections into Bitwarden by using the Organization Import template found [here](https://bitwarden.com/help/files/bitwarden_export_org.csv) and placing the name of the shared folder in the `Collection` column:
Example Export:
{%image /migration/lp-export.png Note: shared folders are listed in the grouping column %}
Example Bitwarden Organization Import
Example Bitwarden Organization Import:
{%image /migration/bw-import.png Note: shared folders are now in the Collections column %}
Collections can be shared with both Groups and Individual users. Limiting the number of individual users that can access a Collection will make management more efficient for Administrators.
For more information on assigning Collections to Users and Groups, please refer to our help article [here.](https://bitwarden.com/help/article/about-collections/)
Collections can be shared with both Groups and Individual users. Limiting the number of individual users that can access a Collection will make management more efficient for Administrators. Learn more [here]({{site.baseurl}}/article/about-collections/).
### Groups
Leveraging Groups for sharing is the most effective way to provide credential and secret access. Ideally Groups are mirrored from an LDAP service, however Bitwarden supports automatic Group synchronization via the Directory Connector application, as well as manually created ad-hoc Groups.
As a part of deployment preparations, it is possible to synchronize **just** groups from the LDAP directory before synchronization of Users begins, such that Collections can be assigned to Groups before users begin accessing Bitwarden.
For more information on filtering and synchronization of Users with the Bitwarden Directory Connector, please check out the article [here.](https://bitwarden.com/help/article/user-group-filters/)
As a part of deployment preparations, it is possible to synchronize **just** groups from the LDAP directory before synchronization of Users begins, such that Collections can be assigned to Groups before users begin accessing Bitwarden. Learn more about syncing Groups with Directory Connector [here]({{site.baseurl}}/article/user-group-filters/).
### Permissions
Bitwarden Collection permissions are assigned on the assignment of the Group or User to a particular Collection. This means that each Group or User can be configured with permissions for the same Collection.
Permissions for Bitwarden Collections can be assigned on the Group or User-level. This means that each Group or User can be configured with permissions for the same Collection. Collection permissions include options for **Read Only** and **Hide Passwords**.
Collection permissions are easily configured with options for Read Only and Hide Passwords.
Read Only prevents users from adding new items to that Collection, as well as preventing the editing or deleting of existing items.
Hide Passwords prevents the users from seeing the Password field, TOTP field, and any custom field for an item that is listed as hidden. This permission is best used for Collections of items that are able to be auto-filled in a browser, since copying and pasting of credentials is disabled when this is configured.
Bitwarden uses an union of permissions to determine final access permissions for a User and a Collection Item.
Bitwarden uses an union of permissions to determine final access permissions for a User and a Collection Item. Learn more [here]({{site.baseurl}}/article/user-types-access-control/#access-control).
**Example:**
@@ -172,47 +151,6 @@ Bitwarden uses an union of permissions to determine final access permissions for
- User A is also a member of the Support Management group, which has access to the Support Collection, with read-write access.
- In this scenario, User A will be able to read-write to the Collection.
More information on permissions can be found on our help site [here.](https://bitwarden.com/help/article/user-types-access-control/#access-control)
## Migration Support
## Migration support
The Bitwarden Customer Success team is available 24/7 with priority support for Enterprise and Teams Organizations. If you need assistance or have questions, please do not hesitate to contact us here: [bitwarden.com/contact](https://bitwarden.com/contact).
## Terms and equivalent references
### Organization
- A Bitwarden Organization is the encompassing “object” that relates all data for a given sharing entity. Click [here](https://bitwarden.com/help/article/about-organizations/) for more information on Organizations.
### Folders for Individual Vaults
- Within Bitwarden, individual Users can create Folders and assign items to those folders to help organize their Vault. Folders function much like tags since they are linked to your items by reference, and deleting a folder does not delete the data inside it. Organizations use Collections to group secure items that need to be shared with the same user(s) or user group(s).
### Collections for Organizational Vaults
- Collections are used by Bitwarden Organizations to group secure items that need to be shared with the same user(s) or user group(s).
- Most often exported shared folders become Collections, however, you can organize Collections in a number of ways.
### User
- Any user who is a member of a Bitwarden Organization
### Group
- Most password managers support User Groups. When migrating to Bitwarden, you can leverage [BWDC](https://bitwarden.com/help/directory-connector/) to synchronize your LDAP groups into your Bitwarden Organization.
### Read Only
- A permission that prevents users from adding new data to items within a Collection. Users can see / access all data within items but cannot add new items or modify existing data. This permission is set on a User or Group assignment to a Collection.
### Hide Password
- Permission to prevent users from seeing any part of a secure item within a Collection.
### User Type
- Users within Bitwarden can be granted a "user-type". Users onboarded via Directory Connector are defaulted to “Users” that can only access items that they are assigned directly and do not have access to reconfigure sharing or permissions.
### Vault
- Storage area for encrypted data. Bitwarden users that are members of an Organization have an Individual and Organization Vault, encrypted with separate keys.
The Bitwarden Customer Success team is available 24/7 with priority support for Enterprise and Teams Organizations. If you need assistance or have questions, please do not hesitate to [contact us](https://bitwarden.com/contact).

3
_articles/miscellaneous/cli.md
View File

@@ -1,10 +1,11 @@
---
layout: article
title: Bitwarden CLI
categories: [miscellaneous]
categories: [getting-started]
featured: false
popular: false
tags: [cli, command, script, bash, shell, powershell, terminal]
order: 07
---
The Bitwarden command-line interface (CLI) is a powerful, fully-featured tool for accessing and managing your Vault. Most features that you find in other Bitwarden client applications (Desktop, Browser Extension, etc.) are available from the CLI.

4
_articles/organizations/onboarding-and-succession.md
View File

@@ -1,10 +1,10 @@
---
layout: article
title: Onboarding and Succession
categories: [organizations]
categories: [business]
featured: true
popular: false
hidden: true
hidden: false
tags: [onboarding]
order: 10
redirect_from:

152
_articles/plans-and-pricing/enterprise-feature-list.md
View File

@@ -1,77 +1,91 @@
---
layout: article
title: Bitwarden for Enterprise - Feature List
categories: [plans-and-pricing]
title: Bitwarden for Enterprise Features Datasheet
categories: [business]
featured: false
popular: false
hidden: false
tags: [enterprise, plans, organization]
order: 04
order: 03
---
|ENTERPRISE FEATURES |DESCRIPTION|
|---------------------|----------------------|
|**Application range and ease-of-use**| |
|Wide download and deployment options | Cloud, private cloud, self-hosted, mobile, desktop, CLI <br>[https://bitwarden.com/download/](https://bitwarden.com/download/) |
|Mobile Apps (with Mobile Login Controls) | Available for iOS and Android <br> [https://bitwarden.com/help/article/getting-started-mobile/](https://bitwarden.com/help/article/getting-started-mobile/) |
|Browser extensions | Chrome, Firefox, Opera, Edge, Vivaldi, Brave, Tor, Safari <br> [https://bitwarden.com/help/article/getting-started-browserext/](https://bitwarden.com/help/article/getting-started-browserext/) |
|Desktop applications | Windows, Mac, Linux <br> [https://bitwarden.com/help/article/directory-sync-desktop/](https://bitwarden.com/help/article/directory-sync-desktop/) |
|Web Vault | Fully encrypted web application at vault.bitwarden.com |
|Streamlined UI design | |
|**Administrative features and capabilities**| |
|Admin Password Reset | Provides designated administrators the ability to reset passwords on end-user accounts if an employee loses or forgets their Bitwarden password <br> [https://bitwarden.com/help/article/admin-reset/](https://bitwarden.com/help/article/admin-reset/)|
|Directory Connector | Synchronize with your existing directory. Provision, de-provision users, groups, group associations|
|User type access controls| Custom role, granular controls (hide passwords, read only), password inheritance and custodianship, LDAP group permissions, Personal and Company Vaults |
|User management |Add/remove seats, onboard/offboard users (flags and assistance) |
|Enterprise Policies |Enables Enterprise Organizations to enforce security rules for all users, for example mandating use of Two-step Login. [https://bitwarden.com/help/article/policies/](https://bitwarden.com/help/article/policies/) |
|**Security**| |
|Secure storage for Logins, Notes, Cards, and Identities| Bitwarden Vault items |
|Secure password generator |Generate secure, random passwords <br> [https://bitwarden.com/password-generator/](https://bitwarden.com/password-generator/) |
|Encrypted export |Download encrypted exports from Bitwarden clients <br> [https://bitwarden.com/help/article/encrypted-export/](https://bitwarden.com/help/article/encrypted-export/) |
|Biometrics, mobile |Android (Google Play or FDroid); iOS (Touch ID, Face ID) <br> [https://bitwarden.com/help/article/biometrics/](https://bitwarden.com/help/article/biometrics/) |
|Biometrics, desktop | Windows (Windows Hello using PIN, Facial Recognition, or other hardware that meets Windows Hello biometric requirements); macOS (Touch ID) <br> [https://bitwarden.com/help/article/biometrics/](https://bitwarden.com/help/article/biometrics/)|
|Biometrics, browser extensions |Chromium-based browsers (Chrome, Edge, Opera, Brave, etc.), Firefox 87+, and Safari 14+ <br> [https://bitwarden.com/help/article/biometrics/](https://bitwarden.com/help/article/biometrics/)|
|Emergency Access | Users can designate and manage trusted emergency contacts <br> [https://bitwarden.com/help/article/emergency-access/](https://bitwarden.com/help/article/emergency-access/) |
|Zero knowledge encryption |All Vault data is end-to-end encrypted <br> [https://bitwarden.com/blog/post/bitwarden-network-security-assessment-2020/](https://bitwarden.com/blog/post/bitwarden-network-security-assessment-2020/) |
| Account fingerprint phrase |Uniquely and securely identifies a Bitwarden user account when encryption-related operations are performed. <br> [https://bitwarden.com/help/article/fingerprint-phrase/](https://bitwarden.com/help/article/fingerprint-phrase/)|
|Subprocessors| Full list: [https://bitwarden.com/help/article/subprocessors/](https://bitwarden.com/help/article/subprocessors/) |
|**Authentication**| |
|Two factor authentication| [https://bitwarden.com/help/article/setup-two-step-login/](https://bitwarden.com/help/article/setup-two-step-login/) |
|Login with SSO | Use your existing Identity Provider to perform authentication for Bitwarden via SAML or OPENID <br> [https://bitwarden.com/help/article/about-sso/](https://bitwarden.com/help/article/about-sso/) |
|Two-step login |Duo for Organizations <br> [https://bitwarden.com/help/article/setup-two-step-login-duo/](https://bitwarden.com/help/article/setup-two-step-login-duo/) |
|Touch ID/ Windows Hello Support |Configure Bitwarden to accept biometrics was a method to unlock your Vault <br> [https://bitwarden.com/help/article/biometrics/](https://bitwarden.com/help/article/biometrics/)|
|**Compliance, Audits, Certifications**| |
|SOC 2 Type 2 |[https://bitwarden.com/blog/post/bitwarden-achieves-soc-2-certification/](https://bitwarden.com/blog/post/bitwarden-achieves-soc-2-certification/)|
|2018 Security Assessment|[https://bitwarden.com/blog/post/third-party-security-audit/](https://bitwarden.com/blog/post/third-party-security-audit/)|
|2020 Security Assessment | [https://bitwarden.com/blog/post/bitwarden-network-security-assessment-2020/](https://bitwarden.com/blog/post/bitwarden-network-security-assessment-2020/)|
|White box testing | Performed by unit tests and QA Engineers |
|Black box testing |Performed via automation or manual testing |
|Bug bounty program |HackerOne <br> [https://hackerone.com/bitwarden/?type=team](https://hackerone.com/bitwarden/?type=team)|
|**Privacy**| |
|GDPR, CCPA, HIPAA, Privacy Shield | [https://bitwarden.com/compliance/](https://bitwarden.com/compliance/)|
|**Reporting**| |
|Vault Health reports| Exposed passwords, reused passwords, weak passwords, and more <br>[https://bitwarden.com/help/article/reports/](https://bitwarden.com/help/article/reports/)|
| Data breach reports |compromised data (email addresses, passwords, credit cards, DoB, etc.) in known breaches [https://bitwarden.com/help/article/reports/](https://bitwarden.com/help/article/reports/)|
|Event logs |User, item, collection, group, organization events <br> [https://bitwarden.com/help/article/event-logs/](https://bitwarden.com/help/article/event-logs/)|
|**Directory integration**| |
| Bitwarden Directory Connector|Sync with Active Directory or LDAP, Azure, G Suite, Okta, OneLogin <br>[https://bitwarden.com/help/article/directory-sync/](https://bitwarden.com/help/article/directory-sync/)|
|**Single Sign On (SSO)**| |
|SAML 2.0|Enabling login with SSO for SAML 2.0 <br> [https://bitwarden.com/help/article/configure-sso-saml/](https://bitwarden.com/help/article/configure-sso-saml/)|
|OIDC | Enabling login with SSO for OpenID Connect <br> [https://bitwarden.com/help/article/configure-sso-oidc/](https://bitwarden.com/help/article/configure-sso-oidc/) |
| Link existing account | Link existing account to SSO <br> [https://bitwarden.com/help/article/link-to-sso/](https://bitwarden.com/help/article/link-to-sso/) |
| Vault access| Authenticate Vault using SSO <br> [https://bitwarden.com/help/article/sso-access-your-vault/](https://bitwarden.com/help/article/sso-access-your-vault/)|
| **APIs and Extensibility** | |
|Programmatically accessible| Public and private APIs <br> [https://bitwarden.com/help/article/public-api/](https://bitwarden.com/help/article/public-api/) |
| Command line interface |Public and private APIs Fully featured CLI client application <br>[https://bitwarden.com/help/article/cli/](https://bitwarden.com/help/article/cli/)|
| Extensibility Plug-in and extension supports|Output log data via the API, automate workflows with the API and CLI|
|**Technical implementation**| |
|Passwords stored encrypted in-memory until revealed| [https://bitwarden.com/help/article/security-faqs/](https://bitwarden.com/help/article/security-faqs/) |
|Strong and flexible password generation| Configurable password generator. Policy for Password Generator strength <br>[https://bitwarden.com/password-generator/](https://bitwarden.com/password-generator/)
| Vendor cannot access passwords |Bitwarden employs a zero-knowledge encryption model with no ability to see customer vault data |
|Confirming to cryptography standards |[https://bitwarden.com/help/article/what-encryption-is-used/](https://bitwarden.com/help/article/what-encryption-is-used/) |
| **Resiliency** | |
|Local cache/offline access|[https://bitwarden.com/help/article/sso-faqs/](https://bitwarden.com/help/article/sso-faqs/) |
|**Extras**| |
|Temporary password sharing and generation| [https://bitwarden.com/help/article/authenticator-keys/](https://bitwarden.com/help/article/authenticator-keys/) |
|Auto clear clipboard after copying a password| [https://bitwarden.com/help/article/security-faqs/](https://bitwarden.com/help/article/security-faqs/) |
|Duplicate password detection| [https://bitwarden.com/help/article/reports/](https://bitwarden.com/help/article/reports/)|
This document describes and references the features available to Bitwarden Enterprise Organizations in several categories:
#### Application Range and Ease-of-use
|Enterprise Features|Description|
|-------------------|-----------|
|Deployment Options|Cloud, Private Cloud, and Self-hosted.|
|Web Application|Fully encrypted cloud web app at [https://vault.bitwarden.com](https://vault.bitwarden.com){:target="\_blank"}, or on your self-hosted server|
|Mobile Apps (with Mobile Login Controls)|Available for iOS and Android. [Learn more]({{site.baseurl}}/article/getting-started-mobile/).|
|Browser Extensions|Available for Chrome, Firefox, Opera, Edge, Vivaldi, Brave, Tor, and Safari. [Learn more]({{site.baseurl}}/article/getting-started-browserext/).|
|Desktop Applications|Available for Windows, Mac, and Linux. [Learn more]({{site.baseurl}}/article/directory-sync-desktop/).|
|CLI|Fully featured and self-documented command-line tool. [Learn more]({{site.baseurl}}/article/cli/).
|Streamlined UI Design|Simple and uniform interfaces across apps for complete ease-of-use.|
#### Administrative Features and Capabilities
|Enterprise Features|Description|
|-------------------|-----------|
|Simple User Management|Add or remove seats and onboard or offboard users directly from the Web Vault. [Learn more]({{site.baseurl}}/article/managing-users/).|
|Role Based Access Control|Assign role-based access for Organization users, including a custom role and granular permissions (e.g. Hide Passwords, Read-Only). [Learn more]({{site.baseurl}}/article/user-types-access-control/).|
|Directory Sync|Synchronize your Bitwarden Organization with your existing user directory. Provision and de-provision users, groups, and group associations. [Learn more]({{site.baseurl}}/article/directory-sync/).|
|Admin Password Reset |Designated administrators can reset Master Password of end-user accounts if an employee loses or forgets their Master Password. [Learn more]({{site.baseurl}}/article/admin-reset/).|
|Enterprise Policies|Enforce security rules for all users, for example mandating use of Two-step Login. [Learn more]({{site.baseurl}}/article/policies/).|
|Temporary Password Sharing and Generation| Create and share ephemeral data using Bitwarden Send. [Learn more]({{site.baseurl}}/article/about-send/).|
#### Reporting
|Enterprise Features|Description|
|-------------------|-----------|
|Vault Health Reports|Run reports for Exposed Passwords, Reused Passwords, Weak Passwords, and more. [Learn more]({{site.baseurl}}/article/reports/).|
|Data Breach Reports|Run reports for data compromised in knwon breaches (e.g. Email Addresses, Passwords, Credit Cards, DoB, etc.). [Learn more]({{site.baseurl}}/article/reports/).|
|Event Logs|Get timestamped records of events that occur within your Organization Vault for easy use in the Web Vault or ingestion by other systems. [Learn more]({{site.baseurl}}/article/event-logs/).|
#### Authentication
|Enterprise Features|Description|
|-------------------|-----------|
|2FA for Individuals|A robust set of 2FA options for any Bitwarden user. [Learn more]({{site.baseurl}}/article/setup-two-step-login/).|
|2FA at Organization-level|Enable 2FA via Duo for your entire Organization. [Learn more]({{site.baseurl}}/article/setup-two-step-login-duo/).|
|Biometric Authentication|Available for:<br>-Android (fingerprint unlock or face unlock) and iOS (Touch ID and Face ID)<br>-Windows Desktop Apps (Windows Hello using PIN, Facial Recognition, and more) and macOS Desktop Apps (Touch ID)<br>-Chromium, Firefox 87+, and Safari Browser Extensions<br><br>[Learn more]({{site.baseurl}}/article/biometrics/).|
|Login with SSO|Leverage your existing Identity Provider to authenticate your Bitwarden Organization users via SAML 2.0 or OpenID Connect (OIDC). [Learn more]({{site.baseurl}}/article/about-sso/).|
#### Security
|Enterprise Features|Description|
|-------------------|-----------|
|Secure storage for Logins, Notes, Cards, and Identities|Bitwarden [Vault items]({{site.baseurl}}/article/managing-items/) are encrypted before being stored anywhere. [Learn more]({{site.baseurl}}/article/what-encryption-is-used/).|
|Zero Knowledge Encryption |All Vault data is end-to-end encrypted. [Learn more](https://bitwarden.com/blog/post/bitwarden-network-security-assessment-2020/).|
|Secure Password Generator|Generate secure, random, and unique passwords for every Vault item. [Learn more](https://bitwarden.com/password-generator/).|
|Encrypted Export|Download encrypted exports for secure storage of Vault data backups. [Learn more]({{site.baseurl}}/article/encrypted-exports/).|
|Biometric Authentication|Available for:<br>-Android (fingerprint unlock or face unlock) and iOS (Touch ID and Face ID)<br>-Windows Desktop Apps (Windows Hello using PIN, Facial Recognition, and more) and macOS Desktop Apps (Touch ID)<br>-Chromium, Firefox 87+, and Safari Browser Extensions<br><br>[Learn more]({{site.baseurl}}/article/biometrics/).|
|Emergency Access|Users can designate and manage trusted emergency contacts, who may request access to their Vault in case of emergency. [Learn more]({{site.baseurl}}/article/emergency-access/).|
|Account Fingerprint Phrase|Security measure that uniquely and securely identifies a Bitwarden user account when encryption-related or onboarding operations are performed. [Learn more]({{site.baseurl}}/article/fingerprint-phrase/).|
|Subprocessors|See our full list of subprocessors: [Bitwarden Subprocessors](https://bitwarden.com/help/article/subprocessors/).|
#### Compliance, Audits, Certifications
|Enterprise Features|Description|
|-------------------|-----------|
|SOC 2 Type 2 |[Read about our SOC 2 Type 2 Certification](https://bitwarden.com/blog/post/bitwarden-achieves-soc-2-certification/).|
|2018 Security Assessment|[Read our 2018 Security Assessment](https://bitwarden.com/blog/post/third-party-security-audit/).|
|2020 Security Assessment|[Read our 2020 Security Assessment](https://bitwarden.com/blog/post/bitwarden-network-security-assessment-2020/).|
|GDPR, CCPA, HIPAA, & Privacy Shield|[Read about our compliance with various privacy frameworks](https://bitwarden.com/compliance/).|
|White-box Testing |Performed by unit tests and QA Engineers.|
|Black-box Testing |Performed via automation and manual testing.|
|Bug Bounty Program|Conducted through HackerOne. [Learn more](https://hackerone.com/bitwarden/?type=team).|
#### APIs and Extensibility
|Enterprise Features|Description|
|-------------------|-----------|
|Programmatically Accessible|Public and Private APIs for Organizations. [Learn more]({{site.baseurl}}/article/public-api/).|
|Command Line Interface|Fully featured and self-documented command-line tool. [Learn more]({{site.baseurl}}/article/cli/)|
|Extensibility Support|Automate workflows by combining API and CLI.|
#### Resiliciency
|Enterprise Features|Description|
|-------------------|-----------|
|Local Cache & Offline Access|[Learn more]({{site.baseurl}}/article/security-faqs/).|

35
_articles/plans-and-pricing/why-choose-bitwarden-for-your-team.md
View File

@@ -1,19 +1,18 @@
---
layout: article
title: Why Choose Bitwarden for Your Team
categories: [plans-and-pricing]
title: Bitwarden for Teams Comparison Guide
categories: [business]
featured: false
popular: false
hidden: false
tags: [organization, enterprise, teams, plans, subscription]
order: 03
order: 02
---
Use a Bitwarden Teams Organization to securely share data with coworkers, department, or an entire company.
Use a Bitwarden Teams [Organization]({{site.baseurl}}/article/about-organizaations) to securely share data with coworkers, department, or an entire company. With many choices out there, Bitwarden stands apart with a comprehensive Teams offering.
## Why Bitwarden Stands Apart
With many choices out there, Bitwarden stands apart with a comprehensive Teams offering.
## Comparing Bitwarden Teams and Others
## Notable Differences Between Bitwarden Teams and Others
This table outlines the key differences between Bitwarden Teams Organizations and other password managers' Teams plans. Subsequent tables will go more in-depth on specific topics:
| | <img src="../../images/plans-and-pricing/1p.png" alt="1P" width="64px" height="64px"> |<img src="../../images/plans-and-pricing/lp.png" alt="LP" width="64px" height="64px"> | <img src="../../images/plans-and-pricing/d.png" alt="1P" width="64px" height="64px"> | <img src="../../images/plans-and-pricing/k.png" alt="K" width="64px" height="64px"> | <img src="../../images/plans-and-pricing/bitwarden-logo-vertical-blue.png" alt="Bitwarden-logo" width="101.66px" height="64.33px">
|---------------------------------|:--------------------------------:|:--------------------------------------------------------------------:|:-----------------------------------:|:-----------------------------------------------:|:-----------------------------------------------:|
@@ -24,23 +23,25 @@ With many choices out there, Bitwarden stands apart with a comprehensive Teams o
|Priority Support | — | — | — | — | <i class="fa fa-check" aria-hidden="true"></i>
|Languages Supported | 11 | 7 | 7 | 13 | 40 |
Break down the key differences between Bitwarden Teams Organization and other password managers Teams Plans with the following pricing and features charts:
## More Comparisons
The following pricing and features charts further break down the key differences between a Bitwarden Teams Organization and other password managers Teams Plans:
- [Cost](#cost-per-user-per-month-billed-annually)
- [Features](#password-management-features)
- [Security](#security-and-administration-features)
- [Download and Deployment](#download-and-deployment-options)
## Cost Per User, Per Month, Billed Annually
### Cost Per User, Per Month, Billed Annually
Compared to others, Bitwarden Teams Plan has the most features for the best price.
Compared to others, the Bitwarden Teams Plan has the most features for the best price:
| | <img src="../../images/plans-and-pricing/1p.png" alt="1P" width="64px" height="64px"> |<img src="../../images/plans-and-pricing/lp.png" alt="LP" width="64px" height="64px"> | <img src="../../images/plans-and-pricing/d.png" alt="1P" width="64px" height="64px"> | <img src="../../images/plans-and-pricing/k.png" alt="K" width="64px" height="64px"> | <img src="../../images/plans-and-pricing/bitwarden-logo-vertical-blue.png" alt="Bitwarden-logo" width="101.66px" height="64.33px"> |
|---------------------------------|:--------------------------------:|:--------------------------------------------------------------------:|:-----------------------------------:|:-----------------------------------------------:|:-----------------------------------------------:|
| Cost | $3.99 | $4 | $5 | $3.75 | $3|
## Password Management Features
Bitwarden Teams Plan has a robust set of password management features.
### Password Management Features
The Bitwarden Teams Plan has a robust set of password management features:
| | <img src="../../images/plans-and-pricing/1p.png" alt="1P" width="64px" height="64px"> |<img src="../../images/plans-and-pricing/lp.png" alt="LP" width="64px" height="64px"> | <img src="../../images/plans-and-pricing/d.png" alt="1P" width="64px" height="64px"> | <img src="../../images/plans-and-pricing/k.png" alt="K" width="64px" height="64px"> | <img src="../../images/plans-and-pricing/bitwarden-logo-vertical-blue.png" alt="Bitwarden-logo" width="101.66px" height="64.33px"> |
|---------------------------------|:--------------------------------:|:--------------------------------------------------------------------:|:-----------------------------------:|:-----------------------------------------------:|:-----------------------------------------------:|
@@ -54,9 +55,10 @@ Bitwarden Teams Plan has a robust set of password management features.
|Encrypted File Attachments| 1GB | 1GB | — | — | 1GB+ Personal, 1GB+ for Org Items
|Built-in TOTP| <i class="fa fa-check" aria-hidden="true"></i> | <i class="fa fa-check" aria-hidden="true"></i> | — | — | <i class="fa fa-check" aria-hidden="true"></i>|
## Security and Administration Features
### Security and Administration Features
Bitwardens solution, software, infrastructure, and security processes have been designed from the ground up
with a multi-layered, defense-in-depth approach. Bitwarden software is open source, which means features and security can be vetted and improved upon by our passionate global community.
with a multi-layered, defense-in-depth approach. Bitwarden software is open source, which means features and security can be vetted and improved upon by our passionate global community:
| | <img src="../../images/plans-and-pricing/1p.png" alt="1P" width="64px" height="64px"> |<img src="../../images/plans-and-pricing/lp.png" alt="LP" width="64px" height="64px"> | <img src="../../images/plans-and-pricing/d.png" alt="1P" width="64px" height="64px"> | <img src="../../images/plans-and-pricing/k.png" alt="K" width="64px" height="64px"> | <img src="../../images/plans-and-pricing/bitwarden-logo-vertical-blue.png" alt="Bitwarden-logo" width="101.66px" height="64.33px"> |
|---------------------------------|:--------------------------------:|:--------------------------------------------------------------------:|:-----------------------------------:|:-----------------------------------------------:|:-----------------------------------------------:|
@@ -73,8 +75,9 @@ End-to-End Encryption | <i class="fa fa-check" aria-hidden="true">
|Event & Audit Logs| — | — | — | <i class="fa fa-check" aria-hidden="true"></i> | <i class="fa fa-check" aria-hidden="true"></i>
|API Access| — | — | — | — | <i class="fa fa-check" aria-hidden="true"></i>|
## Download and Deployment Options
Our secure cloud syncing features allow you to access your data from anywhere, on any device.
### Download and Deployment Options
Bitwarden's secure cloud syncing features allow you to access your data from anywhere, on any device:
| | <img src="../../images/plans-and-pricing/1p.png" alt="1P" width="64px" height="64px"> |<img src="../../images/plans-and-pricing/lp.png" alt="LP" width="64px" height="64px"> | <img src="../../images/plans-and-pricing/d.png" alt="1P" width="64px" height="64px"> | <img src="../../images/plans-and-pricing/k.png" alt="K" width="64px" height="64px"> | <img src="../../images/plans-and-pricing/bitwarden-logo-vertical-blue.png" alt="Bitwarden-logo" width="101.66px" height="64.33px"> |
|---------------------------------|:--------------------------------:|:--------------------------------------------------------------------:|:-----------------------------------:|:-----------------------------------------------:|:-----------------------------------------------:|

8
_articles/security/bitwarden-security-white-paper.md
View File

@@ -1,12 +1,12 @@
---
layout: article
title: Bitwarden Security and Compliance Program
categories: [security]
title: Bitwarden Security Whitepaper
categories: [business]
featured: false
popular: false
hidden: true
hidden: false
tags: []
order: 01
order: 99
---
{% callout success %}
Read the full paper below or [download the PDF](https://bitwarden.com//images/resources/security-white-paper-download.pdf).

5
_categories/business.md Normal file
View File

@@ -0,0 +1,5 @@
---
layout: category
title: Business Resources
featured: true
---

1
_config.yml
View File

@@ -39,6 +39,7 @@ collections:
- login-with-sso.md
- security.md
- plans-and-pricing.md
- business.md
- miscellaneous.md
articles:
output: true