Join us to show up for other Firefox users 🦊. Earn fun badges and Mozilla swag vouchers! Find out more: https://mzl.la/askafox150

Windows 10 reached EOS (end of support) on October 14, 2025. If you are on Windows 10, see this article.

Avatar for Username

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

Need to disable "require device sign in to fill and manage passwords" without entering system password

  • 1 reply
  • 0 have this problem
  • 1 view
  • Last reply by TechHorse
  • Open

gruncheon
gruncheon

After version 149, I find I am asked to provide the Windows password in order to modify or copy saved passwords (but not fill when visiting a site). I had already set a primary password to secure my saved passwords, so this never should have happened. Turning off this setting also prompts for the Windows password. In v151, I recommend that Firefox allow the primary password to be used instead, for both managing passwords and turning off the "require device sign in" setting.

I can understand trying to force password security and encryption upon users who do not have a primary password set, but that should have been accomplished by prompting the user to set a primary password. Users with primary passwords should have been excepted from the change. "Require device sign in" should never have been an option - local system passwords are not designed for this use, and no consumer-grade app should have access to them.

As a CISSP I never recommend that anyone use browser-based password managers at all, but I do use the Firefox one for some non-critical sites. This discovery has been an annoyance, but worse, it reveals a poor understanding of security on the part of Mozilla.

After version 149, I find I am asked to provide the Windows password in order to modify or copy saved passwords (but not fill when visiting a site). I had already set a primary password to secure my saved passwords, so this never should have happened. Turning off this setting also prompts for the Windows password. In v151, I recommend that Firefox allow the primary password to be used instead, for both managing passwords and turning off the "require device sign in" setting. I can understand trying to force password security and encryption upon users who do not have a primary password set, but that should have been accomplished by prompting the user to set a primary password. Users with primary passwords should have been excepted from the change. "Require device sign in" should never have been an option - local system passwords are not designed for this use, and no consumer-grade app should have access to them. As a CISSP I never recommend that anyone use browser-based password managers at all, but I do use the Firefox one for some non-critical sites. This discovery has been an annoyance, but worse, it reveals a poor understanding of security on the part of Mozilla.

All Replies (1)

TechHorse
TechHorse

gruncheon, a person who uses Firefox Sync may more or less always be signed into their Primary Password. There are other times where it might be signed into for an extended period.

A usage case might be that device sign in may deter at least some level of casual snooping by others, in such circumstances.

The current system allows people to use one method, both or neither.

That said, if you want to recommend off by default for primary password users, turn the setting off using the primary password etc. then the official place for leaving feedback for developers is at Mozilla Connect: https://connect.mozilla.org/

Ask a question

You must log in to your account to reply to posts. Please start a new question, if you do not have an account yet.