Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

Mainpassword versus fingerprint auth

  • 2 replies
  • 1 has this problem
  • 193 views
  • Paskiausią atsakymą parašė Chris

more options

Hi,

on my laptop and on my android phone I use fingerprint readers as auth methods which is very convenient. Can I replace the main password from firefox with auth via fingerprint readers? On both mobile and desktop (win) versions?

Cheers, Chris

Hi, on my laptop and on my android phone I use fingerprint readers as auth methods which is very convenient. Can I replace the main password from firefox with auth via fingerprint readers? On both mobile and desktop (win) versions? Cheers, Chris

Chosen solution

On mobile you can no longer use a Primary Password with current releases (with 68 this was possible), so there is only the option to use OS authentication (fingerprint) and that is easier, but less secure. On desktop you can use a Primary Password as this is safest as the passwords in logins.json are encrypt using the PP, so if you forget the PP then you lose your logins. If you use OS authentication then merely access to logins.json and key4.db is sufficient to access the passwords (i.e. you depend on Windows for security). On Windows and Mac you can use OS authentication if you leave the PP blank and set the pref on about:config that controls this feature to true.

  • signon.management.page.os-auth.enabled = true

You can open the about:config page via the location/address bar. You can click the button to "Accept the Risk and Continue".

Skaityti atsakymą kartu su kontekstu 👍 1

All Replies (2)

more options

Chosen Solution

On mobile you can no longer use a Primary Password with current releases (with 68 this was possible), so there is only the option to use OS authentication (fingerprint) and that is easier, but less secure. On desktop you can use a Primary Password as this is safest as the passwords in logins.json are encrypt using the PP, so if you forget the PP then you lose your logins. If you use OS authentication then merely access to logins.json and key4.db is sufficient to access the passwords (i.e. you depend on Windows for security). On Windows and Mac you can use OS authentication if you leave the PP blank and set the pref on about:config that controls this feature to true.

  • signon.management.page.os-auth.enabled = true

You can open the about:config page via the location/address bar. You can click the button to "Accept the Risk and Continue".

more options

Hi cor-el,

thanks for your explanation!

Cheers, Chris