If you're a member of a professional plan who logs in using single sign-on (SSO), you don't use a Master Password. SSO means you use one login application to access Dashlane and other work accounts. Instead of a Master Password, you use your regular work password to log in to Dashlane. If you don't know whether you have SSO, ask your manager or plan admin.
More about professional plans that use SSO
If you received an alert in Dashlane that says your Master Password is weak, review the section in this article about creating strong Master Passwords. Weak passwords are typically easily guessable or compromised. Your weak password may be too short, lack variety, use a common combination, or lack complexity.
Create a strong, easy-to-remember Master Password
Want to log in without a Master Password? Set up a passwordless Dashlane account
Why is my Master Password important?
Your Master Password is the only password you need to remember when using Dashlane. And the most important thing you can do to keep your account secure is to create a strong Master Password. You want a Master Password that is long, unique, and difficult to guess. If you think you have a weak or easy-to-guess Master Password, change your password as soon as possible.
Your Master Password also needs to be easy to remember. We can't send you your Master Password if you forget it. No one at Dashlane knows your Master Password, and we don't store your password anywhere.
Dashlane is built on the principle of zero knowledge to ensure that only you have access to your Dashlane vault. Your logins and personal information are always “encrypted,” even when we store your data on our servers as a backup and to sync your data across devices. Encryption scrambles your data so no one can read it. When you enter your Master Password, your data is “decrypted” on your device and available only to you.
Warning! If you've forgotten your Master Password and haven't turned on a recovery method, you may need to reset your account, which erases all the data you've saved in Dashlane. To ensure the security and privacy of your data, we don't have a traditional "reset password" process like other apps.
Account recovery options for Dashlane
When do I need my Master Password?
You must enter your Master Password to verify your identity and access your data. Regardless of any other authentication options you turn on, you need to enter your Master Password when you do any of these things:
- Log in for the first time on a new device
- Manually log out and log back into Dashlane
- Turn on 2-factor authentication (2FA), if more than 5 minutes have passed since the last time you entered your Master Password
- Turn biometric unlock or PIN unlock on or off, if more than 5 minutes have passed since the last time you entered your Master Password
- Unlock vault items if the setting Protect item is turned on and more than 5 minutes have passed since the last time you entered your Master Password, unless you also have Biometric unlock turned on
- For security reasons, we ask you to enter your Master Password whenever you autofill payment info, unless you have Biometric unlock turned on
- Log in after turning off biometrics or changing a biometric setting like adding a new fingerprint
If you turn on one or more of the authentication options listed in the next section, you won't need to enter your Master Password as often when you do these things:
- Restart your device
- Launch the app
- Close and reopen your browser
Important: Nothing fully replaces your Master Password. Dashlane still asks for your Master Password from time to time to make sure you don't forget your password.
Authentication options to enter my Master Password less often
Mobile options: Typing can be tedious, especially when using a mobile device. To help, we've provided easily accessible options for unlocking your app quickly and securely without entering your Master Password each time.
Open the Android app with your fingerprint or PIN code
Open the Dashlane Apple app with Face ID, Touch ID, or a PIN
Web app options: You can turn on one of two options in the web app so that you don't have to enter your Master Password as often.
-
Biometric unlock or PIN unlock: You can use a PIN code, your device biometrics like your fingerprint or face, Windows Hello, or a security key to unlock Dashlane without entering your Master Password.
Open the web app with your PIN code, fingerprint, or security key
Use Touch ID to unlock the macOS app -
Keep me logged in for 14 days: You can turn on this option so that you're not logged out of Dashlane when you close your browser. Use this option only if your computer is safe from unauthorized access. You’ll still be required to log in with your Master Password every 14 days to make sure you remember it.
More about staying logged in for 14 days
Important: The Keep me logged in for 14 days option isn't available when you've turned on the Biometric unlock or PIN unlock options. Biometric unlock or PIN unlock are alternatives to keeping your session logged in for 14 days.
Tip: Though you can choose to stay logged in for 14 days, entering your Master Password more often helps you remember it.
Create a strong, easy-to-remember Master Password
Cybercriminals who steal your data aren't trying to figure out your passwords—their computers are. They may gain your passwords by automating brute-force attacks, a hacking method that uses trial and error to determine passwords.
If your Master Password could be easily worked out by someone else, Dashlane considers it weak.
Dashlane judges the strength of passwords against over 30,000 of the most common passwords, dictionary words, names, keyboard patterns, dates, and more. The open-source method Dashlane uses is called “ZXCVBN." ZXCVBN is the algorithm behind most password strength meters you see when you create new passwords.
Although we don’t have specific requirements for Master Passwords, the ZXCVBN algorithm evaluates how secure your password is when you create it.
The algorithm looks for patterns that cybercriminals might use to guess the password and gives it a score from 0 to 4, with 4 being the strongest. If your password gets a score of 2 or lower, it's considered weak and easy for someone to figure out. Dashlane will then suggest ways to make it more secure, like adding an uncommon word.
Test the strength of passwords
Blog: Dashlane's ZXCVBN guidance helps you create stronger Master Passwords
Tips for creating or updating your Master Password
Review these tips to help you create the strongest, unique Master Password that you can remember.
Make your Master Password long
Create the longest Master Password you can remember. Try to make your password at least 12–15 characters long. Dashlane has systems in place to prevent hackers from guessing your Master Password, but longer is always stronger.
Add variety
Use a combination of uppercase and lowercase letters, numbers, and special characters when creating your Master Password. Passwords that consist of mixed characters are harder to guess. Try mixing uppercase letters and special characters in the middle of the password rather than at the beginning or end.
If you use special symbols for more security, make sure you select symbols that are available on all devices that you'll need to use to access Dashlane.
Avoid certain words, numbers, and personal information
Avoid dictionary words, slang, common phrases, curse words, email addresses, names, places, and so on. These types of words and phrases make your passwords easier to guess. You also want to avoid personal identifying information like birthdates, street names, and family names. Don't include any details that hackers can discover on your social media pages or from email communications.
Use mnemonics
Mnemonics are memory tricks that can help you remember long strings of information, often in a particular order. Start with a meaningful phrase, sentence, or song lyric. Take the first letter of each word to create your password. Add numbers, uppercase letters, and special characters to make your password more complex.
Example of a Master Password created with mnemonics:
I am a fish out of water in science class = iAaFoOH2O%iSc
Every other letter is uppercase, "water" is H2O, and a special character is added. The addition of the special character greatly raised the complexity of this Master Password.
Don't repeat—not even a portion
You need to make your Master Password—and any password—unique. Unique passwords prevent the likelihood that all your accounts will be hacked all at once.
Make sure that no part of your Master Password is based on another password you use. Some people reuse a portion of a password in all their passwords to make them easier to remember. A secure password is one you never reuse for multiple accounts and isn't based on any other password.
You can count on Dashlane to provide security and convenience. Dashlane remembers all your passwords for all your logins, so you only need to remember one: your Master Password. The easiest way to make sure you have strong, unique passwords for your online logins is to use our Password Generator.
Other tips for remembering your Master Password
After creating a Master Password you can remember, you can also try some of these tips to trigger your memory:
- Practice logging in repeatedly with your Master Password. Even though you can choose to stay logged in for 14 days, try to enter your Master Password for the first several logins.
- Write down a Master Password hint and store the hint in a safe place, like your wallet. You want your hint to trigger your memory but be meaningless to anyone else.
- Create an image that can help you remember your Master Password and store the image in a safe place.
Turn on the account recovery options available to you
Worried that you might forget your Master Password? We recommend that you turn on the recovery options available to you to make sure you don't lose access to your account.
Important: Nothing fully replaces your Master Password. Dashlane still asks for your Master Password from time to time to make sure you don't forget your password.
Account recovery options
Account recovery key
With Dashlane's recovery key, you can regain access to your Dashlane account without losing any of your data if you forget your Master Password. You'll provide your saved recovery key, complete an identity verification step, change your Master Password, and recover your account.
Setting up a recovery key isn't required, but the key protects you from being permanently locked out of your account. Think of your recovery key as your emergency key to your vault.
Set up the account recovery key
Biometric settings
We recommend turning on biometrics and Biometric recovery in the mobile app. Then you can reset your Master Password using your fingerprint or face.
Unlock with biometrics isn't a replacement for your Master Password. Even with biometrics and biometric recovery turned on, we'll ask you to enter your Master Password from time to time.
Master Password reset on Android
Master Password reset on iOS
Master Password reset on the macOS app
Admin-assisted recovery if you're a member of a professional plan
Admin-assisted recovery is available to members of professional plans. With admin-assisted recovery, you can make a request to your admin and, after approval, reset your Master Password without sharing or losing any personal data. To use admin-assisted recovery, you have to turn it on or activate it when prompted before you forget your Master Password.
For members: Turn on and request admin-assisted recovery
For admins: Manage admin-assisted recovery
Check out these password tips in the Dashlane blog
How to make strong passwords even stronger
5 tips to increase your password strength
10 most common passwords (Is yours on the list?)
6 tips to create strong, secure passwords in a digital world