Best Password Manager without cloud login?

Question

I am an expert at password management, but I don't necessarily know all the vendors of such.Without exhaustively testing all the vendors, my personal judgement is that 1Password is about the best across many axes. However when they forced the subscription model (with VC-rationalized justifications) I abandoned them and went to BitWarden. BW is very much not as good but it's more than just good enough.One defect that has bothered me about BW is that to unlock the vault, locally, you have to be able to contact the BW server. (I'm using the BW free cloud, not self hosted.) Right now, for the past 30 minutes, I've been unable to unlock my local vault due to being unable to login to the BW server. BW status page says all green. It could very well be a local/regional connectivity issue and not their systems actually being down. Doesn't really matter, this situation is unacceptable.I do want to sync between a few devices, without hoops, so I do need their cloud service for that (don't I?). I cannot run an available enough self hosted service. I'm perfectly ok with BW and the way sync is done, it's just the vault unlock dependency which I can no longer tolerate.Does the community here either know how to configure BW to retain sync but not have this cloud dependency on local unlock (sorry for basic tech support question!), OR do people have recommendations for a different provider that is either free or perpetually licensed? Obviously one can't run a cloud service for free, but I'm thinking iCloud or wifi or other kind of sync.I am confident that KeePass can do this but I am also confident the UX and the DIY-ish nature of it is not for me.I'm ok with a ios+mac-only solution, I can do something different/disjoint for the rare other usage I might have.

runjake · Accepted Answer

If you use KeePass, and you probably will because I'm unaware of any other viable non-cloud options, make sure you use the KeePassXC variant. KeePass is dead.https://keepassxc.org/

adidalal · Answer

I followed a similar path as you did about a year ago. Having tried a bunch of options, I can recommend strongly Strongbox - fantastic native apps for iOS and macOS, with your choice of sync mechanism (local-only is also a first class citizen), and it uses the KeePass file format so you can use your client of choice on other operating systems/no worries about lock-in. Good system integration and autofill extensions. I also appreciated that there was an option for a one-time purchase.https://strongboxsafe.com

highhedgehog · Answer

I might be missing something here, but what do you mean by this?
"One defect that has bothered me about BW is that to unlock the vault, locally, you have to be able to contact the BW server."
If my device is offline I can still unlock the vault and access my passwords.

palata · Answer

I love https://www.passwordstore.org/

smoldesu · Answer

You can use KeePass on iCloud, I'm pretty sure. I use it on Syncthing without issue, it should be service-agnostic. The experience has been pretty great in my experience, but it mostly depends on the quality of the client and backend you pick. YMMV, but I wouldn't be afraid of it.

wt__ · Answer

I'd observe the painful bit of password management is not so much and management but retrieval and entry.If anyone's found something that is slicker than 1Password at this (and which can handle typical developer problems like needing half a dozen or more different logins to the same site) I'd love to know about it.

k310 · Answer

SamuraiSafe is available for ios and mac. I use it. You can sync via iCloud, or any old way you want. It asks for a vault when opened. Free, and no ads.https://samarama.net/samuraisafe/app.html

mxsjoberg · Answer

I always recommend using the most secure password manager there is... your own memory and brain power ;)Create a system or pattern based on url or brand and mentally hash it into a password.

alexthecreator · Answer

I use KeePass. It's portable and you can have full control of where the database is stored.

stephenr · Answer

Is there something that precludes iCloud Keychain from your list?

hosteur · Answer

KeePassXC

skydhash · Answer

Secrets, Macpass on macos.

firedexplorer · Answer

LastPass

Best Password Manager without cloud login?

If you use KeePass, and you probably will because I'm unaware of any other viable non-cloud options, make sure you use the KeePassXC variant. KeePass is dead.
https://keepassxc.org/

I might be missing something here, but what do you mean by this?
"One defect that has bothered me about BW is that to unlock the vault, locally, you have to be able to contact the BW server."
If my device is offline I can still unlock the vault and access my passwords.

I love https://www.passwordstore.org/

You can use KeePass on iCloud, I'm pretty sure. I use it on Syncthing without issue, it should be service-agnostic. The experience has been pretty great in my experience, but it mostly depends on the quality of the client and backend you pick. YMMV, but I wouldn't be afraid of it.

SamuraiSafe is available for ios and mac. I use it. You can sync via iCloud, or any old way you want. It asks for a vault when opened. Free, and no ads.
https://samarama.net/samuraisafe/app.html

I always recommend using the most secure password manager there is... your own memory and brain power ;)
Create a system or pattern based on url or brand and mentally hash it into a password.

I use KeePass. It's portable and you can have full control of where the database is stored.

Is there something that precludes iCloud Keychain from your list?

KeePassXC

Secrets, Macpass on macos.

LastPass

Best Password Manager without cloud login?

If you use KeePass, and you probably will because I'm unaware of any other viable non-cloud options, make sure you use the KeePassXC variant. KeePass is dead.https://keepassxc.org/

I might be missing something here, but what do you mean by this?"One defect that has bothered me about BW is that to unlock the vault, locally, you have to be able to contact the BW server."If my device is offline I can still unlock the vault and access my passwords.

I love https://www.passwordstore.org/

You can use KeePass on iCloud, I'm pretty sure. I use it on Syncthing without issue, it should be service-agnostic. The experience has been pretty great in my experience, but it mostly depends on the quality of the client and backend you pick. YMMV, but I wouldn't be afraid of it.

SamuraiSafe is available for ios and mac. I use it. You can sync via iCloud, or any old way you want. It asks for a vault when opened. Free, and no ads.https://samarama.net/samuraisafe/app.html

I always recommend using the most secure password manager there is... your own memory and brain power ;)Create a system or pattern based on url or brand and mentally hash it into a password.

I use KeePass. It's portable and you can have full control of where the database is stored.

Is there something that precludes iCloud Keychain from your list?

KeePassXC

Secrets, Macpass on macos.

LastPass

If you use KeePass, and you probably will because I'm unaware of any other viable non-cloud options, make sure you use the KeePassXC variant. KeePass is dead.
https://keepassxc.org/

I might be missing something here, but what do you mean by this?
"One defect that has bothered me about BW is that to unlock the vault, locally, you have to be able to contact the BW server."
If my device is offline I can still unlock the vault and access my passwords.

SamuraiSafe is available for ios and mac. I use it. You can sync via iCloud, or any old way you want. It asks for a vault when opened. Free, and no ads.
https://samarama.net/samuraisafe/app.html

I always recommend using the most secure password manager there is... your own memory and brain power ;)
Create a system or pattern based on url or brand and mentally hash it into a password.