We have a 30 day expiration where I work. It’s my absolute favorite thing to be reminded by windows that I should change my password 15 days after I changed it.
It sounds like you’re happy with BitWarden, but it’s worth mentioning (at least for others), that KeePass supports Two Factor through a plugin named KeeOTP.
I also use KeePass, and recommend it for anyone so long as they’re willing to put in the work. KeePass has a active plugin development community, and there are a number of quality of life improvements available. Here are the plugins/extensions I’m currently using above the base KeePass experience:
- KeeOTP
- This stores seeds for OTP generators, like Google Authenticator. It works with many of the major Two Factor implementations.
- KPEntryTemplates
- This adds template functionality to the UI, so you have different field layouts for different types of accounts.
- KeeAgent
- This allows me to store my SSH keys in KeePass, and works with PuTTY and mRemoteNG(and probably others) to automatically login.
- Readable Passphrase Generator
- This generates passphrases like “Correct Horse Battery Staple”. I use this for passwords I might conceivably have to type in, like my primary account password at work.
- KeePassHttp
- This makes KeePass data (selectively) available via HTTP, to be used by clients, such as…
- PassIFox
- This integrates with Firefox to automatically fill in usernames and passwords. This makes KeePass almost invisible for most day to day browsing.
- ChromeIPass
- Just like above, but for Chrome. I find it doesn’t work quite as well, though.
For mobile, I use KeePass2Android and store my password file in Google Drive for easy access. Additionally, I have purchased an InputStick to make logging in at work a bit easier. I’ve barely seen my last few passwords.
I should probably turn this into its own post at some point…
Extensions like PassIFox and ChromeIPass can help with these, but you can also use the built-in AutoType functionality in KeePass, or use the KeePass2Android keyboard on mobile. I try to avoid copying and pasting passwords when I can since just about any other program can read the clipboard.