Does Bitwarden Work Offline? What You Can and Cannot Do

This is a practical question that matters in real situations: you are on a plane, in a location with no signal, or your internet goes down and you need a password. Here is exactly what Bitwarden can and cannot do without an internet connection, and how to ensure you have access when you need it.

The short answer

Bitwarden works offline if you have previously logged in on that device. Your vault is cached locally in encrypted form. You can read and use all your passwords offline. You cannot sync new passwords or changes until you reconnect. You cannot log into Bitwarden for the first time without an internet connection.

What works offline

Once you have logged into Bitwarden on a device, the vault is stored locally in encrypted form. The local cache includes all your passwords, secure notes, and other vault items that were synced the last time you had internet access. You can unlock this local cache using your master password or biometric authentication (Face ID, fingerprint) even without any internet connection.

The browser extension maintains a similar local cache. Once unlocked during an active session, it will autofill credentials for sites you have previously used without needing an internet connection. The mobile apps cache the vault similarly.

What does not work offline

Logging into Bitwarden for the first time requires an internet connection to verify your credentials and download the vault. After initial login, offline access is available. Adding new items to your vault requires an internet connection to sync changes. Changes made offline in some contexts may not sync automatically. Two-factor authentication during login requires internet access to verify the second factor. The web vault at vault.bitwarden.com is a web application and requires internet access by definition.

How to ensure offline access works

Log into the Bitwarden app on your device while you have internet access. The initial login downloads your encrypted vault to local storage. After logging in, you can go offline and still access your passwords. Do not log out of the app before going offline if you need continued access. If you regularly lose internet access, enable biometric unlock (Face ID or fingerprint) in settings so you can access your vault without typing your master password when offline.

The lock vs logout distinction

There is an important difference between locking Bitwarden and logging out. Locking the vault keeps the local cache intact but requires your master password or biometric to access it. You can unlock a locked vault offline. Logging out removes the local vault cache from the device. After logging out, you need internet access to log in again and re-download the vault. Locking is the appropriate setting for most daily use. Logout is appropriate when you want to remove all vault data from a device, such as before selling or returning it.

Self-hosted Bitwarden and offline access

If you self-host Bitwarden on a local network server, you can access your vault without internet access as long as you are on the same local network as the server. This provides true local-only access that does not depend on internet connectivity or Bitwarden servers at all. For home lab users or those with specific data sovereignty requirements, self-hosting provides offline access from any device on the local network.

Compared to other password managers

Most major password managers including 1Password and Dashlane cache vaults locally and work similarly offline. 1Password handles offline access particularly well with explicit local vault storage. The principle is similar across all major password managers: initial login requires internet, subsequent access works offline from the local cache.

The practical recommendation

For regular travellers or anyone in areas with unreliable connectivity, ensure you are logged into Bitwarden on your mobile device before your trip. Enable biometric unlock for convenient offline access. Keep auto-lock set to something reasonable (15 minutes or longer) rather than instant lock, which reduces the frequency of entering your master password when connectivity is intermittent.