What is a passphrase and how do you set one up?
HTML-код
- Опубликовано: 6 авг 2024
- In this video, Dan from Ledger Support breaks down passphrases, how they differ from recovery phrases and how to set one up.
He also shares some tips on passphrase best practices.
FOLLOW LEDGER
RUclips: / ledger
Instagram: / ledger
Twitter: / ledger
Facebook: / ledger
amazing tutorial. very clear. thanks.
Thanks for your sharing !
Best feature ever! Thanks for the tutorial.
Hope you found it helpful!
really good tutorial video. understood whitin just 5 mins. thanks.
Good analogy with the house thanks
So beautifully explained! Now I feel ready to buy my ledger Nano s plus :-)
Tks a lot, really great and helpfully
Glad to hear you found it useful!
Nice attempt and also informative. BUT!!, it would have been 100% better if you had enlarged the corner screen so that the viewer could really see how you were manipulating the device. Fortunately you kept up a running commentary. Still, did you ask another employee to review the video??
only if I could store my day to day things that require a pw on my nano. Great stuff Ledger
Hi there - it's actually possible: support.ledger.com/hc/en-us/articles/360017501380-Passwords?docs=true
Alright you guys win 🏆. Can't wait for web3 features.
Great explanation, thanks!
So whether I create a BTC wallet, for example, using my regular PIN and transferring my BTCs from an exchange to my hardware wallet's account, those BTCs are entangled with my regular account. After a while, I also created a passphrase account, and now I want to move those BTCs that are in the regular account to the recently created passphrase account.
1 - If I delete the original BTC wallet from the regular account and create a new wallet in the passphrase account, will my private keys be moved to the passphrase account now?
2 - Despite the first question, are there any other methods to do such a process, and what is the most efficient?
did you ever figure it out lol
Can I, after addins passPhrase, and after waiting for lets say 2 days... just jump into my passPhrase accounts or I first need to enter my regular accounts? Asking as if I can. then someone just need to get lucky and enter my passphrase pin and he is in.
Could we recover the account (have pass phrase) by other Ledger devices or by a Trezor divice?
I've forgot my passphase pin, although I have my regular pin...how to create new passphase pints access accts..?
Hi Ledger, how does this exactly work with the mobile app? I don't see it synchronizing with the mac os desktop app.
what happens if I set up a new pin with a pass phrase then changed my pin to the one I just set up with the pass phrase?
I am stuck on the passphrase. I made a passphrase protected wallet on ledger number 1. Ledger number two is a clone of the first one. The seed phrase account is visible on both but I cant find my passphrase account on my second ledger even after setting the same passphrase there. What did I miss?
What is the benefit of having a Passphrase if you can still see account(s) tied to it on the Regular account? Doesn't this defeat the purpose? Using your House analogy: You go into a house seeing there is only one level but once inside there is a big Sign Stating "Secret Level Here".
It also makes sense if you view the extra passphrase as an additional layer of security and not just as a privacy measure. Even if someone has access to your seed, the 25th word key cannot be spent. Also, if you're paranoid about someone in the future randomly being assigned the same seed as you (virtually impossible), then the 25th word key still cannot be accessed in this astronomically unlikely event.
hi~ if I don't use passphrase to create an account but add accounts directly with the button on ledger live desk, what is that accounts meaning? For example, I create first ADA accounts and hit some ADAs then create second ADA accounts, both of them with same PIN code. These two accounts are with different public keys, but I can't pair second account on Daedalus with just enter one PIN code.
Hi there, if you added 2 ADA accounts in Ledger Live without using any passphrase then both your accounts are linked to your 24 recovery phrase. It seems Daedalus only supports adding one Ledger account. Have you tried using ADAlite, it will allow you to add two Ledger ADA accounts.
Instructions here 👇🏻
support.ledger.com/hc/en-us/articles/4405490468881-Set-up-and-use-AdaLite-to-access-your-Ledger-Cardano-ADA-account
Could I use the same recovery phrase + passphrase generated on a Ledger device to access my hidden wallet on any other non-Ledger BIP-39 compatible devices?
Hello. Thank you for reaching out. As the devices are BIP-39 compatible you can import a recovery phrase + passphrase created by a third-party hardware wallet (like a Trezor or ColdCard) into your Ledger device.
If your NanoS and LedgerLive are destroyed but you have your key words and passcode and passphrase but you forget which coins are where... Upon rebuild with a new NanoS, how do you find all the coins under the passcode account and which are under the passphrase account? Once correctly logged in, can I show coins with non-zero balances for an account?
Hello, You can restore your access with your 24 words recovery phrase and passphrase on any other Ledger hardware wallet. Please note that Ledger Live does not use a centralized database with your accounts and settings, so you will have to add your accounts and manually keep a track of accounts associated with your recovery phrase and passphrase.
Could you still have x2 poly addresses on the same ledger even if didnt have 1 set via passphrase? Or is it only possible to have x2 addresses for the same asset if using the passphrase feature ?
yes
@ledger
Hey, when can we expect the follow up videos?
Hey Rino - very soon! Stay tuned!
?@@Ledger
So when are you able to enter 'dan' passphrase instead of your pin?
Is it true to say that i can have 3 houses within my nano x with 3 different recovery phrases. Please let me know .. Great work but still alot of questions.
Yes - using the same analogy this is the correct way to think about it. Each individual recovery phrase represents the 'keys' to one of the houses 🙂
@Ledger Could I have 3-5 different passphrase-s at the same device, with different passcodes?
Hi, It is possible to have only one secondary PIN code attached to a Passphrase. If you add a new PIN code and a Passphrase then it replaces the previous one. You can read more about it here - support.ledger.com/hc/en-us/articles/115005214529-Advanced-passphrase-security?docs=true
And if I recover the passphase for each said passphase account would it make it possible. I know I'm pushing but I want to know.
hi, can you recover your crypto set via recovery phrase + passphrase on ledger on another NON ledger device e.g Trezor?
Hi there - yes, any BIP39 compatible wallet will do, and most crypto wallets are BIP39 compatible!
Which one is the feature that lets you create a decoy account to fool "kidnappers" in case you're being physically forced by bad actors to give up your "goods", is this the one? I read it a long time ago from you guys a long time back now, can't find it.
Oh, and thanks, Ledger!
Hi, Yes, this feature is called "Passphrase". You can read more here - support.ledger.com/hc/en-us/articles/115005214529-Advanced-passphrase-security?docs=true
If ledger goes out of business and you need to restore the wallet with a passphrase, what wallet do I use?
That's a great question - this article might help: www.ledger.com/academy/what-if-ledger-goes-out-of-business
@@Ledger Thanks,
Do you have a list of compatible wallets ?
Why make the process of adding a 25th word so complex. Security as an after thought from a security company ?
Hello, a passphrase is an optional security feature that adds an extra layer of security to your crypto accounts. This option is only recommended for advanced users. The recovery phrase and passphrase functionalities enable a range of security setups. You may use them to design the security strategy that meets your personal situation. Please do not overcomplicate things, the best security setup is one that you master and can execute with confidence.
Do you need to move all crypto off device before setting 2th word “ passphrase “ or can we add the 25 passphrase with our assets already on device that we originally set up with 24 words … I guess I’m asking ,,. I don’t want to lose all my shit doing it wrong , I’ve heard that we should move crypto before attempting this extra layer of security???? Tia
Hey - it's perfectly safe to add your passphrase while your device holds a recovery phrase that's securing funds. Your passphrase will create a separate set of 'secret' accounts which you can transfer your asset to via regular transactions from your existing accounts.
does this answer your question?
Please give a practical example of the usefulness of the passphrase or 2nd level accounts. In other words why would I create a passphrase account? Thanks
Hi - the passphrase can protect your funds if your 24 word recovery phrase were to be compromised. A hacker would need your passphrase as well as your 24 words in order to access your funds - so, for example, if you were to take a photo of your 24 words and your phone was hacked, the hacker still wouldn't be able to access your funds. Generally, as long as you follow best practices for keeping your 24 words safe, a passphrase isn't necessary - but it's an option if you want to have an additional level of security.
@@Ledger I am specifically looking to make a dummy account or "decoy" account but hide my real accounts. Would the "2nd floor" accounts be my secret big money accounts and my dummy accounts be the "1st floor accounts"? If that is the case then if my 1st floor accounts have been compromised then wouldn't my 2nd floor accounts be inaccessible when my 24 recovery passwords and passphrase for the 1st floor has been compromised?
I mean the video is very detailed on the how but not practically what and how this can be used...unless I missed it in the video! I am new to cold storage and just purchased the Nano S and want to set it up properly for all security and DR situations.
To combat a “$5 wrench attack” Wouldn’t it make more sense if you could just put the device in simulation mode with an alternative password? Entering the alternate pw could show a few fake apps once entered such as BTC, ETH, BSC. This would deter a physically aggressive attacker from 1) getting your crypto because it’s a fake and 2) doing you bodily harm as he would have the false impression he got what he was looking for.
And his analogy, in the first floor accessed by the recovery phrase you put a small amount of crypto that you are okay to lose. In the second floor accessed by the passphrase, you put the large amounts that are worth a lot. If you are forced to give up your crypto, you turn over what's on the first floor and there is no way for them to know that the second floor even exists. I hope that helps explain how this is supposed to work.
If I have a single ledger, with a single seed phrase, can I attach multiple passphrases to that single seed phrase? With each new passphrase having its own PIN? In essence building an apartment complex instead of just a two story house?
Hi there, Yes you can multiple passphrases on top of your existing recovery phrase. There is no maximum limit on the number of passphrases that can be attached to a single recovery phrase. We hope this helps clarify.
@@Ledger Will each pin automatically let me into each new passphrase wallet? AKA, can my ledger wallet hold 10+ Pins at the same time so all I need is the pin to log into a different passphrase.
You can only create one secondary PIN code attached to a passphrase that provides access to a unique set of passphrase-protected accounts. Only one passphrase can be attached to a PIN code. If you add another passphrase to the PIN code, you will overwrite the secondary PIN code and the passphrase. More info here 👇🏻
support.ledger.com/hc/en-us/articles/115005214529-How-to-set-up-a-passphrase-?docs=true
@@Ledger yes this makes sense. What I want to know is can my ledger simultaneously have 3 passphrases or more, each with their own unique pin all held in the ledger at the same time.
Example: If I want to get into passphrase A, with pin 1234 I can. Or I can choose to get into passphrase B, with pin 4321. Or I can choose to get into passphrase C, with pin 8765.
I would use far longer/complex passphrase, with 8 digit pin with my example. Just want to know if that is possible to have more than 2 stored at the same time.
It is only possible to add 1 passphrase to a PIN. You can however attach a second one via temporary passphrase. And to access the second passphrase account, you simply need to go to set temporary passphrase and use the same temporary passphrase to access accounts linked to them.
Ok but if you get an error trying to spend with regular pvt keys from an account from the passphrase pvt keys that's a clear tell that you have another passphrase account on the ledger incentivizing the hacker to search for a passphrase...
Does every account have its own separate pass phrase? or is it just second layer to all accounts?
Hey, it's indeed a second layer that gives you access to new set of accounts! More about that here: support.ledger.com/hc/en-us/articles/115005214529-How-to-set-up-a-passphrase-?docs=true
@@Ledger thank you
I've heard that passphrase is recommended to use 6 words, I'm not comfortable with that but I'm afraid of brute force if I only use 1 word
Hello well that would require to brute force your 24 words first. If you’re afraid that someone might guess your specific set of 24 words, not to worry. There is a massive total of 2^256 possible combinations. You’re more likely to win the lottery a couple of times in a row. Read more here www.ledger.com/academy/crypto/what-is-a-recovery-phrase
Ok. But how you put cryptos from account to passphrase account ? Tnx
Hey, to better clarify the passphrase is essentially a password added to your 24-word recovery phrase that provides access to a whole new set of accounts. More about it here: support.ledger.com/hc/en-us/articles/115005214529-How-to-set-up-a-passphrase-?docs=true
Hi there ,
Can a pass phrase protected ledger hardware wallet be recovered on a software wallet. I know a normal 24 word protected wallet can be , but can the passphrase protect wallet be recovered on a software wallet. If all the hardware wallet companies went out of business or banned. ? Just wondering. Cheers
Technically yes, you can use your recovery phrase on a software wallet. Obviously, once your private key touches the internet - it's not secured by a hardware wallet's technology anymore
@@Ledger
But what if it has added passphrase protection. Do any soft wallets have the facility to enter the added paraphrase. ?
That won't be secure enough - check out the series How I Got Hacked: ruclips.net/p/PL6VM0N695IhlM4rIc3lINb6m60gonDUZk
@@Ledger
But if hardware wallets became obselete somehow could we access recovery of pass phrase protected hardware on a softwallet. Was just thinking of all possibilities. Cheers Steve
Yes, the 24 words can be used to recover your wallet on a software wallet or a hardware wallet from another party.
Quick question which is missing in the video I feel you should address. So the passphrase you set First time gets attached to the 24 seed permanently? Let's say you created a set of hidden accounts. And let's say your ledger reset for some reason. You restore the seed and again add accidentally a wrong passphrase. And now you can't access the hidden accounts anymore.
1)What do you do? Repeat till you get it right? Any drawback?
2) You can have more than one passphrase with Hidden Account A and another Passphrase for Hidden Account B? With One ledger device?
Thanks in advance. Hoping for your response
Thanks for the great questions Light!
1) In this scenario, you can overwrite the wrong passphrase with the correct passphrase by going through the exact steps in the video, just make sure to type in the correct passphrase. There are no drawbacks to doing this, as you said you can just do it again and again until the passphrase is right, this will have zero impact on your accounts.
2) You can attach as many passphrases as you want to a single recovery phrase. However, you Ledger device can only hold one passphrase at a time. But you can easily switch between two passphrases by reproducing the setup steps
Hope this answers your question and don't hesitate if you need anything else!
@@Ledger thank you for responding. While you're here and this may clear the confusion for a lot in the community.
1) Question on "Set as Temporary Passphrase". Let's say you are on ledger live with the current main account. Settings/Security/Passphrase/Set as temporary (do the steps✓ processing/Done)
Now I Unplug the Device.
If your Passphrase is Special characters and now wish to go directly to Hidden Accounts? How do you do it? As Attach to pin is an exception as you can enter the hidden account pin and enter directly.
Thanks for the follow-up! - to answer your questions
1) When using "Set as Temporary Passphrase" your device only "loads" your passphrase accounts for the current session. Once the device powers off or goes back to lock screen, your device will wipe the passphrase from its memory. The passphrase remains valid however. You can always "set it as temporary" or attach it to a PIN the next time you unlock your device.
Basically, whether you choose to set a passphrase as temporary or attach it to a PIN is down to convenience. Attaching it to a PIN is more convenient in the sense that you can simply use your passphrase PIN to access your secret accounts. Set as temporary however is more private because you need to actually know the entire passphrase to access the secret accounts.
I hope my explanation makes sense, please don't hesitate if you have any other questions :)
Thanks for the video, couple of questions
After setting a passphrase, do the new accounts become new wallet addresses?
If a passphrase is set and the original seed phrase is compromised, the hacker would still need the passphrase to access from a non ledger wallet?
Hey, to better clarify it, your device currently is backed by your 24 words, if you add a 25th passphrase, it will unlock a new set of accounts. You will have to move as much as you want from your funds from the 24 words backed account to the 25th passphrase backed account.
For your second question, yes, if your 24 words are compromised, the scammer would also need your 25th word to access your passphrase accounts
We hope this better clarifies and remain available if needed!
I recently received my Ledger Nano X but it was damaged so I raised a ticket 1st of April. At first I did got a reply but after one two messages there was no update. I have been trying to contact but I got no response 😔. My Case I'd is 133713
Very informative you should be a cold wallet instructor people would pay you for this. Not kidding.
No reply here also 😢
Also hopefully the hacker does find the recovery phrase pin, not the other one😅
I Only have 24 recovery phrase on my device, and a Pin, never heard of a 25th word.
Hello, can you help me how to get the baanx visa card adapted to the ledger nano x thank you
@@Ledger oooh ookayy thanks you
You're welcome, please don't hesitate if you need anything else!
Hey! If you mean the CL Card, powered by Ledger ... stay tuned for more updates!
ok thank you nice uh, question ❓ and if, when I would have locked cryptocurrency in the ledger x, I lost it or got wet,,, is it no longer possible to recover the funds?? just a question.. thanks
Hi there - that's not something you need to worry about AS LONG AS your 24 words are safe. This guide will explain why: ruclips.net/video/tSfxCr9GEfU/видео.html
Not to bash you guys, but I have used some Trezor's and I do not understand for the love of god why you have to use 2 Pin's if you want to be able to use a passphrase. (correct me if I am wrong on this and please advise me on how to only use 'ONE pin WITH a passphrase only'. I do not care for my NON password accounts.
The second problem which comes from this is : if you use multiple hardware wallets it becomes an absolute NIGHTMARE to use multiple passwords + seeds + pin's.
Additionally, like some other people mentioned 'usually' in this industry 'things' are not very well explained. Example : When I first created a Metamask account I added a password because I thought it was the 'industry standard' to create a new keypair if you add a passphrase to your account, but nope!
Metamask ONLY encrypts your WALLET) I did not read it ANYWHERE at the time of creating my Metamask wallet!
Hi, it is optional to use a 2. PIN to increase security. Aside of adding another layer, the Passphrase grants you plausible deniability when under duress. The additional passphrase will cause an entirely different set of addresses to be created which cannot be accessed via the 24-word recovery phrase alone. The default model is that you create only one PIN when setting up seed phrase.
You can find more information about additional passphrases here support.ledger.com/hc/en-us/articles/115005214529-How-to-set-up-a-passphrase-?docs=true
You could name your accounts accordingly to differentiate them. For example, you call your accounts Ledger 1 PIN1, Ledger1 PIN2 etc.
If you don't want to use your secondary PIN anymore, you need to transfer your funds to the addresses that are derived from your seed phrase.
Please note that when you install an app, let's say the Ethereum app, this creates your private key for Ethereum. When you generate an address in Ledger Live or in Metamask this generates a Public key.
If you connect your Ledger device to Metamask, Metamask will replace Ledger Live as visual interface.
You find more information here www.ledger.com/academy/hardwarewallet/what-are-ledger-applications-and-why-do-i-need-them
@@Ledger Thank you for your extensive reply, I think you just helped a lot of other people reading, excellent!
The point about plausible deniability was somewhat clear to me, just not so much that : the 'non passphrase pin' is only 'needed' when setting up a device, so you do not 'have to' use it to unlock your device when you want to acces your passphrace pin accounts. That is great!
Glad that it was helpful - let us know if you have any other questions!
It would be good to have a more professional video. The explanation is confusing - frankly, you are probably best showing folks a Trezor T and just saying that Ledger devices use pins because it takes too long to type a passphrase each time.
To customers, let's be honest. The Ledger UX is terrible _but_ the options are limited at the moment...with the Ledger being relatively good value. Good luck!
Hi there - thank you for the feedback. Which part is the most confusing part for you? We would really love to improve and your feedback is super important!
Painful to watch. I appreciate the attempt to communicate the info, but Ledger needs to come up with something more professional as others have also expressed.
This was dreadful from the beginning.
Slow, didn’t make a lot of sense, etc.
Camera small👎
just get to the point jesus