Using a Password Manager for MFA on GEDmatch
If you don’t have a smartphone, or prefer to keep everything on your computer, you can use a password manager to handle multi-factor authentication (MFA) on GEDmatch. Many password managers include a built-in authenticator that generates the same one-time codes as Google Authenticator — but it runs right on your desktop, laptop, or tablet.
This guide explains how to set up MFA on GEDmatch using a password manager instead of a phone-based authenticator app.
How This Works
When you set up MFA on GEDmatch, one of the available options is an authenticator app (the same option used for Google Authenticator). During setup, GEDmatch shows you a QR code or a text-based secret key. Normally, you’d scan the QR code with a phone app. But if your password manager supports TOTP codes (Time-Based One-Time Passwords), you can enter that same secret key into your password manager instead.
Once set up, your password manager will generate a new 6-digit code every 30 seconds, just like Google Authenticator would. When you log in to GEDmatch, you’ll open your password manager, copy the current code, and enter it on the login screen.
Which Password Managers Support This?
Not all password managers include a built-in authenticator. Here are popular options that support TOTP code generation:
Password Manager | TOTP Support | Price | Notes |
Yes | ~$36/year | Polished interface, auto-fills codes. No free plan. | |
Yes (Premium) | $10/year | Open source, very affordable. TOTP requires the $10/year premium upgrade. | |
Yes | ~$35/year | Built-in TOTP on all plans. Strong security record. | |
Yes | Free (basic); ~$24/year (Plus) | Privacy-focused (Swiss-based). TOTP included on free plan. | |
Yes | ~$24/year | Built-in TOTP. Straightforward, good for less technical users. |
If you’re looking for a free option, Proton Pass includes TOTP support on its free plan. Bitwarden is another excellent choice at just $10/year for premium.
What You’ll Need
• A password manager that supports TOTP codes (see table above), installed on your computer
• Your GEDmatch login credentials
• A smartphone is not required for this method
Step-by-Step Setup
Step 1: Log In to GEDmatch
Log in at www.gedmatch.com with your email and password. After logging in, you’ll see a prompt asking if you’d like to set up multi-factor authentication. Choose “Secure My Account” to continue.
Step 2: Select the Google Authenticator App Option
On the MFA method selection screen, choose the Google Authenticator option. Even though you won’t be using Google Authenticator itself, this is the option that works with any TOTP-compatible tool — including your password manager.
Step 3: Copy the Secret Key
GEDmatch will display a QR code and a text-based secret key when you click the option “Trouble scanning?”
You need this text-based secret key. Click the option to show it, then copy it to your clipboard.
Tip: Some password manager browser extensions (like 1Password) can scan the QR code directly from your screen. If yours supports this, you can use that instead of copying the text key.
Step 4: Add the Key to Your Password Manager
Open your password manager and find your saved GEDmatch login entry (or create one if you haven’t saved it yet). Look for an option to add a one-time password, TOTP, or authenticator code. The exact wording varies:
• 1Password: Edit the login item, click “Add More,” then select “One-Time Password.” Paste the secret key and click "Save".
• Bitwarden: Edit the login item and find the “Authenticator Key (TOTP)” field. Paste the secret key and click "Save".
• Keeper: Edit the record and click the “Add Two-Factor Code” field. Paste the secret key and click "Save".
• Proton Pass: Edit the login item and find the “TOTP” or “2FA secret key” field. Paste the secret key and click "Save".
• RoboForm: Edit the login and click “Add TOTP.” Paste the secret key and click "Save".
Save the entry. Your password manager should now show a 6-digit code that refreshes every 30 seconds.
Example from 1Password:
Adding the One Time Code to the saved GEDmatch login credentials:
The One Time Passcode now shown (note the timer countdown)
Step 5: Enter the Verification Code
Go back to the GEDmatch setup screen. Copy the current 6-digit code from your password manager and paste it into the verification field. Click “Verify” or “Submit.”
Tip: The code refreshes every 30 seconds. If the code is about to expire, wait for the next one before entering it.
Step 6: Save Your Recovery Code
After verification, you’ll be shown a recovery code. This is important — if you ever lose access to your password manager, this code is how you’ll get back into your GEDmatch account.
Write this code down and store it somewhere safe — separate from your password manager. Print it out or write it on paper and keep it with other important documents.
Step 7: Set Up a Passkey (Optional but Recommended)
After MFA is set up, GEDmatch will ask if you’d like to create a passkey. Passkeys let you log in using your fingerprint, Face ID, or a password manager — no password needed.
If you’d like to set this up:
• Choose “Set up passkey” when prompted
• Follow your device’s instructions to save the passkey
• Next time you log in, you can use your passkey instead of your password
Where your passkey is saved depends on your device:
• On iPhone: Saved to iCloud Keychain (uses Face ID or Touch ID)
• On Mac/PC: Saved to your browser or password manager (like 1Password)
View the article on passkeys for more details: https://support.gedmatch.com/portal/en/kb/articles/understanding-and-setting-up-passkeys-on-gedmatch
What Logging In Looks Like After Setup
Each time you log in to GEDmatch:
• Enter your email and password as usual
• GEDmatch asks for your 6-digit code
• Open your password manager, find the GEDmatch entry, and copy the current code
• Paste or type the code into GEDmatch and you’re in
Some password managers (like 1Password and Bitwarden) can auto-fill the code for you when you log in through their browser extension, making this even faster.
Managing Your MFA Settings
You can manage your MFA setup at any time from your profile.
• Log in to GEDmatch
• Navigate to your Profile settings
• Find the MFA / Security section
From here you can:
Remove your current MFA method: If you want to switch to a different method or start over, you can delete your current MFA setup. This will also remove your recovery code. The next time you log in, you’ll be prompted to set up MFA again and will receive a new recovery code.
Set up a new MFA method: After removing all MFA methods, you can set up a new one directly from this screen without waiting for the next login prompt.
Frequently Asked Questions
I don’t have a smartphone. Will this work on my computer only?
Yes. All of the password managers listed above have desktop applications and/or browser extensions that run on your computer. You do not need a smartphone to use this method.
Is it safe to store my MFA codes in the same place as my password?
This is a common question. Keeping your password and MFA code in the same password manager is less secure than keeping them in separate apps, because if someone gains access to your password manager, they have both. However, it is still significantly more secure than having no MFA at all. For most users, the convenience of a single password manager is a good tradeoff. Just make sure you use a strong master password and enable any additional security your password manager offers (like biometric unlock).
What if I lose access to my password manager?
Use the recovery code you saved during MFA setup (Step 6) to get back into your GEDmatch account. This is why it’s important to keep your recovery code stored separately from your password manager — printed out or written down in a safe place.
Which password manager do you recommend?
GEDmatch does not endorse a specific password manager. If you already use one that supports TOTP codes, use that. If you’re starting fresh and want a free option, Proton Pass includes TOTP on its free plan. Bitwarden at $10/year is another strong choice. If you want the most polished experience and don’t mind paying, 1Password is popular and well-regarded.
I chose Google Authenticator during setup but I’m using a password manager. Is that okay?
Yes, that’s exactly right. The “Google Authenticator” option on the MFA setup screen works with any app or tool that generates standard TOTP codes. You don’t need to use Google Authenticator specifically — any compatible password manager will work the same way.
Can I switch from Google Authenticator on my phone to a password manager later?
Yes. Go to your GEDmatch Profile settings, remove your current MFA method, and then set it up again. This time, when the QR code and secret key appear, enter the key into your password manager instead of Google Authenticator. You’ll receive a new recovery code as well.
What about LastPass?
LastPass does include a built-in authenticator on its paid plans. However, LastPass experienced significant security breaches in 2022 that compromised user vault data. We recommend considering one of the other options listed in this article instead.
Need Help?
If you run into any issues during setup, contact our support team by submitting a ticket through this portal. We’re happy to walk you through it.
Related Articles
How to Set Up Multi-Factor Authentication (MFA) on GEDmatch
Multi-factor authentication adds an extra layer of security to your GEDmatch account. After entering your password, you’ll verify your identity through a second method — like approving a notification on your phone. This means that even if someone ...Setting Up MFA with Google Authenticator on GEDmatch
Google Authenticator is a free app that generates one-time security codes on your phone. When you log in to GEDmatch, you’ll enter your password and then type a 6-digit code from the app. The code changes every 30 seconds, so it can’t be reused by ...Understanding and Setting Up Passkeys on GEDmatch
Passkeys are a newer, simpler way to log in to your GEDmatch account. Instead of typing a password and then approving an MFA notification, you can log in with just your fingerprint, Face ID, or a password manager. It’s faster, easier, and more secure ...How to reset your GEDmatch password
If you are having trouble logging in to GEDmatch, please reset your password using the instructions below (your email address is your login ID and it may be best to do this on a desktop or laptop computer as opposed to tablet or phone): PASSWORD ...Troubleshooting Common GEDmatch Errors
Site Access Errors 403 Error / "Bot Detection" Block Symptom: You receive a 403 error or a message indicating you have been identified as a bot and cannot access the site. Cause: GEDmatch has security measures in place to prevent automated access. ...