Mobile applications

overview passwork has an official mobile client — passwork self hosted it has the main features available in the desktop version of passwork with it you can access and manage your vaults, folders and passwords, and use other functions passwork self hosted is available on app store and google play , or you can scan a qr code below to find out how to connect and start using the apps, see our detailed manuals for getting started docid 1hkpjkz7d drwvlgvitdt and getting started docid\ ohtdjjkrpcrwz0np3gwxi how the app works the app connects directly to your passwork server using an api, so you need to api settings docid\ xjpf1chqzd7kabqq74oz2 first to ensure the security of your data, the app always uses https and checks the validity of the ssl certificate on your server therefore, for the application to work correctly, you need to make sure that mobile devices have direct access to your server via lan or mobile applications /#using a vpn connection your passwork server is configured to work via https you're using a valid mobile applications /#self signed ssl certificates issued by a root certificate authority api is enabled for your account (an administrator can restrict api usage for specific users) authorization for authorization purposes, passwork generates a special qr code that contains your passwork host information and your api key to authorize a device log in to your passwork account click authorize mobile app in the settings and users menu enter your password (and master password if the option is enabled) open the passwork app and scan the qr code from the pop up window if the authorization is successful, you will be able to start using the app if you get a connection error upon authorization, then check if api is enabled for your passwork account your device is able to connect to the server you have a valid ssl certificate using 2fa passwork self hosted does not use 2fa, as you authorize the device through the desktop version of passwork once the device is linked, you access the app with a pin code or biometric data stored on the phone you can secure passwork itself with 2fa using the official getting started docid\ ohtdjjkrpcrwz0np3gwxi app or a third party service like google authenticator or microsoft authenticator using ssl certificates passwork self hosted checks the validity of an ssl certificate when connecting to your server for the cetificate to be validated it must be issued by the root certificate authority it must be issued for your server name or dns record it should not be expired you can get a valid certificate in the following ways purchase one from any certificate authority use a service like cloudflare https //www cloudflare com which provides free certificates generate or get a free valid certificate from let's encrypt https //letsencrypt org/ self signed ssl certificates we do not recommend using self signed certificates, as they increase the risk of security breaches and make automatic validation harder if you use a self signed ssl certificate on your passwork server, you have to add it to the trusted ones on your device to install a self signed certificate on ios issue a self signed public root certificate use that root certificate to issue an ssl certificate for your host if you used a self signed certificate without a root certificate, replace it with a new one as described in step 2 export the root certificate in crt format and transfer it to your ios device find the crt file on your ios device, and the system will ask you to install it automatically go to general > about > certificate trust settings and toggle enable full trust for root certificates on to install a self signed certificate on android issue a self signed public root certificate use that root certificate to issue an ssl certificate for your host if you used a self signed certificate without a root certificate, replace it with a new one as described in step 2 export the root certificate in crt format and transfer it to your android device find the crt file on your device and open it to install, you will have to unlock the phone and enter a name for the certificate using a vpn connection you may use vpn to access passwork without a direct connection to the server this goes for mobile devices as well, where you can set it up through ios and android system tools or through any mobile vpn client for it to work, your passwork server should be configured to work over https and the devices should connect using the server name or the cn value from the certificate you will also need to install a public root certificate file to your mobile device as described in the section above