Use your Synology NAS as a Password Manager

bitwarden

Little by little we are beginning to be aware of how dangerous surfing the Internet can be. We all know of some close case in which social media access credentials, photographs of a smartphone device or bank details have been stolen. Most people still think that it cannot happen to them. Something like that traffic accidents happen to others, not to us. Many of them have already started using password managers to store their access credentials to the different services, but others still do not trust third-party services for the custody of such sensitive data.

Would you build your own vault for free if it’s easy and safe?

Whether you are the administrator of the IT department in an SME or you want to do it at a private level, it is likely that you are looking for a way to create your own password manager and that it is within your organization or your home.
Today we are talking about Bitwarden, an inexpensive and highly deployable cross-platform solution that allows you to manage your passwords within your organization.

Bitwarden is an open source password manager that supports self-hosting on Docker, it supports nearly every OS on Earth and it offers a modern UI with end-to-end AES-256 bit encryption, salted hashing, and PBKDF2 SHA-256.

How is it done?

Use your Synology NAS as a Password Manager

1. Our solution will be based on hosting a password manager on a Synology NAS server, although it would be perfectly functional on any Linux-based system.
What we have to do is use alternative applications for the execution of the reverse proxy.
We start by installing the “Docker” application from the Package Center of our Synology NAS

01-install-docker

2. Open Docker->Registry->bitwardenrs/server, and click download, wait for a few seconds. The image is a repackaged version of Bitwarden using RUST.

02-registry-docker
3. Go to Image and create a container for bitwardenrs/server, make sure you properly select your preferred setting in Advanced Setting.
03-create-container

Below are some of the settings I use.

04-mount
05-apply-settings
Apply the setting.

4. Go to Control Panel->Application Portal->Reverse Proxy, set up a proxy rule so you can access Bitwarden from Chrome, mobile clients in a secure manner. Description: (Whatever you please) Hostname: your Quickconnect or DDNS name Port: Set it to 44301 or any other ports you like
07-reverse-proxy

5. Go to Security->Certificate and configure your service certificate to a HTTPS certificate issued by services such as Let’s Encrypt, details of how to get hold of a SSL certificate is not covered here as you can find many tutorials online. Be sure to check the port forwarding setting in your router’s admin GUI, in this case I have to port forward port 44301, wait for a minute or two to let the changes go live.

08-certificate
  1. When you log into the Bitwarden page successfully, congratulation you’re hosting your own private, affordable, user-friendly application.
    Due to some limitation in Chrome, try to use Firefox or Safari to open the Bitwarden page, you should always try to use the source “hostname:port” to access the login page rather than using the destination hostname.
09-account

Create your own account and enjoy………………

Leave a comment

Your email address will not be published. Required fields are marked *