License and Disclaimers
KeePassXC is licensed with the GNU General Public License Version 3. All copyrights and additional licenses are recorded in COPYING.
Disclaimer of Warranty
THERE IS NO WARRANTY FOR THE PROGRAM, TO THE EXTENT PERMITTED BY APPLICABLE LAW. Except when otherwise stated in writing the copyright holders and/or other parties provide the program "as is" without Warranty of any kind, either expressed or implied, including, but not limited to, the implied warranties of Merchantability and fitness for a particular purpose. The entire risk as to the quality and performance of the program Is with you. Should the program prove defective, you assume the cost of all necessary servicing, repair or correction.
Limitation of Liability
In no event unless required by applicable law or agreed to in writing will any copyright holder, or any other party Who modifies and/or conveys the program as permitted above, be liable to you for damages, including any general, Special, incidental or consequential damages arising out of the use or inability to use the program (including but not Limited to loss of data or data being rendered inaccurate or losses sustained by you or third parties or a failure of The program to operate with any other programs), even if such holder or other party has been advised of the possibility Of such damages.
Contact Us
We are committed to continually improve KeePassXC through customer experience and your feedback is important to us. Please send us your feedback or comments to team@keepassxc.org. To report issues, visit: https://github.com/keepassxreboot/keepassxc.
Thank You,
Team KeePassXC
Welcome
KeePassXC is a modern open-source password manager. It is used to store and manage information such as URLs, usernames, passwords, and so on for various accounts on your web applications. KeePassXC stores all data in an encrypted format while still providing secure access to your information.
KeePassXC is helpful for people with extremely high demands of secure personal data management. It saves many different information, such as user names, passwords, URLs, attachments, and comments in one single database. For a better management, user-defined titles and icons can be specified for different entries in KeePassXC. In addition, the entries are sorted in customizable groups. The integrated search function allows to search in a single group or the complete database.
KeePassXC also provides a secure, customizable, fast, and easy-to-use password generator utility. This utility is very helpful to those who generate passwords frequently.
Overview
You can store an unlimited number of passwords and information in a KeePassXC database. Every piece of information you store in your database is encrypted at all times within the kdbx file. When you are accessing your database from within KeePassXC, your information in decrypted and stored in your computer’s memory. KeePassXC places controls over the access to this data so other applications cannot read it (unless they have administrative rights). The interface is designed to let you quickly access your passwords, search for the right entry, perform Auto-Type or copy/paste
operations, make and save changes, and then get out of your way.
KeePassXC ships with light and dark themes specifically designed to meet accessibility standards. In most cases, the appropriate theme for your system will be determined automatically, but you can always set a specific theme in the application settings.
Features
KeePassXC has numerous features for novice and power users alike. This guide will go over the basic features to get you up and running quickly. The User Guide contains more in-depth discussions on the major features in the application.
-
Basic Features
-
Create, open, and save databases in the KDBX format (KeePass Compatible)
-
Store sensitive information in entries that are organized by groups
-
Search for entries
-
Password generator
-
Auto-Type passwords into applications
-
Browser integration with Google Chrome, Mozilla Firefox, Microsoft Edge, Chromium, Vivaldi, Brave, and Tor-Browser
-
Entry icon download
-
Import databases from CSV, 1Password, and KeePass1 formats
-
-
Advanced Features
-
Database reports (password health, HIBP, and statistics)
-
Database export to CSV and HTML formats
-
TOTP storage and generation
-
Field references between entries
-
File attachments and custom attributes
-
Entry history and data restoration
-
YubiKey/OnlyKey challenge-response support
-
Command line interface (keepassxc-cli)
-
Auto-Open databases
-
KeeShare shared databases (import, export, and synchronize)
-
SSH Agent
-
FreeDesktop.org Secret Service (replace Gnome keyring, etc.)
-
Additional encryption choices: Twofish and ChaCha20
-
Downloading KeePassXC
KeePassXC is available for download for the following operating systems and platforms:
-
Microsoft Windows
-
Portable and MSI Installer (64-bit and 32-bit)
-
-
Linux - Official Cross-Distribution Packages
-
AppImage and Snap Package
-
-
Linux - Distribution-Specific Packages
-
Ubuntu, Debian, Arch Linux, Gentoo, Fedora, CentOS, and OpenSUSE
-
-
macOS
-
DMG Installer, Homebrew Cask
-
To download the KeePassXC installer for your desired platform, visit https://keepassxc.org/download or directly from our GitHub Releases.
| KeePassXC is open-source software and may be available on other websites that are unaffiliated with Team KeePassXC. We strongly discourage downloading KeePassXC from third-party websites. |
Before installing KeePassXC, it is recommended that you verify that your downloaded installer matches the signature, which is published alongside the release package. By verifying the signatures of KeePassXC releases, you can verify the authenticity and integrity of the downloaded installation file. This guarantees that the file you downloaded was originally created by the KeePassXC Team and its contents have not been tampered with.
To know more about the steps to verify the authenticity and integrity of your downloaded package, visit https://keepassxc.org/verifying-signatures.
Microsoft Windows
The Windows MSI installer is signed by a secure certificate owned by DroidMonkey Apps, LLC. If you do not see this dialog when installing the application, click NO and download the installer from https://keepassxc.org.
Installing KeePassXC is a simple process. In the following example, installation steps for KeePassXC on Microsoft Windows are described. Installing KeePassXC on other operating systems is also a simple process, which you can accomplish by using the native installers. To know more about the installation instructions on the other operating systems, refer to the KeePassXC User Manual.
To install KeePassXC on Microsoft Windows, perform the following steps:
-
Double click on the KeePassXC-Y.Y.Y-WinZZ.msi file. Here, Y.Y.Y represents the version of the software and ZZ represents the 32-bit/64-bit version of the Microsoft Windows operating system.
Figure 3. Install wizard -
Click Next and follow the simple instructions on the KeepPassXC Setup Wizard to complete the installation. You will have the option to choose your install location, add a desktop shortcut, and launch on startup.
Figure 4. Install wizard (cont)
Linux
You can easily download the KeePassXC installer for Linux. When you search for KeePassXC, multiple options are displayed as shown in the following screen:
The Snap and Flatpak options are sandboxed applications (more secure). The Native option is installed with the operating system files. Read more about the limitations of these options here: KeePassXC Snap FAQ
macOS
To install the KeePassXC app on macOS, double click on the downloaded DMG file and use the click and drag option as shown:
Interface Overview
Application Layout
The KeePassXC interface is designed for simplicity and easy access to your information. The main database view is split into three main partitions detailed below. You can open multiple databases at the same time, they will appear in tabs.
(A) Groups - Organize your entries into discrete groups to bring order to all of your sensitive information. Groups can be nested under each other to create a hierarchy. Settings from parent groups get applied to their children.
(B) Entries - Entries contain all the information for each website or application you are storing in KeePassXC. This view shows all the entries in the selected group. Each column can be resized, reordered, and shown or hidden based on your preference. Right click the header row to see all available options.
(C) Preview - Shows a preview of the selected group or entry. You can temporarily hide this preview using the close button on the right hand side or completely disabled in the application settings.
| Double clicking on the text in the entries list copies that field to the clipboard. Double clicking the entry title will open the entry for editing. |
Toolbar
The toolbar provides a quick way to perform common tasks with your database. Some entries in the toolbar are dynamically disabled based on the information contained in the selected entry. Every common action in KeePassXC can be controlled with a keyboard shortcut as well.
(A) Database - Open Database, Save Database
(B) Entries - Create Entry, Edit Selected Entry, Delete Selected Entry
(C) Entry Data - Copy Username, Copy Password, Copy URL, Perform Auto-Type
(D) Lock All Databases
(E) Tools - Password Generator, Application Settings
(F) Search
Application Settings
Users can configure KeePassXC to their personal tastes with a wide variety of general and security settings that apply to the whole application. These settings are accessible from Tools → Settings or the cog wheel icon from the toolbar. Settings include: startup options, file management, entry management, user interface, language, security timeouts, and convenience.
Setting the Theme
KeePassXC ships with light and dark themes specifically designed to meet accessibility standards. In most cases, the appropriate theme for your system will be determined automatically, but you can always set a specific theme by using the View menu. When a new theme is selected you will be prompted to restart KeePassXC to apply the theme immediately.
Compact Mode
For users with smaller screens or those who desire seeing more entries at once, KeePassXC offers a compact view mode. This mode shows smaller toolbar, group, and entry icons. The effect of compact mode (left side) can be seen below.
Keyboard Shortcuts
| Action | Keyboard Shortcut |
|---|---|
Open Database |
Ctrl + O |
Save Database |
Ctrl + S |
Save Database As |
Ctrl + Shift + S |
New Database |
Ctrl + Shift + N |
Close Database |
Ctrl + W ; Ctrl + F4 |
Lock All Databases |
Ctrl + L |
Quit |
Ctrl + Q |
New Entry |
Ctrl + N |
Edit Entry |
Enter ; Ctrl + E |
Delete Entry |
Delete |
Clone Entry |
Ctrl + K |
Copy Username |
Ctrl + B |
Copy Password |
Ctrl + C |
Copy URL |
Ctrl + U |
Open URL |
Ctrl + Shift + U |
Copy TOTP |
Ctrl + T |
Show TOTP |
Ctrl + Shift + T |
Trigger AutoType |
Ctrl + Shift + V |
Add key to SSH Agent |
Ctrl + H |
Remove key from SSH Agent |
Ctrl + Shift + H |
Minimize Window |
Ctrl + M |
Hide Window |
Ctrl + Shift + M |
Select Next Database Tab |
Ctrl + Tab ; Ctrl + PageDn |
Select Previous Database Tab |
Ctrl + Shift + Tab ; Ctrl + PageUp |
Toggle Passwords Hidden |
Ctrl + Shift + C |
Toggle Usernames Hidden |
Ctrl + Shift + B |
Focus Search |
Ctrl + F |
Clear Search |
Escape |
Show Keyboard Shortcuts |
Ctrl + / |
Password Generator
This password generator helps you to generate random strong passwords and passphrases that you can use for your applications and websites you visit.
Generating Passwords
To generate random passwords, specify the characters to be used in your choice of password (for example, upper-case letters, digits, special characters, and so on) and KeePassXC will randomly pick characters out of the set.
To generate the random password using Password Generator, perform the following steps:
-
Open KeePassXC.
-
Navigate to Tools > Password Generator. The following screen appears:
Figure 11. Password Generator -
Select the length of the desired password by dragging the Length slider.
-
Select the character-sets that you want to include in your password.
-
Use the regenerate button (Ctrl + R) to make a new password using the chosen options.
-
Use the clipboard button (Ctrl + C) to copy the generated password to the clipboard.
Database Operations
Creating Your First Database
To start using KeePassXC, you need to first create a database that will store the password and other details.
To create a database, perform the following steps:
-
Open your KeePassXC application. Click the create new database button (A):
Figure 12. Create database - Welcome screen -
The database creation wizard appears. Enter the desired database name and a short description (optional):
Figure 13. Create database - General information -
Click Continue. The Encryption Settings screen appears, we don’t recommend making any changes besides increasing or decreasing the decryption time using the slider. Setting the Decryption Time slider at a higher values means that the database will have higher level of protection but the time taken by the database to open will increase.
Figure 14. Create database - Encryption settings -
Click the Continue button. The Database Credentials screen appears, enter your desired database password. We recommend using a long, randomized password.
Figure 15. Create database - Database credentials(A) Open the password generator
(B) Toggle password visibilityKeep this password for your database safe. Either memorize it or note it down somewhere. Losing the database password might result in permanent locking of your database and you will not be able to retrieve information stored in the database. -
Click Done. You will be prompted to select a location to save your database file. The database file is saved on to your computer with the default
.kdbxextension. You can store your database wherever you wish, it is fully encrypted at all times preventing unauthorized access.
Opening an Existing Database
To open an existing database, perform the following steps:
-
Open your KeePassXC application. Click the Open existing database button (A) or select a recent database from the Recent Databases list (B).
Figure 16. Open an existing database -
Navigate to the location of the your database on your computer and open the database file. The database unlock screen will appear:
Figure 17. Database unlock screen -
Enter the password for your database.
-
(Optional) Browse for the Key File if you have chosen it as an additional authentication factor while creating the database. Refer to the KeePassXC User Guide for more information on setting a Key File as an additional authentication factor.
-
Click OK. The database opens and the following screen is displayed:
Figure 18. Unlocked database
Adding an Entry
All the details such as usernames, passwords, URLs, attachments, notes, and so on are stored in database entries. You can create as many entries as you want in the database.
To add an entry, perform the following step:
-
Navigate to Entries > New Entry (Or, press Ctrl+N). The following screen appears:
Figure 19. Adding a new entry -
Enter a desired title for the entry, username, password, URL, and notes on this screen.
-
(Optional) Select the Expires check-box to set the expiry date for the password. You can manually enter the date and time or click the Presets button to select a expiry date and time for your password.
-
Click OK to add the entry to your database.
Editing an Entry
To edit the details in an entry, perform the following steps:
-
Select the entry you want to edit.
-
Press
Enter, click the edit toolbar icon, or right-click and select Edit Entry from the menu. -
Make the desired changes.
-
Click OK.
Deleting an Entry
To delete an entry, perform the following steps:
-
Select the entry you want to delete and press the
Deletebutton on your keyboard. -
You will be prompted to move the entry to the Recycle Bin (if enabled).
You can disable the recycle bin within the Database Settings. If the recycle bin is disabled then deleted entries will be permanently removed from the database. -
To permanently delete the entry, navigate to the Recycle Bin, select the entry you want to delete and press the
Deletebutton on your keyboard.
Storing a Database File
The database file that you create might contain highly sensitive data and must be stored in a very secure way. You must make sure that the database is always protected with a strong and long password. The database file that is protected with a strong and long password is secure and encrypted while stored on your computer or cloud storage service.
Make sure that the database file is stored in a folder that is secure. Make sure that you or someone else does not accidentally delete the database file. Deletion of the database file will result in the total loss of your information and a lot of inconvenience to manually retrieve your logins for various web applications. You must not share your database file with anyone unless absolutely necessary.
Backing up a Database File
It is a good practice to create copies of your database file and store the copies of your database on a different computer, smart phone, or cloud storage space such a Google Drive or Microsoft OneDrive. Backups can be created automatically by selecting the Backup database file before saving option in the application settings. Additionally, you can create a backup on-demand using the Database → Save Database Backup… menu feature.
Creating backups for your database give you a peace of mind should you lose one copy of your database. You can quickly retrieve the copy of your database and start using it.
Setup Browser Integration
The KeePassXC-Browser extension is installed within your web browser so that you can automatically pull usernames and passwords from KeePassXC and populate them directly into website fields. It is a very useful and secure extension that enhances your productivity while using KeePassXC. With this extension, you do not need to manually copy the data from your KeePassXC database and paste it into the website fields.
The KeePassXC-Browser extension is available on the following web browsers:
-
Google Chrome, Vivaldi, and Brave
-
Mozilla Firefox and Tor-Browser
-
Microsoft Edge
-
Chromium
Install the Browser Extension
You can download the KeePassXC-Browser extension from your web browser. To download the KeePassXC-Browser extension, perform the following steps:
-
Click the link corresponding to your browser:
-
Click the button to install/add the extension to the browser. Accept any confirmation dialogs.
Configure KeePassXC-Browser
To start using KeePassXC-Browser, you must configure it so that it can communicate with the KeePassXC application on your desktop.
To configure KeePassXC-Browser, perform the following steps:
-
Open the KeePassXC application on your desktop and navigate to Tools > Settings.
-
Click the Browser Integration option on the left-hand side (1). The following screen appears:
Figure 21. Browser Settings -
Click the Enable browser integration checkbox (2). Then select the browsers for which you have downloaded the KeePassXC-Browser extension (3) and click OK.
-
Ensure your database is unlocked, then open (or restart) your browser.
-
Click the KeePassXC-Browser extension icon (A) in your browser (see figure below). A pop-up window appears.
Figure 22. Connect Extension to KeePassXC -
Click the Connect button (B) in the pop-up window to complete integrating the KeePassXC-Browser extension with your KeePassXC desktop application.
-
You are now prompted to enter a unique name to identify the connection between this browser and your database. Enter a unique name in the field (e.g., firefox-laptop) and click the Save and allow access button.
Figure 23. Extension Association Dialog
| If you reuse a connection name in a database, the previous browser connection will be overwritten and prevent access. |
Using the Browser Extension
The KeePassXC-Browser extension lets you automatically populate the entries from your KeePassXC database into the fields on websites you visit. To do so, perform the following steps:
-
Open your KeePassXC desktop application and unlock your database.
-
Open your web browser. The KeePassXC-Browser extension icon in your browser window will change based on its connection state. The figure below shows the different states.
(A) KeePassXC is not running or is disconnected
(B) Connected to KeePassXC, but database is locked
(C) Connected to KeePassXC and ready to use
Figure 24. Extension Icon States -
If the KeePassXC desktop application is not connected with the KeePassXC-Browser extension, click the extension icon in your web browser and click Reload from the pop-up window as shown in the following screen.
Figure 25. Reload Extension Connection -
Open the URL for which you want to use with your database. If you have previously created an entry in your database then the KeePassXC-Browser Confirm Access dialog may appear:
Figure 26. Confirm Access Dialog -
Ensure the credentials you want use are checked, then click (A) Remember (optional), then click Allow Selected (B).
-
In your website, the KeePassXC icon will appear in the username field of the login form (A). Click the icon to populate the field with your stored credentials. If you have more than one credential for this website, a dropdown will appear to choose the one to use.
Figure 27. Fill Credentials