Hands-On Windows 177: Password Managers and Windows 11
Host: Paul Thurrott
Release Date: February 19, 2026
Episode Overview
In this episode of Hands-On Windows, Paul Thurrott kicks off a two-part series focused on password managers, emphasizing their essential role in personal security on Windows 11. This episode explores how password managers work, what features matter most, how to choose one, and a practical overview using Proton Pass within Windows, particularly the browser environment.
Key Discussion Points & Insights
The Evolution and Role of Password Managers
-
Password managers are central to online security:
- Once simply for passwords; now they're digital vaults for logins, payment methods, documents, personal data, and more.
- “It's not a password manager … these days, it's really an identity manager.” (Paul, 01:24)
-
Essential features of modern password managers:
- Autofill for logins & personal info across devices.
- Generation of strong, unique passwords.
- Detection of reused, weak, or compromised passwords.
- Recommendations for adding stronger authentication (like 2FA or passkeys).
- Emergency access and email alias generation in some apps.
-
Security layers:
- Protected by device biometrics (FaceID, Windows Hello, etc.).
- Synchronization across cloud-connected devices ensures access everywhere.
Choosing a Password Manager for Windows
-
Universal, cross-device support is critical.
- “When it comes to choosing a password manager, I think the most important thing … it needs to be everywhere, right? On all your devices.” (Paul, 03:48)
-
Recommended Free and Paid Options:
- Free: Bitwarden and Proton Pass (Paul demonstrates Proton Pass in the episode).
- Paid: 1Password and Dashlane (“not super expensive… roughly $30 a year or even less”).
- Ecosystem-native options:
- Google Password Manager (built into Chrome).
- Microsoft Password Manager (built into Edge; covered in the next episode).
Practical Demo: Setting Up and Using Proton Pass
-
Account Creation and Vault Basics (09:28):
- Demonstrated a new account creation with Proton Pass.
- Options include: “Hide my email” aliases, credit cards, notes, custom item support (e.g., passport images).
- “Most people are going to ... import passwords, because we all have passwords in various password managers and browsers.” (Paul, 10:16)
-
Importing Passwords:
- Export passwords from Chrome as CSV and import into Proton Pass.
- Highlights the privacy challenge: “It would be kind of a privacy nightmare to show you all that … so I just show you what it looked like.” (Paul, 09:36)
-
Security Audits Inside the Manager:
- Proton Pass flags weak and reused passwords, provides dark web monitoring, and suggests enabling 2FA on accounts that allow it.
- “Correcting each of these little issues does take time, but 100% worth it.” (Paul, 12:51)
-
Creating and Saving a Strong Password for a New Account:
- Example: Setting up a Spotify account, accepting a suggested strong password, and saving it directly into the vault.
-
Dealing With Browser Autofill Conflicts (15:04):
- If you adopt a third-party manager, turn off the built-in browser manager to avoid conflicts.
- “You have to actually turn off the old password manager ... in Settings … but Google Password Manager is turned off, so that shouldn’t have come up.” (Paul, 15:21)
- On mobile, ensure only one autofill provider is set.
-
Final Steps for Full Security:
- Once migrated, delete old passwords from browsers and other locations to reduce breach risk.
- “It’s super important … to not have multiple copies of all your passwords out in the world.” (Paul, 17:56)
Password Management and Windows 11
- Password management happens in the browser environment, not natively within Windows 11 (passwords managed in Edge ecosystem).
- Passkey (passwordless authentication) support is built into Windows 11.
- Next episode will focus on Microsoft Password Manager inside Edge.
Notable Quotes & Memorable Moments
- On what a password manager really is:
- “Even in the old days when all it did was manage passwords, it was really managing logins… Now, it really is an identity manager.” (Paul, 01:33)
- On feature priorities:
- “It needs to be everywhere, right? On all your devices. That’s big.” (Paul, 03:48)
- On the move from browser-based managers:
- “If you’re still using your browser’s password manager, Bitwarden makes it very easy to move over…” (Leo Laporte, sponsor segment, 07:23)
- Practical user advice:
- “Once you’ve done all this … there’s one more step, and it’s important … delete these things [old passwords] … it’s super important to get that done.” (Paul, 17:40)
Timestamps for Key Segments
- 00:18–04:55 | What is a password/identity manager, what features to expect
- 04:56–09:28 | Sponsor segment (Bitwarden, skip)
- 09:28–13:44 | Setting up a password manager, importing accounts, using Proton Pass
- 13:45–16:00 | Creating a new account with autofilled passwords, dealing with autofill conflicts
- 16:00–18:45 | Managing browser autofill settings, deleting old passwords, securing accounts
- 18:46–19:45 | Closing remarks
Practical Takeaways
- Password managers go far beyond just passwords now; they’re foundational for your digital identity, especially with new features like passkeys and cross-device sync.
- Choosing one comes down to platform support, feature set, and, if you prefer, open-source credentials (Bitwarden and Proton Pass get repeated praise).
- Set up your password manager everywhere you use passwords, clean up your old password stores, enable 2FA, and consider dark web monitoring.
- Windows 11 does not have a native standalone password manager; Edge houses Microsoft’s solution (future episode).
For listeners seeking a clear, step-by-step guide to migrating to a modern password manager in Windows (especially with free and open-source options), this episode provides straightforward, practical advice — with a focus on why it matters for your security in 2026.