How to secure your MSP account

NordPass is built with zero-knowledge principle, meaning we do not store or have access to your encrypted data, including the MSP MasterPassword, which serves as your personal decryption key to access both your own and your clients' data. For this reason, it is crucial to ensure that your MSP account is up to date, secure, and that a recovery plan is in place in case the sole account owner loses access.

NOTE: If you lose your MSP MasterPassword, we won't be able to recover it due to the zero-knowledge principle.

Follow these tips to ensure your MSP account security:

• Generate and save your Recovery Code. To do so, follow these steps:
1. Click Save Code from the MSP Admin Panel.
   
   
   
   
2. You will see your recovery code. We highly recommend saving your recovery code in cloud storage or even on a physical copy.
   
   
   
   
3. Once you've saved your recovery code, press Yes, I've saved it.
   
   
   
   

• The recovery code is one-time-use only. If you already used your recovery code, generate a new one immediately. To do so, click on My Account in the bottom-left and select Reset Recovery Code.
  
  

  

   

• Make sure to activate additional MSP Admins once you create your MSP account. Each MSP Admin has their own MasterPassword (decryption key). In case you lose your access, your MSP account is still accessible by other employees in your MSP.
  
  To do so, go to the Members tab, select a MSP user by clicking the three dots and click Make MSP Admin.
  
  
  
  

Lastly, we also heavily advise to review your MSP members regularly – remove users that do not need access to your clients data and make sure that only the right members have the accesses needed.