Vaultwarden | Support by cloudimg

## Vaultwarden by cloudimg

Vaultwarden is a lightweight, Rust-based password manager server that is compatible with the Bitwarden clients. It implements the Bitwarden API, so the official Bitwarden desktop, mobile, CLI and browser-extension applications connect to it directly, and it bundles the official web-vault for full in-browser access. This Amazon Machine Image delivers Vaultwarden compiled from source and fully configured, so a private password manager is running within minutes of launch. The current release available is Vaultwarden 1.36.0.

## Application Stack

The Vaultwarden server, built from the upstream Rust source against an embedded SQLite database, runs behind nginx as a reverse proxy. The server binds to the loopback interface; nginx serves the web-vault and upgrades the WebSocket notifications endpoint on port 80, ready for you to terminate TLS on port 443.

## Secure First Boot

On the first boot of every instance a one shot service generates a fresh admin token unique to that instance, stores only its argon2id hash in the server configuration, and writes the plaintext token to a root only file. The SQLite database ships empty, so no users, vaults or shared credentials are baked into the image.

## Ready To Use

Browse to the web-vault, create your administrator account, then install the Bitwarden client of your choice and point it at your server URL to sync your vault across every device. Use the admin diagnostics panel to invite users, manage organisations and lock down open registration.

## cloudimg Support

cloudimg provides 24/7 technical support for this image, covering deployment, upgrades, TLS termination, backups and client onboarding.

Vaultwarden and Bitwarden are trademarks of their respective owners. Use of the names does not imply any affiliation with or endorsement by them.