Full Guide to Self-Hosting Password Manager Bitwarden on Raspberry Pi

Hosting Server at Home – Full Guide to Self-Hosting Password Manager Bitwarden on Raspberry Pi

Full Guide to Self-Hosting Password Manager Bitwarden on Raspberry Pi

Hosting Server at Home

» Tipping «
I put a lot of work into this, I’d really appreciate it:

0:00 Intro
0:20 Overview

1:07 Installing Raspberry Pi OS

1:30 Preparing SD Card

2:12 Connecting with SSH & Installing Docker
2:58 Docker quick installation script

3:08 Docker web index

3:43 Installing Docker manually
4:07 Adding “pi” to Docker group
4:31 Testing Docker
4:46 Downloading Bitwarden server (DOCKER TAG HAS CHANGED SINCE MAKING THE VIDEO, use the correct command below)
docker run -d –name bitwarden -v /bw-data/:/data/ -p 8080:80 bitwardenrs/server:latest-arm32v6

6:13 Creating a self-signed HTTPS certificate

8:47 Running Bitwarden server with certificates
docker run -d –name bitwarden –restart unless-stopped -v /bw-data:/data -v /etc/ssl/certs:/ssl -e ROCKET_TLS='{certs=”/ssl/bitwarden.crt”,key=”/ssl/bitwarden.key”}’ -p 8080:80 bitwardenrs/server:latest-arm32v6

9:14 Installing our certificate
9:44 Installation in Firefox
10:22 Installation in Google Chrome
10:38 Installation on iOS
11:23 Installation on Android

11:46 Outro


Subscribe to my channel!
Music by Epidemic Sound:
Check out more of my videos:

This video will show you how to self-host the password manager Bitwarden on a Raspberry Pi. With your own server, you have full control over your precious passwords. With Bitwarden_rs, you can even enjoy Bitwarden Premium features for free. We will cover Docker for running the server and create our own HTTPS certificate, so all communication with Bitwarden is encrypted.

» Credits «
“Raspberry Pi 3D-Model” by JoSaCo; Licensed under CC BY 4.0 ( ); Changes: Removed black plate under soldering connections from model
Stock footage provided by Videezy
“Woman suprised” by Wolfgang Langer from Pexels
“Down arrow icon” by icoicons
Music, arrow, fast, fast forward icon by Royyan Wijaya; Licensed under CC BY 3.0 ( ); Changes: Colored stroke
“Certificate, https, monitor, secure, ssl icon” by Alexiuz AS ( )
Sunburst Shape by Brusheezy

you search:

Hosting Server at Home

Full Guide to Self-Hosting Password Manager Bitwarden on Raspberry Pi

34 thoughts on “Hosting Server at Home – Full Guide to Self-Hosting Password Manager Bitwarden on Raspberry Pi

  1. Hey guys, just noticed the Docker tag seems to have changed since making the video. Instead of the tag "bitwardenrs/server:raspberry", you now should use "bitwardenrs/server:latest-arm32v6" for Raspberry Pi. I've adjusted the commands in the description accordingly.

  2. Will it be a problem if I disconnect the pi and later due to dynamic IP, the ip address of the pi changes? Because we named while making the certificated, with the ip address of the pi?

  3. The docker tags have changed again! It is now

    PS: This was BY FAR a better explanation of how to install the instance with certificates, than the github wiki provided! Thank you so much!

  4. This setup is definitely insecure if exposed to a public network e.g. the www. Don't use this Rocket TLS but use a real proxy like Caddy. Read the GitHub documentation before exposing your passwords to hackers.

  5. Hi did the installation the same way as you – all is working on desktop PC (connection over chrome also) but can't connect at android app (tested older version and latest version)
    where can i get help?

  6. This question is totally basic: How do I get around the issue that the IP address used is never static as it is "leased" from my ISP. Perhaps your IP local is static but not the what I see from outside my router. If I am already behind in solving this program, please refer me to a link which "addresses" this IP address issue. Vielen Dank.

  7. Shouldnt the OS be the "Lite" (headless) version? If its going to be used as a server only?

    Also I the WiFi config link seems to be missing.

  8. Im using KeePass with local database storage and ftp sync between desktop and android – and that is working great for me over 8 years – but this bitwarden setup seems interesting because of possibility to access bitwarden server from outside with port forwarding.
    I'm not sure how safe would that be?!

  9. This makes me understand how simple the architecture of a password manager is and how any company asking you more than $10/year for a simple password manager is overcharging you.

  10. Be warned. When self-hosted, Bitwarden's data directory stores a PLAINTEXT list of what sites you visit (as well as your email address, and your recovery question)

  11. Hi.
    Edit : fixed it with "docker rm bitwarden" at first
    Every thing fine until I finally try to start BitWarden Server
    (8:47 command in description) I got this message :
    "docker: Error response from daemon: Conflict. The container name "/bitwarden" is already in use by container "6f074590abde9ed6369cf4def10d082c9c2a0c1c456ffb806e1d71ffd3f9f63c". You have to remove (or rename) that container to be able to reuse that name."
    How do I do that ? I'm complitly new to Docker.

  12. HI censiClick, thx for the awesome video. I got Bitwarden running on a raspberry, and I can access the raspberry from my Windows PC and Macbook securely by importing the certificate. My Android phone however is protesting: "java.security.cert.CertPathValidatorException: Trust anchor for certification path not found". It seems that Android has recently tightened the rules for handling self signed certificates. Is that true; any work arounds for this?

  13. A FANTASTIC video – Thank You …I am wondering if you should `chown root:root /etc/ssl/certs/bitwarden.*` …although, in fairness, if you can sudo as user:pi, I guess the additional security is little more than "good practice" :/

  14. do i get it right, that the ca-certificates on the devices will last 10 years (3650 days) and i have to repeat that step only every ten years (put it on every device manually), BUT i will have to create new bitwarden-certificates on the pi every year?

Leave a Reply

Your email address will not be published. Required fields are marked *