Forum Discussion

Microsoft

Jun 03, 2019

Autofill in Microsoft Edge

Autofill of forms is a feature familiar to most Microsoft Edge customers (or for that matter, users of most modern browsers). In the next version of Microsoft Edge too, you can expect the browser to remember your passwords for all your favorite websites and help you fill in your address and credit card details with one-click whenever you come across these forms online. In this post, we will cover some of these features that you’ve come to depend on and use in your everyday life.

View and Delete passwords within Microsoft Edge itself
Earlier, one needed to go to Windows Settings > Credentials Manager to view and delete saved passwords. Now this functionality is available within Microsoft Edge browser itself. You can View (after authenticating) and Delete your saved passwords in Settings > Profiles > Passwords.

Autofill suggestions made more usable
These changes have been made to improve the form suggestions experience.

Full preview of address data with field highlighting
Filling an address form can sometimes involve effort even with autofill, especially when you have multiple similar addresses saved. Microsoft Edge lets you preview your autofill data for all suggestions within the same dropdown itself, making it easier to choose the right address to fill.

To help you quickly select the autofill suggestion, the value corresponding to the field currently in focus is highlighted in the suggestions.

Ease of access for credentials
In login forms, Microsoft Edge now offers the ability to choose a credential pair both from the username field as well as the password field.

Browser data import for a seamless transition

A possible roadblock to try out a new browser is the unavailability of data that’s important to you, such as your favorites, passwords and other autofill data. Microsoft Edge smoothly overcomes this hurdle by making your passwords, payment info and addresses available right from the first launch.

Upon browser setup, you may choose to keep your data from another browser. If so, you will find all your form data under Settings > Profile and you can manage your data as needed. If you have credit cards that are linked to your Microsoft account, you will not be able to view them yet in the autofill interface. This will be available soon.

There is also an option to import all your autofill data on-demand, again through Settings > Profile. Remember that your existing data set will be replaced by the new data you import.

Sync autofill data across your devices
Work on syncing data across different devices is currently underway – expect these changes to reflect in the upcoming builds.

Control over your autofill data
As a Microsoft Edge user, you have full control on the autofill feature as well as your autofill data. It is important to us that you can easily view, delete and manage your personal data at any point of time. You can also enable/disable the whole feature for passwords, payment info and addresses, respectively.

Looking ahead
This is just the beginning. We know that your time is super valuable. And every second that we spare you from typing out your details each time you shop online, or every bit of mind space we free up from remembering a complex password, counts. Which is why, in the new Microsoft Edge it is important that you get a reliable autofill experience that works intuitively whenever you come across a form on the web.

And to get there, we need your help. You can help us by sharing examples of areas where autofill in Microsoft Edge can do better.

We look forward to your inputs!

ppnacho
Iron Contributor
Jun 03, 2019
Elliot Kirk

I'm not a fan of saving sensitive information automatically. But I understand that sometimes simplifies life.

With respect to the first section, it seems fundamental to me that you can not see the memorized passwords. It requires a minimum of security or at least put it a little difficult to see those keys. As long as you do not put a master key (like firefox does) I will never use this option. It always seemed like a big security hole on Google's part. Microsoft should not follow that line. Anyone can be absent from his post for a minute (no more) and someone can see all the keys in a very simple way.

Thank you.

---------------------

En español:

No soy fan de guardar informacion sensible de forma automatica. Pero entiendo que en ocasiones simplifica la vida.

Con respeto al primer apartado, me parece fundamental que NO se puedan ver las password memorizadas. Se pide un minimo de seguridad o al menos ponerselo un poco dificil al que quiera ver esas claves. Mientras no se ponga una clave maestra (como hace firefox) yo no utilzare nunca esta opcion. Siempre me parecio un gran agujero de seguridad por parte de google. Microsoft no deberia seguir esa linea. Cualquiera se puede ausentar de su puesto un minuto (no mas) y alguien poder ver todas las claves de forma muy sencilla.

Muchas gracias.
- AmineI
  Brass Contributor
  Jun 04, 2019
  ppnacho wrote:
  
  With respect to the first section, it seems fundamental to me that you can not see the memorized passwords. It requires a minimum of security or at least put it a little difficult to see those keys. As long as you do not put a master key (like firefox does) I will never use this option. It always seemed like a big security hole on Google's part. Microsoft should not follow that line. Anyone can be absent from his post for a minute (no more) and someone can see all the keys in a very simple way.
  Doesn't it ask for the Windows account password though ppnacho ? For me it does - and it makes sense to me since the browser is only as protected as the account it's on. If you're "away from your post", then since they don't have your Windows password you're fine.
  - Drew1903
    Silver Contributor
    Jun 05, 2019
    AmineI
    
    I'm chuckling, in a nice way, from your last paragraph... coincidentally, had just recently had an exchange with someone trying to say something about local account vs MS Account. And, here we go with, yet, another one of the plethora of reasons for using YOUR User Account (Email & P/W). The timing made me smile 😊 Who says there is no such thing as coincidence 😉
    
    Cheers,
    Drew
- scrbl
  Iron Contributor
  Jun 19, 2019
  I'm with Elliot. I currently use LastPass as my Password Manager, due to the security. It's good to find out that Firefox has a master key. Edge (Chromium) should adopt something similar...
  
  In fact, it would be nice to see Windows Hello security implemented in Edge (Chromium)
- rfmarves
  Copper Contributor
  Jun 27, 2019
  ppnacho There is a master password for Chrome, and now for Edge (Dev). It currently requires you to re-authenticate with you Windows Credentials, so being absent from post without locking your computer (a very bad practice, by the way) will still require the malicious passerby to authenticate access again through Windows.
  - Drew1903
    Silver Contributor
    Jun 27, 2019
    rfmarves
    
    Win+L, never leave home without it. If that is ever used as an ad slogan, I'll be rich 😉
    
    @Mary Branscombe wrote:
    ... the Windows account is protected by multiple layers of security,
    
    Thanks Mary. This, of course, jibes with what some of us have been striving to convey.
    
    Cheers,
    Drew
Drew1903
Silver Contributor
Jun 03, 2019
Elliot Kirk

Good we don't have to worry about something that, yes, you're right, is considered the norm & standard equipment. Of course, this all should be in place.

As things/items are mentioned it likely is easy for Folks to appreciate why a project like this takes several months to complete. Not only time to put everything in we want & have come to like, but, then, more time to make sure it all works properly & well, testing time. Sure, cannot release something until after confirming it all works correctly. And while we talk about what can be seen, the mechanics & the cosmetics... there's heaps of work under the covers, as well, needing time to be done.

>> It cannot be done all at once or as fast as one might like or expect.

Cheers,
Drew
- Elliot Kirk
  Microsoft
  Jun 03, 2019
  Thank you ppnacho and Drew. You are both absolutely right on. We are human, and we will make mistakes, which is why we will always flight first to make sure that more people can check our work before it goes out to everyone. We thank you very much for the feedback you provide, it is critical to the success of this browser.
  - Deleted
    Jul 04, 2019
    Elliot Kirk
    Do you intend to save (via end to end encryption or not) the OTP keys, currently I am obliged to use Authy for this while you propose one (but whose key backup is impossible).
Rohit Yadav
Bronze Contributor
Jun 04, 2019
Elliot Kirk all the features are perfect and are absolutely required for a good experience.
I'd like to suggest if we can add an option to suggest us new passwords upon signing up for new websites, it'd be a handy experience...🙂
mduregon
Copper Contributor
Jun 13, 2019
Elliot Kirk one thing I have really missed since using Edge, is the ability to remove items from the Autofill options. When developing, you often end up typing all sorts of different data into names, addresses, emails, etc. With IE you used to be able to clear that data up easily enough by just deleting it from the list when the browser displayed it. Please bring back a way to remove items from these lists easily.
- atlmsfanboi
  Copper Contributor
  Jun 14, 2019
  mduregon +1 for me. It was one of the reasons I still preferred to use IE in the modern world. Sites like SFDC tend to cache autofill info and while you want to remove one item you don't want all your info deleted. If this can come back it would be AMAZING!!!
- laalithya
  Microsoft
  Jun 18, 2019
  mduregon thanks for sharing your feedback. We have also heard other users share similar feedback in the past and our team is looking into this.
David Gibson
Microsoft
Jun 05, 2019
If possible, Elliot Kirk, could you or someone on the team compose a post explaining the security measures that protect the password data? I did considerable research into LastPass before storing my data there, and I'm loathe to change unless I have similar information. How is the sensitive data stored? Is it encrypted at rest? What sort of salting info or other details can be shared about that encryption? Is it only available after a clean authentication to Windows? Is it available for use after Windows login, or only after secondary authentication in Edge? Is it available for viewing/editing after Windows login, or only after secondary authentication in Edge? What does the Microsoft Cyber Security Team think about the capability?
- laalithya
  Microsoft
  Jun 18, 2019
  David Gibson thanks for the detailed questions and clearly calling out your concerns. Given we are talking about sensitive information here, we believe that security around how this data is stored and accessed is very important. In short, you can view the saved password for a website only upon additional authentication. We will follow up with a detailed post that will address all aspects of security and encryption regarding how your sensitive data is handled in Edge.
mikeyyve
Copper Contributor
Jun 09, 2019
Elliot Kirk

I'm not quite sure how many others feel this way about auto filling sensitive information but I prefer to rely on my own backing store for sensitive data rather than any browser's built in method. I used to use LastPass and now I use Bitwarden to manage such data. It would be fantastic if Edge could allow you to pick another source for auto fill data natively instead of what is currently the norm which is adding a context menu option for Bitwarden or LastPass.
arthill
Copper Contributor
Jun 05, 2019
Elliot Kirk Worked fine most places but could not get it to work at walgreens.com on the photos page. I would select my ID and password but nothing would get filled in. And, I couldn't type in what I wanted - autofill kept essentially gettting in the way. I had to go back to the regular Microsoft Edge to get logged int.
- laalithya
  Microsoft
  Jun 18, 2019
  arthill thanks for pointing out. This is the kind of feedback that is very valuable for our team. Our team will look into this bug. Next time you observe something similar, please hit the smiley on the top right corner of the browser so your feedback reaches our team promptly.
garyvoth
Brass Contributor
Jun 06, 2019
Elliot Kirk For the password management feature, it's good to see this more integrated into the browser. However, one of the biggest usability issues with Credential Manager today is the lack of any kind of search / sort / filter, coupled with the lack of friendly display names for sites. When you accumulate a significant number of credentials it can be very difficult to find passwords for specific sites.

In Edge, please consider adding a simple search or filter function to the user interface to address this issue.

---------------
Edit: well, color me silly. This functionality already exists in Edge Insider (not a Chrome user here, so I have no background familiarity to draw on). I haven't imported any passwords into Edge Insider as I am a LastPass user, but I just installed the browser on my wife's PC and discovered that what I describe above basically already exists.

So yeah, carry on!

Thanks for listening.
- MaryB
  Steel Contributor
  Jun 07, 2019
  That's what's good about this garyvoth It's just a web page so Find on page works (moving it to a pane with a more powerful search and filter would be nice but at least we now get central search
- laalithya
  Microsoft
  Jun 18, 2019
  garyvoth thanks a lot for your feedback and the edit that followed! It would still be valuable to know whether you were able to locate the search bar without any difficulty when you needed it. Thanks and keep sharing your feedback with us!
Helios Comms
Iron Contributor
Jun 15, 2019
Elliot Kirk will all these configuration settings roam/sync with AAD (Azure Active Directory) accounts as used with Office 365? One of the reasons my clients moved from Edge to Chrome was that Microsoft actively disable settings sync if you're on AD basic subscription. So if your laptop blew up, bang - all your settings and favourites are lost. And upgrading to Azure Premium just for synchronisation wasn't cost justified esp. Chrome did other things better (like multiple profiles/people).
leon_h
Copper Contributor
Jun 23, 2019
Elliot Kirk
I like what i see so far, but i kind of wish this would work more like a password manager. When i go to a website i have to log onto the password manager before it will fill the password. So it provides a second login. I suppose logging into Windows is a similar control but if you leave your computer on someone else would be able to get to all your websites that have saved passwords in Edge.

It would be nice to have a password generator button on a website when you want to change a password. Is that something you plan on adding? Enpass password manager has a nifty setup for specifying how complicated you want passwords to be, how long, include upper and lower case, numbers, symbols, pronounceable words or just nonsense. Any password generator would be a great addition.
- laalithya
  Microsoft
  Jun 24, 2019
  Thanks leon_h for your inputs. Understand your preference for having an additional login. However as of today, you would be able to sign in and sign out of the browser independently of Windows login. We will look into your feedback. Thanks again for sharing your thoughts.

Forum Discussion

Autofill in Microsoft Edge

Share

Resources