Autofill is not working on HTTP (Insecure) Sites

By restricting autofill on insecure pages, Enpass helps protect your login details from potential risks. To keep your information safe, autofill only works on websites that use secure connections (HTTPS). Some sites that still rely on HTTP aren’t supported, because passwords entered there are transmitted over the network in plain text.

What’s happening

Some websites still use HTTP (addresses starting with http://) instead of HTTP (https://).

• HTTP is insecure: Information sent over these pages can be intercepted by others on the network.

• To keep your passwords safe, autofill is restricted or blocked on insecure pages.

What you can do

• Best option: Try opening the secure version of the site by replacing http:// with https:// in the address bar.

  • Example: http://example.com → https://example.com

• If the site doesn’t support HTTPS and you are sure of its authenticity, you may see a prompt to “Allow anyway” for a one-time autofill.

• For Enpass Business, autofill on unsecured (HTTP-only) sites is blocked by company policy (Password Autofill Policies). To request an exception for a site, please contact your administrator.