by The Computing Australia Group | 5-Minute Guide: Chrome Passwords
Google Chrome is one of the world’s most-used browsers, and its built-in Google Password Manager makes it easy to save, fill, review, and improve your passwords. Used well, it saves time and improves security. Used poorly (for example, exporting passwords and leaving the file lying around), it can increase risk.
This updated guide walks you through saving, viewing, editing, removing, exporting/importing passwords, managing “Never saved” sites, and strengthening your overall password security using Chrome’s tools—plus modern best practices like Password Checkup and passkeys.
How Chrome stores and fills passwords
When you save credentials in Chrome, they’re managed through Google Password Manager. Depending on your setup, passwords may be stored locally on the device and/or synced to your Google Account (useful across devices, but only as secure as your Google Account protections). In current Chrome builds, you’ll often see Password Manager under Passwords and autofill → Google Password Manager.
Step 1: Turn password saving on (or off)
1. Open Chrome.
2. Select the three dots (top right) → Settings.
3. Go to Passwords and autofill → Google Password Manager (or Autofill and passwords, depending on your version). Google Help
4. In Settings, turn Offer to save passwords On.
Pro tip (business use): If you’re managing a work device, many organisations prefer a dedicated password manager and may disable browser-saving via policy. That’s normal – and often recommended for compliance.
Step 2: Save a password in Chrome
1. Go to a website and sign in.
2. Chrome will prompt you to Save password?
3. Choose:
- Save to store the login, or
- Never to prevent Chrome from asking again for that site.
If the site has multiple accounts, Chrome can store multiple logins and let you pick which one to use at sign-in time.
Step 3: View saved passwords
1. Open Chrome → three dots → Settings.
2. Go to Passwords and autofill → Google Password Manager.
3. Under Saved passwords, locate the site/account.
4. To reveal the password, select Show password (often an eye icon). Chrome will require your device login (Windows/Mac password, biometrics, etc.) before displaying it.
Security reminder: If your computer account is shared or easy to guess, your saved passwords are easier to access. Protect the device first.
Step 4: Edit a saved password
Passwords usually need updating when you:
- change a password on a website,
- reset an account after suspicious activity, or
- rotate passwords as part of security policy.
To edit a password:
1. Open Google Password Manager in Chrome.
2. Find the login entry.
3. Choose Edit (often via a three-dots menu).
4. Authenticate with your device credentials.
5. Update the password and Save.
Important: Always change the password on the website first, then update Chrome if it doesn’t auto-update.
Step 5: Remove a site from the “Never saved” list
If you clicked Never by mistake, Chrome will stop prompting you for that site.
To undo it:
1. Open Google Password Manager in Chrome.
2. Scroll to Never saved (or “Never saved passwords”).
3. Find the site and select Remove (often an X or trash icon).
Security reminder: If your computer account is shared or easy to guess, your saved passwords are easier to access. Protect the device first.
Step 6: Delete a saved password
If you no longer use an account (or you saved the wrong login), remove it:
1. Open Google Password Manager in Chrome.
2. Under Saved passwords, locate the entry.
3. Choose Delete/Remove.
4. Confirm the prompt (some versions offer an Undo option immediately after).
Tip: If you’re decommissioning an employee account or closing an old account, deleting from Chrome is only part of the process—also close the account with the provider, where appropriate.
Step 7: Export passwords safely (CSV)
Exporting passwords creates a human-readable file (CSV). That’s useful for migration or backup, but it’s also a major security risk if mishandled.
To export from Chrome:
- Open Google Password Manager in Chrome.
- Find the Export passwords option.
- Confirm the warning.
- Confirm the warning. Authenticate with your device credentials.
- Save the .csv file to a secure location.
Google’s guidance specifically notes importing/exporting via CSV and the expected columns when importing (e.g., url, username, password).
Export safety checklist (don’t skip this)
- Save the CSV to an encrypted drive or secure vault, not Downloads/Desktop.
- Do not email the CSV to yourself or anyone else.
- If you exported for a one-time migration, delete the CSV immediately after confirming the import worked.
- Empty the Recycle Bin/Trash afterwards.
- If this is a business device: follow your organisation’s security policy—exports may be prohibited.
Step 8: Import passwords (when migrating)
High-level process:
- Export from the old password manager as CSV.
- Ensure the first row includes the required column headings (typically url, username, password).
- In Chrome → Google Password Manager → Import, then follow prompts.
Best practice: Import on a trusted device, on a secure network, and only keep the CSV for as long as absolutely necessary.
Step 9: Run a Password Checkup (weak/reused/compromised)
One of the most valuable Chrome features is Password Checkup, which flags:
- Compromised passwords (known breach exposure),
- Reused passwords (same password across multiple sites),
- Weak passwords.
To run it on desktop Chrome:
- Open Chrome.
- Go to three dots → Passwords and autofill → Google Password Manager.
- Select Checkup (Password Checkup).
You can also run it at passwords.google.com under Password Checkup.
What to do with the results
- Compromised: change these first (same day).
- Reused: replace with unique passwords per site.
- Weak: upgrade to long passphrases or generated passwords.
Step 10: Upgrade to passkeys where possible
Passkeys are a modern alternative to passwords designed to resist phishing. They’re typically tied to your device’s biometrics (fingerprint/face) or device unlock, and they’re unique per site.
Chrome/Google Password Manager supports saving and managing passkeys so you can use them across devices when you’re signed in with the same Google Account (supported platforms/conditions apply).
How to manage passkeys
- In Chrome, open Google Password Manager, then look for passkeys management options (availability varies by platform/version).
Practical advice: Start with your most important accounts (email, banking, Microsoft/Apple/Google, social media). Enable passkeys where offered, and keep recovery options updated.
Passwords are highly sensitive information that needs to be regularly changed and appropriately managed. If you are facing any trouble with how to manage passwords in Chrome browser or any other IT related concerns, contact us or email us at helpdesk@computingaustralia.group. Our Perth IT solutions team is 24/7 ready to help you with your IT related problems.
Jargon Buster
Web Browser – an application used to access web pages and websites. E.g., Microsoft Internet Explorer, Google Chrome, Mozilla Firefox etc.
Passwords – or passcode is a string of characters that allows access to a system or service.
FAQ
How do I view saved passwords in Chrome?
Open Chrome → Settings → Passwords and autofill → Google Password Manager, select a saved login, then tap the eye/show icon. You’ll be asked for your computer/password/biometric to reveal it.
How do I edit a saved password in Chrome?
Go to G oogle Password Manager, find the website entry, choose Edit, verify your device credentials, update the password, then Save. (Change it on the website first, then update it in Chrome.)
How do I remove a site from Chrome’s “Never saved” list?
Open Google Password Manager, scroll to Never saved, then remove the site (usually an X / remove option). Next login, Chrome will ask again to save the password.
How do I export passwords from Chrome?
In Google Password Manager, open the menu and select Export passwords. Confirm the warning, authenticate, and save the CSV file in a secure location. Delete the CSV after you finish migrating.
What is Chrome Password Checkup and how do I run it?
Password Checkup scans saved passwords for compromised, reused, or weak credentials. Open Google Password Manager → Checkup and follow the prompts to update any risky passwords first (especially compromised ones).
