The ledger passphrase (often called the 25th word) is an optional additional secret you can add to a 24-word seed phrase (BIP-39). Think of the 24 words as the master key to a safe deposit box. The 25th word is an extra lock on that box that changes which drawers open. Same seed phrase, different passphrase, different private keys.
What is ledger passphrase in plain language? It's a user-chosen password that modifies how the device derives private keys from your seed phrase. Entering a different passphrase produces a different wallet that is not visible without that exact passphrase. That’s why people call them hidden wallets.
In my experience this is powerful but unforgiving. It offers fine-grained separation of funds, but if you lose the passphrase the associated hidden wallet is effectively lost (no company can recover it for you).
At a high level the device combines your 24-word seed phrase and your passphrase to produce a unique master key. Each unique passphrase yields a distinct set of private keys and addresses. That’s how one physical device can host many wallets without storing separate seed phrases.
This lets you create one default wallet (no passphrase) plus any number of hidden wallets (each created by entering a different passphrase). Hidden wallets are useful for splitting funds or adding an element of plausible deniability, but they are not a magic bullet.
Passphrase vs seed phrase — the seed is primary and must be backed up; the passphrase is an additional lock. If you have the seed phrase but not the passphrase you can still recover the default wallet, but any hidden wallets remain inaccessible.
Use of a passphrase adds real-world risk. Below are the main points I tell people during testing and workshops.
But complexity isn't an argument to avoid the feature entirely — it just means you must manage it deliberately.
How to use passphrase safely? Follow a disciplined process.
Decide if you need it. Ask: do I need partitioning, plausible deniability, or extra access controls? If the answer is no, skip the passphrase.
Prefer on-device entry. Where possible, enter the passphrase directly on the hardware wallet (on-device) instead of typing it into a host app or phone. In my experience on-device entry reduces exposure to host-level malware.
Choose a strong, memorable passphrase. Use long, unique phrases (a short sentence or combination of unrelated words + numbers). Avoid obvious personal data. Test mentally: can you recall it under stress?
Back it up separately from the seed phrase. Store the passphrase on a metal backup plate or other durable medium and keep it physically separate from your seed phrase backup. Split copies geographically if appropriate. (See seed backup security and legal backup considerations.)
Test the recovery. Do a full restore to a spare device using your 24-word seed plus the passphrase to confirm the hidden wallet and addresses return. This is non-negotiable.
Consider alternatives for high value. For large holdings, multi-signature setups often provide better survivability and shared-control options. But they are more complex to set up (see multisig setups).
And always document who needs to know what as part of inheritance planning. And test those instructions with a trusted person if you plan legal handover.
Who this is best for:
Who should look elsewhere:
I believe multisig or geographically distributed single-sig strategies are often better for institutional holdings and inheritance cases. But personal preferences and threat models vary.
What if you forget the passphrase? You cannot ask the company to recover it. Start by checking offline notes, password managers you may have used, and any mnemonic hint you left yourself (I recommend a hint system that does not directly reveal the passphrase). If the passphrase was short and guessable you might attempt a targeted recovery, but that carries risk and is time-consuming.
If the device breaks, restoring the default wallet from the seed phrase to a new device works as normal. Restoring a hidden wallet requires the exact passphrase used originally. See restore & recover wallet for step-by-step recovery procedures.
Firmware updates or device models do not change the cryptographic property: a hidden wallet remains derivable only with the original seed + passphrase. Always verify firmware authenticity before use (firmware updates & bootloader).
| Feature | Default wallet (no passphrase) | Hidden wallet (25th word) |
|---|---|---|
| Derivation | Seed phrase only | Seed phrase + passphrase |
| Recoverable with seed alone? | Yes | No (passphrase required) |
| Number of distinct wallets | One default | Many (one per passphrase) |
| Risk of accidental loss | Lower | Higher (more moving parts) |
| Plausible deniability | No | Possible (imperfect) |
| Backup advice | Keep seed safe and separate | Back up passphrase separately (metal) |
Q: Can I recover my crypto if the device breaks?
A: Yes for default wallets if you have the 24-word seed phrase. For hidden wallets you need both the seed phrase and the exact passphrase. See device loss recovery.
Q: What happens if the company goes bankrupt?
A: Your keys (seed + passphrase) are yours. The company cannot restore a forgotten passphrase for you. See lost-device & company bankrupt.
Q: Is Bluetooth safe when using a passphrase?
A: Bluetooth adds an extra attack surface. If you must use wireless transport, avoid entering the passphrase on the host — use on-device entry where possible. See USB/OTG/Bluetooth and connectivity security.
Q: Should I use passphrase or multisig?
A: It depends on your threat model. Passphrases provide partitioning and possible deniability. Multisig improves survivability and splits trust. Read multisig setups and cold storage strategies for a fuller comparison.
A ledger 25th word (hidden wallet passphrase) is a powerful tool when used with discipline. It can offer additional privacy and compartmentalization, but it also raises the bar for backup and recovery. Test restorations, back up the passphrase separately (metal if possible), and consider multisig for very large sums.
Want a step-by-step setup and restore walkthrough? See the seed phrase management, how to restore a wallet, and our passphrase management pages for detailed guides and troubleshooting.
If you have a specific recovery scenario, check the troubleshooting flowchart or the error codes index to find next steps quickly.
But remember: your security model depends on how well you manage the two secrets (seed phrase and passphrase). What I've found is simple discipline often prevents the most common mistakes.