Business - Export / Import feature

Martin_Andersen · February 21, 2023, 7:35am

Hi.
When you Export data from Passbolt ( Users, Groups and so on), is it a security feature that only the User importing the data, will get access to the imported data.

If you have like 2 admins, and you have x amount of users, groups and folders, then you export data, if something goes wrong and you need to import the data from “backup”, will it be possible to make the Structure as it was, like access points from admins to each groups and so on. ??

Thanks.

clayton · February 21, 2023, 9:31am

Hey @Martin_Andersen welcome to the forum!

For the export, how are you exporting Users and Groups?

For the use case you are presenting it would be better to take an actual backup and then you’d follow the instructions for migrating to a new server to recover. This will make sure the structure is maintained.

Martin_Andersen · February 21, 2023, 9:45am

Hey Clayton…

We are testing Passbolt as an alternative to our current setup…
We are at the moment trying out the features, and we tried to makes som users, groups and some admins.

In our current “Test” we tried to export to one of the 4 choices , and we then imported it again, but only the one who imported had access to the imported data…

Just to clearify how we should manage or map the imported data…

thanks …

clayton · February 21, 2023, 10:15am

So, the export you are using for the passwords will also only export passwords that the user running it has access to. This means if a password hasn’t been shared with the one exporting it that it won’t be included. This is because the user exporting would need to have access to the encryption key to decrypt the secrets for export. It would prevent a rogue user from using the export feature to access secrets which haven’t been shared with them

You are correct that the one who imports it is the one who will have access and it won’t come with all of the users mapped automatically.

For these reasons it is better to use the backup instructions to handle the issue you are trying to get around.

Martin_Andersen · February 21, 2023, 10:41am

ey again Clayton…

We acutally had 3 admins sharing those groups, folders and so on…

But maybe we did something wrong, because the 2 other admins did not have the same access to the deleted items after it was fetched again via the import feature…

But We will try the backup instruction you are referring too …