How exactly can we create automated backups using the cli? I’ve tried to set it up, but the script always seems to fail because it needs me to enter the master password.
This post goes into more detail: How To: A User's Guide to Backing Up Your Bitwarden Vault
For example the user can select an (or multiple) email and bitwarden could email a .7z (or kdbx) file containing his passwords.
For example the user can select an email and bitwarden could email a .7z (or kdbx) file containing his passwords. It stands to reason that the .7z file would be encrypted using the vault password.
In this case, it would be possible for the user to configure how often bitwarden should send him an email containing the password backup
I also think it would be interesting for bitwarden applications to download all data from the vault in formats (.7zip , .zip or .kdbx), in which case not only the passwords and notes would be present but the files saved inside the vault as well .
How would this feature be better than the ability to export an encrypted copy of your vault using the built-in Export function?
It is a great question.
See, the export function is really great, but I personally see some problems with it. For example the .json file can only be imported again within another Bitwarden account. And the .cvs, which is the most compatible file format with other password managers, is not encrypted.
Another problem is that when you export your vault, you only create a backup of your passwords, which is somewhat inconvenient since Bitwarden, when pressed, offers the option to store files inside the vault as well. So I think the suggested formats would be good options as they can store both passwords and files within them.
For those of us who are tech savvy, creating a backup manually is a lot. And save it anywhere, but for older people who are not so tech savvy it would become a very big challenge, so for them it would be almost impossible for them to backup their vaults frequently. For this reason, I initially suggested the idea of sending files by email so that they would always have a copy of their backups saved as an email attachment.
The idea of putting multiple e-mails as recipients of your vault is so that if you ever get locked out of your vault and your accounts, you can recover your bank of passwords simply by asking your friend who received a copy of your vault in his email. of course the copy would be the encrypted version of your vault.
Would suggest to add this at least to the premium version. You cannot expect from a regular (business) user to do this themselves through an API.
An automated backup would be great, but it would also be nice to have an option to have it also sent via e-mail encypted, or store in an online storage target (OneDrive, DropBox, Google Drive, etc.)
+1 for this Feature.
Vault Backup to FTP, WebDAV, Google Drive, OneDrive, Dropbox etc. should be possible for premium users.
We have an inbuilt 7-Day Backup which comes from our hosting provider, but we want to be able to backup our vault weekly or monthly in case something goes wrong.
What is included in this backup? If it includes the entire contents of your harddrive, and if you use the Desktop app on that computer at least once a week (and leave it locked but logged in while not in use), then you actually will get vault backups automatically captured.
Those backups are a complete snapshot of the cloud server.
I know that bitwarden does nightly SQL backups for the last 30 days, but what we need is a vault backup, which we can store external.
What I was trying to say is that if you use any standard computer backup/imaging solution to make regularly scheduled backups, then it will capture the locally cached vaults.
I have a Macbook and I back it up completely with Time Machine.
I understand that bitwarden saves a local file on my Macbook that contains the current vault items, but I don’t think this is a good solution because I don’t have access to all the collections in my organisation.
This means that some collections that I don’t have access to cannot be backed up with Time Machine or any other backup solution.
I think the best option would be to implement a backup solution that can store the entire vault, including attachments, off-site.
Are you sure about this? If you lock your vault, disconnect your Macbook from the internet, and then unlock your vault while offline, do you not see any of the collections in your organization?
I’m amazed this isn’t yet implemented. Seems like an absolute no brainer, and asking people to use the CLI to run a cron job is expecting a lot. LIke others have said, this is pretty basic. There is the question of where this functionality would live in the codebase. Would it be client specific? Would it be hosted in the cloud? If I want to back up to my DAS or my NAS, then only the computer that has access would be able to perform the backup so that makes it a little tricky but I mean, the bitwarden team is more than capable
Yeah, I’m not really sure why this isn’t prioritized more.
Maybe because there are already many commercially available (and freeware) backup solutions for computers and other devices, while Bitwarden maintains cloud server backups for purposes of disaster recovery.
Any expected date when we can see this feature?
I would like to see an automatic backup that utilizes snapshots. Let’s say you get 5-10-15 snapshots you can revert to at any given time. You can revert changes and perform restore to reverse all changes made within a day/week/month.
Allow users to do a manual backup if they choose (downloading the vault). It should be automated by default and something accessible in the web-UI. A click-and-restore for ease of use.
Recovery and Backup in Bitwarden.
What will this feature do differently?
Please, see this:
There are feature requests here to recover or backup Bitwarden account. But as I mentioned earlier, there is no official way to do this. What is called for here is a standardized way of recovering and backing up Bitwarden in a secure, decentralized or centralized way. For example, I can back up my data in Dropbox and make sync in Bitwarden, so I have a 2nd backup, sync and recovery in Bitwarden.
In theory I could also make a backup on the local network to have a third way of account recovery: Offline usage/storage on PC with mobile device WLAN-Sync. Finally, a fourth way to backup or recover passwords could be via an offline p2p backup:Offline Vault (P2P)
What benefits will this feature bring?
There are some password managers that can backup and account recovery like:
nostr-password-manager. Please, see this here too:
“[…] Vault is a decentralized password manager where your passwords are encrypted by your keys and stored on relays. Vault utilizes zero-knowledge encryption to safeguard your data while storing it on NOSTR network for enhanced resilience. Vault saves all your passwords and notes securely by encrypting your data twice; once with your secret key and once with your passcode… […]”
This feature I request is already used by several password managers like nostr-password-manager etc. I wonder why there isn’t a way to backup and recover my Bitwarden account, when there are already requests for it, and safe ways to do it too here: Serverless storage with P2P sync of database or collection like in MYKI, Option to use P2P filesystem instead of server (IPFS), Implement a peer-to-peer encrypted file transfer function.
Also, there are several questions from the community that reinforce this same concern here.
So, what’s the best way to back up or recovery Bitwarden?
Here is the link to the possible questions I read from to open this feature request: Can I use Keepass(mobile, desktop) with Bitwarden(api)? , Data recovery, Automatic backup of vault. But something I would like to say or add would be this: A normal, non-premium user could choose to do automatic offline p2p backups. But if the user wants more security (can opt for Bitwarden’s servers).
In theory, I would have several options for emergency backup and recovery of my account and data: Enhancing emergency access with Shamir Secret Sharing, Emergency Access for the Secret Circle (SSS w/ some flair).
it makes sense? What is good or bad about this idea?
I would like to comment why I believe this feature would be the best feature to get done( because I believe there are good reasons why we all agree or partially agree here). I could always be wrong, and I’d like to know what thoughts other people have on this.
Instead of a manual export way, it would be an automatic export way.
As we can see here we can automatically export an encrypted copy of vault and sync on an external server: Google Drive, Dropbox, OneDrive etc. Also, this is interesting because it would solve a lot of feature requests like: [Feature Request] Backup to DropBox.
From a technical point of view this would be possible with tools like ‘rclone’ or using things like ‘pg_cron’ if the database is postgresql in Bitwarden(self-hosted or hosted). Also, this feature could be premium. Please, see this here too: Backing up Bitwarden.
This could make Bitwarden more enjoyable for non-technical people. Or people who care so much about security that they want to have automatic backups, as this thread suggests from the beginning.
I would like this feature to be implemented, but there is no date for this and it is up for voting.
it makes sense? What is good or bad about this idea?