Can't change password of shared vault?

Hi @coryschires,

It's true, we realise this is an area we need to work on.

Here is the best course of action for your given situation.

1. In 1Password, switch to your Primary vault.
2. Use the 1Password > New Vault... option to create a brand new secondary vault. This is where you want to use your replacement Master Password for this new vault. You won't be able to use the exact name of the vault you're wanting to replace, hopefully that isn't a major sticking point but it can be worked around if you wish.
3. Switch to your compromised secondary vault.
4. Select the All Items option in the Sidebar pane of the main window.
5. Select any item in the Item List and then use ⌘A to select every item in this vault.
6. Use the Item > Share > XXXX > Copy option where XXXX is the name of your new secondary vault.
7. Verify that the new secondary vault is correct and is a duplicate of the original one (but with a new Master Password).
8. Switch back to the compromised secondary vault.
9. Use the 1Password > Delete XXXX Vault... option where this time XXXX is the name of your old secondary vault.
10. Delete the .agilekeychain that was connected to this old vault.
11. Enable Dropbox syncing with the new vault.
12. Re-enable Dropbox syncing on the other machines that you were sharing the old .agilekeychain with.

This will create an .agilekeychain with a new Master Password and encryption keys which is what you really want in this case. I am sorry it isn't as easy as it should be and we are aware this is something users want. If you have any further questions do please ask.

ref: OPM-900

@coryschires, on behalf of @littlebobbytables, you're very welcome! I'm glad his instructions were helpful, and hopefully we'll be able to make that process easier in the future.

If you have more questions, just let just let us know, we're always happy to help! :)

Hi @toobulkeh,

We're actually testing the ability to change a secondary vault password in the 1Password for Mac beta now. Now we can't guarantee it will make it into the next public release but all going well it should. The caveat is really just to cover the possibility of any surprise issues that may pop up, after all that's what the beta is for :smile:

ref: OPM-3031

Let us know if you run into any issues, @toobulkeh. Thanks.

Hi @LucaTNT,

What I can say is I've not heard of any reason why this feature won't make it into the next stable. It's still in the beta and I'm not aware of any issues.

What I can't say is when the next stable is to be scheduled for. Sorry about that, I genuinely don't know when it will be.

Regarding your thoughts on briefly using the beta. Technically you could and as long as you understood all the quirks you would be fine. Saying that, it isn't something I'd recommend or even do myself unless I was really motivated. Here's why. The AgileBits Store and Mac App Store versions of 1Password store their support files in different locations due to sandboxing of the Mac App Store version. Now we try to be helpful when you launch 1Password. So as a Mac App Store user if you were to launch the beta of our AgileBits Store version it would see you have a vault in the Mac App Store location and import it. That's okay and for people wanting to make the transition once that's fine. What you want to do though is briefly jump over, make a quick change and then pop back and that's the complicated bit. When you next launch the Mac App Store version of 1Password it won't look and see what you've done elsewhere as it has it's own vaults.

There's also the possibility, depending on your needs, that the use of the same encryption keys isn't what you're actually looking for. This bit will very much depend on what your motivations for changing the shared vault's password is. So the question is, are you wanting to change the password simply so it's somehow easier e.g. memorable or is the goal to remove previous access? This will impact how you should proceed and how we would guide you.

Even without using the beta there are a couple of things we can do to change the Master Password for a secondary vault that wouldn't impact on your usage of the Mac App Store version. For example, even though this vault is a secondary vault for you, if it is the primary vault for anybody then the Master Password can be changed there - when we refer to a primary or secondary vault the concept is very much localised to the copy of 1Password that the conversation is directed at.

I apologise for the less than simple response. If you were to help us understand the reason for the change though we can let you know what we'd recommend and why.

Buongiorno from the UK @LucaTNT :smile:

Your plan is perfect in my opinion and the reason for the change means I would agree, changing of the encryption keys wouldn't be serving any useful purpose.

I can't see any problems, I think it should go exactly as you've planned.

Should I have made a mistake (I really don't believe I have) and there is an issue please contact us but don't worry that you've lost anything as backups from any of your Macs do include all vaults.

I hope 1Password serves your parents well and here's to the boost to their online security :smile: