Secret Import and Export Overview
Secrets are imported or exported as a comma-separated-value (CSV) file or as an XML file:
- The CSV file is easily read and edited in Excel or other spreadsheet applications. The file is grouped by secret template and each cluster of secrets has a header row that contains the template text-entry field names followed by all exported secrets based on that template.
- The XML file is useful for migrating data from one Secret Server installation to another or even from a third-party application to Secret Server.
Secrets are exported in the exact same structure as a secret Import.
This topic has three subtopics:
What Gets Imported or Exported
Import or export each include:
- Folders (and their permissions)
- Secret templates
- Secrets (and their permissions)
Import or export each do not include users, groups, launchers, configuration, or other related information.
The following secret template settings are transferred with an export or import operation:
- Edit requires
- Field slug names
- Hide on view
- Is required?
- Keep secret name history
- One-time password settings
- Secret template icons
- Type descriptions
- Validate password requirements on create or edit
The following secret template settings are not transferred with an export or import operation:
- Associated secrets
- Launcher settings
- Password changing settings
- Session recording enabled
Migrating to and from Secret Server Cloud
If you use XML import and export to migrate from Secret Server On-Premises to cloud, the major release version (x.x) must be the same. Otherwise, you need to upgrade before you can migrate. Additionally, in Secret Server Cloud before importing, access Settings > Configuration Search > General > Permission Options, and make sure the Allow Duplicate Secret Names option is set to Prevent Duplicates Globally.
