Disabling shared access that was setup through dropbox
We were using dropbox to share a vault with an employee, who is now no longer with the company. We changed the password on the vault and removed dropbox permissions for the user. To test I had another user that was using the shared vault try to access it (after password change) from his mac. He was able to open it up the vault with his same password. This was also the case on everyone's mobile devices. As another test I removed dropbox permissions from his account and he was still able to open the vault on all devices (but updates to password entries were not synced).
Is there any way to actually remove someone's access to the vault?
1Password Version: Not Provided
Extension Version: Not Provided
OS Version: Not Provided
Sync Type: Not Provided
Referrer: forum-search:disable shared access
Comments
-
Hi there @sthe,
Your tests are correct.
Basically when you share a vault with someone who uses Mac or iOS, the agilekeychain or opvault file is used to sync that data to a database on the users computer when they set it up. So the disappearance of that file does not do anything except revoke their ability to sync and therefore receive new information if you change/update your logins and passwords.
Unfortunately opvault and agilekeychain were developed to allow different versions of 1Password to sync data to each other. So it didn't involve enterprise-level features like access-revokation and user permissions etc. Once the information is synced, it is synced.
It might interest you to look into using 1Password for Teams. Teams has features that allow you to share vaults, remove access, set different permissions for your users and offers you a lot more control over your data.
You can checkout 1Password for Teams here.
Hope this helps.
0
