LastPass Migration to Dashlane - Technical Details

On September 17, 2024, all LastPass Enterprise accounts will be removed from Wharton’s LastPass company account - at this time, these accounts will become LastPass free accounts.  This will allow former LastPass Enterprise account owners to retain access to the passwords stored in their LastPass accounts, that are NOT in shared folders.

On September 26, 2024, any Premium accounts still with premium status will automatically transition to free LastPass accounts accounts – UNLESS you are eligible to renew your premium status in advance of that date. (See section “Renew your LastPass premium status and keep using LastPass” for more details.)

On September 26, 2024, any remaining Premium accounts will most likely automatically transition to free LastPass accounts - there is a possibility that your account will retain Premium status, but LastPass Support is unfortunately unable to provide any certainty on that.   

When your account account loses premium status and becomes a free account, you will no longer be able to:

• share any password items to multiple users.

• sync passwords between multiple devices.

• access premium LastPass support.

When your account transitions to a free LastPass account:

• you’ll continue to be able to log into your LastPass account and access the credentials within, EXCEPT for shared folders that were shared to the account. 

• Shared folders created by you will remain available to you in your account. 

If your LastPass Premium access expires before September 26, you should receive an email from LastPass about 2 weeks before your expiration date with the subject “Another year of LastPass, free!” Look for this email in your @upenn.edu account, and you should be able to follow instructions to open a link in a browser that is set up to use your LastPassPremium account to renew access.

LastPass Support has assured Penn that Premium Account users can continue to renew their LastPass license before September 26, so you should have full premium support until then. After September 26, accounts may transition to free status so we recommend preparing in advance.

It is recommended to unlink your accounts ahead of the end of the LastPass contract, since it is uncertain what state the linked account will be in after Enterprise accounts lose their licensing and revert to free status.

• Ensure that you can still can login to their personal account.

• Unlink the personal account from the enterprise account. - https://support.lastpass.com/s/document-item?language=en_US&bundleId=lastpass&topicId=LastPass/t_unlink_your_personal_account_from_within_your_company_account.html&_LANG=enus  

• The personal and Enterprise LastPass accounts should now be distinct and can be managed as two separate LastPass accounts, with all personal passwords remaining in the personal LastPass account, and the passwords in the Enterprise account remaining in that account.

• If you wish to migrate their personal account to another password manager, they can export their passwords from LastPass, and import to another password manager. https://support.lastpass.com/s/document-item?language=en_US&_LANG=enus&bundleId=lastpass&topicId=LastPass%2Fexport-vault.html

  • Penn users will have the option to convert Dashlane personal accounts to premium status. https://www.isc.upenn.edu/how-to/dashlane#Dashlane-Premium

  • Dashlane does not offer a similar “linked account” feature at this time, nor does it support simultaneous personal and work use in one place. ISC’s recommendation is to use two distinct password stores.

Migrating your LastPass data to Dashlane Business

Wharton Computing recommends using the Direct import method to migrate your credentials through the Dashlane console. Users can log into LastPass directly from the Dashlane console and import their password vaults. This ONLY imports personal vaults for LastPass Enterprise accounts - shared password folders cannot be transferred via this method.

See these instructions for how to do the Direct import from Dashlane . The process should be fast and relatively straightforward.

If you need to migrate a LastPass Shared folder: your Wharton Computing representative will work with you to migrate your passwords to Wharton’s Dashlane business plan. You may also reference the documentation under “Migrating a LastPass Shared folder (LastPass Enterprise users only)” below.

Step 1: Export LastPass CSV

This process is flawed and has many problems, but is unfortunately the only process open to us.

1. Open LastPass Vault.
2.  In the left hand menu, browse to Advanced Options > Export.
3.  Follow the instructions to check your email, click on the link to authorize the download.
4. Save CSV to your hard drive.

Possible problems with exporting the CSV

• The LastPass CSV downloads in plain text ALL passwords and shared collections you have access to. There are several problems with this:
  • It is not secure to have a whole file in plain text containing all your passwords on your hard drive! This is why we recommend the following
    •  appointing one trusted person to handle the migration of the shared folders, to limit the staff who will be downloading and exporting CSVs and the total number of plaintext CSVs generated.
    • downloading the CSV to an encrypted hard drive
    • turning off any features on your computer that may take screenshots of your screen
  • It is awkward to upload all your shared folders at once to Dashlane via a single CSV and we do not recommend it ( see “Problems and recommendations for migrating shared folders”, below). Instead, break up the exported CSV of all your shared folders into individual CSVs and upload them one at a time.
    • Use the column titled “grouping” to identify the original shared folder.
    • Create a separate CSV file for each shared folder grouping that you want to define.
    • Import each CSV one at a time following the instructions below.
• Commas may introduce extra columns into the row, shifting everything for import. You will need to review your CSV for any shifted columns and remediate the data.
• Attachments to password entries and credentials don’t show up in the export. You will need to note which password entries and credentials have attachments, then manually download and re-attach them one at a time.

Step 2: Import CSV to Dashlane

See these instructions for importing a CSV.

Problems and recommendations for migrating shared folders

•  Sharing permissions from LastPass are NOT retained. The person doing the sharing will have to reassign permissions from scratch. We recommend sharing with Manager permissions (for collections) and Full Access (for each credential) wherever possible to avoid having a situation where Dashlane users have a collection shared to them that they cannot manage.
• nested folders all get separated out into their own collections. Example: one LastPass folder with nested folders got turned into twenty-three dashlane collections. Either flatten your LastPass folder structure before the migration, or be prepared to deal with many Collections.
• the import process occasionally fails to import all shared folder/collection relationships. i.e. various imported items were found to be unrelated to a collection. We would recommend uploading one shared Lastpass folder at a time by splitting it up into multiple CSV files so that you can verify the data you are uploading one collection at a time.
• You cannot simply create a new credential that is “shared” - it is ALWAYS tied to the original account that created it. To share a password, you must first
  • create the password in your OWN personal logins
  •  add it to a shared collection
• To that end, we advise always sharing collections with full “Manager” permissions, and adding passwords with “Full” edit rights, so that even if the original creator loses access to their Dashlane account, subsequent managers can still retain full access to the shared folder.

Step 3: Share and assign permissions to your Dashlane collection

See these steps for sharing Dashlane permissions.