CatalogStacksModulesSaaSMobileLabs → Become a partner
HomeCatalog🔐 SecretsPassbolt
Screenshot of Passbolt

// official site: passbolt.com ↗

SECRETS · PRO TIER

Passboltpro

Passbolt is an open-source team password manager — designed for team collaboration with E2E encryption via OpenPGP, fine-grained sharing, audit log, browser extension. Direct competitor to 1Password Teams / Bitwarden Business with stronger team-collaboration features.

🔐 Secrets Min 1024 MB RAM Port 8444 (https) Tier pro
// What it is

A closer look.

Passbolt is an open-source team password manager — designed for team collaboration with E2E encryption via OpenPGP, fine-grained sharing, audit log, browser extension. Direct competitor to 1Password Teams / Bitwarden Business with stronger team-collaboration features.

EU-based (France), AGPLv3 community edition, with commercial Pro tier.

// Use cases

What it's for.

Concrete scenarios where teams pick Passbolt over the SaaS alternative.

Team password sharing

share credentials with E2E encryption

Department access control

fine-grained per-folder sharing

Audit trail

track who accessed what credential

Onboarding/offboarding

revoke departed employee access cleanly

Compliance

SOC 2 / ISO 27001 friendly

// Who it's for

Built for these teams.

If your team profile matches one of these, Passbolt is a strong fit out of the box.

Profile A

Small-to-medium businesses

with 5-100 employees needing shared credentials

Profile B

Privacy-bound EU orgs

preferring European OSS

Profile C

Tech teams

sharing infrastructure credentials

Profile D

MSPs

managing client credentials with audit needs

Profile E

Compliance-focused orgs

requiring credential audit logs

// Differentiators

Why teams pick Passbolt.

When evaluating self-hosted options for this category, here are the dimensions on which Passbolt consistently lands above the alternatives.

  • AGPLv3 (Community) — fully open
  • OpenPGP E2E — proven crypto for password sharing
  • EU-based — German/French/Italian orgs prefer
  • Browser extension — Firefox / Chrome / Edge / Brave
  • Team-collab focus — sharing UX is core, not afterthought
  • API + CLI — automation-friendly
// Integrations

Connects to.

The stack you'll plug Passbolt into — services, protocols, and adjacent apps in the BluixApps catalog.

Browser extensions
Firefox, Chrome, Edge, Brave, Safari
Mobile apps
iOS + Android
Authentication
local + LDAP + SAML + OAuth (Pro)
API
REST API with API keys
CLI
manage passwords from terminal
SCIM provisioning
auto-sync user dirs (Pro)
MFA
TOTP, YubiKey, Duo
// Adoption & deployment

Notable users & community

  • 8k+ GitHub stars
  • Used by European SMBs and public sector
  • Backed by Passbolt SA (FR) — sustainable European OSS company
  • Active community forum
  • Featured in 1Password-alternative roundups

What we ship

  • Docker stack: Passbolt CE + MariaDB
  • Auto-generated DB password
  • Persistent volumes: /opt/passbolt/database + /opt/passbolt/gpg + /opt/passbolt/jwt
  • Port 8444 exposed (HTTPS with self-signed cert by default)
  • Admin user pre-created via CLI on first run
  • SMTP config required for invite emails (env placeholder)
  • Backup hook covers MariaDB + GPG keys
// Tips & operations

Run it properly.

Operational guidance from running this in production — what to lock down, what surprises people.

// PERFORMANCE
GPG key per user
Passbolt uses OpenPGP; each user generates GPG key on first signup
// SECURITY
Master password ≠ user password
GPG key passphrase is separate
// OPERATIONS
SMTP mandatory
invite emails depend on it; configure SMTP before first invite
// RELIABILITY
Self-signed TLS
Passbolt expects HTTPS; use real cert in production
// DEPLOYMENT
Backup MySQL + GPG keys
keys are critical; lost keys = lost passwords
// SCALING
Browser extension
required for password autofill + decryption
1024
// min ram (MB)
4
// min disk (GB)
8444
// access port
https
// protocol
pro
// bluixapps tier

Project resources

Official sitepassbolt.com ↗