Transit - Unable to export plaintext backup of named key

Hey there!

I’m unable to export a plain text backup of a named key. Link

I created a key with allow_plaintext_backup=true. Link

However, when running vault read transit/backup/{name} with a root token, I get a 500 error saying “exporting is disallowed on the policy”.

How can something be disallowed on the root policy? Or am I missing something?

Thanks a lot in advance.

Have you set the exportable flag too?

Thanks! That fixed it.

1 Like