Geslar logo
Geslar

Ključar Backup

Secure copy of all 2FA codes — encrypted backup.

Why backup matters

If you lose or reset your phone without a backup, you lose access to all 2FA codes. Without codes, you can't log in to accounts that use two-factor authentication. A backup takes less than a minute.

No backup = locked accounts if you lose your phone. Many services require lengthy identity verification to recover access without 2FA.
Encrypted backup (.geslar)

The recommended format. All secret keys are protected with AES-256-GCM encryption.

  1. Open Ključar → Settings"Backup".
  2. Tap "Export encrypted backup".
  3. Enter a backup password (can be the same as or different from your master password).
  4. Choose where to save the .geslar file.
  5. Store the file in a safe location (USB drive, computer, encrypted cloud).
The backup password is separate from the master password. Even if someone gets access to the file, they cannot read your keys without the password.
Unencrypted backup (JSON)

For transferring to another authenticator or as a last-resort recovery option.

  1. Open Ključar → Settings"Backup".
  2. Tap "Export unencrypted (JSON)".
  3. Confirm that you understand the risk — the file contains secret keys in readable form.
  4. Save the file.
Unencrypted backups are sensitive. Anyone with access to the file can copy your TOTP keys. Use only temporarily and delete after import.
Restoring from backup
  1. Install Ključar on the new device (installation guide).
  2. Set up a new master password.
  3. Go to "+""Import""Geslar Ključar".
  4. Select the .geslar file.
  5. Enter the backup password (the one you set when exporting).
  6. Review codes and tap "Save all".
Backup recommendations
Frequency
Create a backup every time you add a new code. It takes 30 seconds and can prevent hours of trouble.
Multiple copies
Store backups in two locations: USB at home and one at work or in a safe. One device = one point of failure.
Test restores
At least once, test restoring on another device. A backup you can't restore is not a backup.
Recovery codes
Besides Ključar backups, also save the recovery codes that services provide when you enable 2FA. That's an extra safety net.
Lost phone, no backup
  1. Try accessing accounts with recovery codes (if you saved them).
  2. Contact customer support for each service and request a 2FA reset.
  3. Most services require identity verification (ID, email confirmation).
  4. After recovering access, enable 2FA again and this time, make a backup.
Related articles
Installing Ključar Adding TOTP codes Import from Google Authenticator