search

Enterprise Management Commands

This page gives information of commands related to Enterprise Management functions

hashtag
Overview

The Enterprise Management Commands in Keeper Commander CLI provide administrators with powerful tools to manage and configure enterprise-level settings. These commands facilitate the administration of users, roles, teams, nodes, and compliance reporting, enabling efficient oversight and control across the organisation.

hashtag
Commmands

This Section details and exposes following commands

  1. Enterprise User

  2. Enterprise Node

  3. Enterprise Role

  4. Enterprise Team

  5. Enterprise Info

  6. Transfer User

  7. Device Approve

  8. Enterprise Down

  9. Audit Alert

  10. Audit Log

  11. Audit Report

  12. Create User

hashtag
Enterprise Down Command

Download enterprise data to local cache.

chevron-rightDotNet CLIhashtag

Command: enterprise-get-data

Example:

chevron-rightDotNet SDKhashtag

Function: public async Task Load()

chevron-rightPowerCommanderhashtag

Command: Sync-KeeperEnterprise

Flag:

chevron-rightPython CLIhashtag

Command: enterprise-down

Options:

  • --reset Reload enterprise data

Example:

chevron-rightPython SDKhashtag

Function: enterprise_loader.load()

hashtag
Audit Log

Export and display the enterprise audit log.

chevron-rightDotNet CLIhashtag

Command: Coming Soon

chevron-rightDotNet SDKhashtag

Function: Coming Soon

chevron-rightPowerCommanderhashtag

Command: Coming Soon

chevron-rightPython CLIhashtag

Command: audit-log

Parameters:

  • --target - Target for audit log export: json (required)

  • --record - Keeper record name or UID

Options:

  • --anonymize - Anonymises audit log by replacing email and user name with corresponding enterprise user id. If user was removed or if user's email was changed then the audit report will show that particular entry as deleted user.

  • --shared-folder-uid - Filter: Shared Folder UID(s). Overrides existing setting in config record and sets new field value. Can be repeated.

  • --node-id - Filter: Node ID(s). Overrides existing setting in config record and sets new field value. Can be repeated.

  • --days - Filter: max event age in days. Overrides existing "last_event_time" value in config record

Example:

chevron-rightPython SDKhashtag

Not Supported

hashtag
Audit Report

Run an audit trail report.

chevron-rightDotNet CLIhashtag

Command : audit-report [options]

Options:

  • --limit <number> - Maximum number of returned events (default: 100)

  • --order <asc|desc> - Sort order

  • --created <datetime> - Filter by event creation datetime

  • --event-type <types> - Comma-separated audit event types

  • --username <users> - Username(s) of event originator

  • --to-username <user> - Username of event target

  • --record-uid <uid> - Record UID

  • --shared-folder-uid <uid> - Shared folder UID

Event Types: Common audit event types include:

  • login

  • logout

  • record_add

  • record_update

  • record_delete

Date Format:

  • Absolute: YYYY-MM-DD or YYYY-MM-DD HH:MM:SS

  • Relative: today, yesterday, last_7_days, last_30_days, last_90_days

Example:

chevron-rightDotNet SDKhashtag

Function: GetAvailableEvents()

Example:

chevron-rightPowerCommanderhashtag

Not Implemented

chevron-rightPython CLIhashtag

Command: audit-report

Options:

  • --syntax-help - Display help

  • --report-type - Report type: raw, dim, hour, day, week, month, span

  • --report-format - Output format (raw reports only): message (default) or fields

  • --column - Column name. Can be repeated. (ignored for raw reports)

  • --aggregate - Aggregated value. Can be repeated. (ignored for raw reports): occurrences, first_created, last_created

  • --timezone - Return results for specific timezone

  • --limit - Maximum number of returned rows (set to -1 to get all rows for raw report-type)

  • --order - Sort order: desc or asc

  • --created - Filter: Created date. Predefined filters: today, yesterday, last_7_days, last_30_days, month_to_date, last_month, year_to_date, last_year

  • --event-type - Filter: Audit Event Type. Can be repeated.

  • --username - Filter: Username of event originator. Can be repeated.

  • --to-username - Filter: Username of event target. Can be repeated.

  • --ip-address - Filter: IP Address(es). Can be repeated.

  • --record-uid - Filter: Record UID. Can be repeated.

  • --shared-folder-uid - Filter: Shared Folder UID. Can be repeated.

  • --geo-location - Filter: Geo location

  • --device-type - Filter: Device type

  • --format - Output format: json, table, csv

  • --output - Output filename

chevron-rightPython SDKhashtag

Function: execute_audit_report()

hashtag
Report Types

  • raw: Returns individual events. All event properties are returned.

  • dim: Returns event property description or distinct values.

  • hour/day/week/month: Aggregates audit event by created date.

  • span: Aggregates audit event without date aggregation.

hashtag
Create-user

The create-user command creates a new enterprise user, assigns them to a node, and can store their credentials in a specified folder. It also supports one-time secure sharing of the credentials.

chevron-rightDotNet CLIhashtag

Command:

Flag:

chevron-rightDotNet SDKhashtag

Command:

Flag:

chevron-rightPowerCommanderhashtag

Command:

Flag:

chevron-rightPython CLIhashtag

Command: create-user email <Email>

Alias: ecu

Parameters:

email - User email (required)

Options:

  • --name, --full-name - User name

  • --node - Node name or node ID

  • --folder - Folder name or UID to store password record

  • -v, --verbose - Print verbose information

Example:

chevron-rightPython SDKhashtag

Function: create_user()

PreviousBreachWatch CommandsNextEnterprise User Commands

Last updated

Was this helpful?