Reporting Commands
Overview
This section lists all the commands in Keeper's Commander (CLI) that are related to reporting and audit logging. These command will give you details report related to breachwatch, team, user, node, records etc.
The following commands are currently supported by CLI and SDK:
User Report Command
Generates an ad-hoc user status report, with options to choose the output format and destination, filter users by last login within a specified number of days, and optionally simplify the report to display only last-login information.
Python CLI
Command: user-report
Flag:
--formatformat of output {table,csv,json}.--outputoutput path to resulting output file (ignored for "table" format)--daysdays to look back for last login (0 = no limit). Default: 365--last-login, -lSimplify report to show only last-login info
Example:
Security Audit Report Command
Generates a password security strength report for enterprise users, with options to filter by nodes, choose output format and destination, include BreachWatch data (if enabled), control score calculation, save or display updated audit results, attempt fixes for invalid security data, and run in non-interactive mode when required.
Python CLI
Command: security-audit-report
Flag:
--formatformat of output {table, csv, json}.--outputoutput path to resulting output file (ignored for "table" format)--syntax-helpdisplay help-n, --nodenode name(s) or UID(s) of node(s) to filter results of the report by-b, --breachwatchdisplay BreachWatch report. Ignored if BreachWatch is not active.-s, --savesave updated security audit reports-su, --show-updatedshow updated data-st, --score-typedefine how score is calculated {strong_passwords, default}.--attempt-fixdo a "hard" sync for vaults with invalid security-data. Associated security scores are reset and will be inaccurate until affected vaults can re-calculate and update their security data.-f, --forceskip confirmation prompts (non-interactive mode)
Example:
Share Report Command
Shows a detailed report of records shared with and by the caller, supporting multiple output formats and filters, including record or user selection, ownership and share-date details (for authorized users), shared folder information, verbose output, and optional inclusion of team users for shared folders.
Python CLI
Command: share-report
Flag:
--formatformat of output {table,csv,json}.--outputoutput path to resulting output file (ignored for "table" format)-r, --recordrecord name or UID-e, --emailuser email or team name-o, --ownerrecord ownership information--share-dateinclude date when the record was shared. This flag will only apply to the detailed owner report. This data is available only to those users who have permissions to execute reports for their company. Example of the report that includes shared date:share-report -v -o --share-date --format table-sf, --shared-foldersdisplay shared folder detail information. If omitted then records.-v, --verbosedisplay verbose information-f, --folderslimit report to shared folders (excludes shared records)-tu, --show-team-usersshow shared-folder team members (to be used with "--folders"/ "-f" flag, ignored for non-admin accounts)
Example:
Shared Record Report Command
Displays information about shared records, limited to those shared by the caller with other users and excluding records shared with the caller by others..
Python CLI
Command: shared-record-report
Alias: srr
Flag:
--formatformat of output {table,csv,json}.--outputOutput path to resulting output file (ignored for "table" format)-tu, --show-team-usersshow members of team for records shared via share team folders.--all-recordsreport on all records in the vault. only owned records are included if this argument is omitted.
Example:
Last updated
Was this helpful?