Quick Start: Sandbox

Quickly and easily get started with a pre-configured PAM setup in your vault

Quick Start Wizard

To learn some KeeperPAM basics, we have created a wizard that is integrated into the Vault. If you select the Docker install method, this wizard will create all the necessary vault records, configurations and a customized Docker Compose file for quickly standing up a sandbox environment in less than 3 minutes.

Activate KeeperPAM

Region

URL

https://keepersecurity.com/console

https://keepersecurity.eu/console

https://keepersecurity.com.au/console

https://keepersecurity.jp/console

GOV

https://govcloud.keepersecurity.us/console

Under Admin > Roles, create a new role for PAM or modify an existing role
Go to Enforcement Policies and open the "Privilege Access Manager" section.
Enable all the PAM enforcement policies
Ensure you are assigned to this role

Run the New Gateway Wizard

Login to the Keeper Vault
Click on Create New > Gateway
Enter a name for the project, such as "My Infrastructure Demo"
Select Docker for the gateway
Select "Create with example records"
Click Next
After the wizard is finished, run the provided installer.

Test some PAM features

You can now instantly connect to any of the resources by clicking "Launch" from the record detail view.
The MySQL account, SSH password and SSH key can be rotated by clicking "Rotate" from the record detail within the Users folder.
Note: Remote Browser Isolation won't work on some ARM processors

Records Created

The wizard will create the following in your vault:

A folder containing Resources and Users in separate shared folders
A MySQL database
A Linux machine with VNC connection to the desktop UI
A Linux machine with SSH connection using an SSH Key
A Linux machine with SSH connection using a password
A Linux machine with RDP connection to the desktop UI
A Remote Browser Isolation session to bing.com
A Secrets Manager Application and PAM Configuration with all PAM features enabled
A Keeper Gateway ready to initialize