All pages
Powered by GitBook
1 of 23

Keeper Enterprise Bridge

The Keeper Active Directory Bridge is released and downloaded through the Keeper Admin Console.

Upgrade Instructions

Instructions for upgrading the Keeper Bridge

When upgrading the Keeper Bridge, please follow the below instructions:

(1) Take note of all your Bridge settings and particularly your Domain Filters. Save the Domain Filter settings in a text file for each section (Node, Role, Team, User).

(2) Save a copy of the Bridge SQLite database, typically located under: C:\ProgramData\Keeper Enterprise Bridge\ks_enterprise.sqlite

(3) Run the new Bridge installer for the new version. This will uninstall the old Bridge version and install the new Bridge version. The Keeper Bridge can be downloaded from the Admin Console at the below location:

(4) Enter the settings in the Configuration section and verify that all your parameters and settings have been maintained properly in the new version.

(5) If all looks good you are ready. If anything does not look correct please contact Keeper Enterprise Support for assistance.

Bridge Version 17.0.0

New Updates and Changes

  • EB-474: New ECC mode, RSA PKCS1, version 1.5 Deprecated

Bug Fixes

  • N/A

Bridge Version 16.1.5

Bug Fixes

  • EB-466: Ensure everything is deleted on Uninstall

  • EB-470: Make enterprise_user_add_alias API to send users as a list

  • EB-471: Log that Bridge stops processing requests after 6 Errors

  • EB-472: Log all exceptions during login

  • EB-473: Register fails for new Account in non-US Region

Bridge Version 16.1.4

Released on Dec 21, 2022

Bug Fixes

  • EB-467: Resolved issue where logging in as Managed Company does not work

  • EB-468: Resolved issue where node creation fails in Admin Console for complex Trees

  • EB-469: Resolved issue where Bridge removes/locks Users during Forest/GC queries

Bridge Version 16.1.3

Released on Sept 27, 2022

Bug Fixes

  • EB-463: Bridge is unresponsive when trying to register in new JP, CA regions

  • EB-461: Verify user email field and reject LDAP users with invalid emails

  • EB-465: Support for Domain Alias: When a customer introduces a domain alias in Keeper and users change their Email to the new domain, the Bridge will revert the primary email to the original AD domain. This is not desired behavior. The Bridge shall recognize and honor the primary domain in Keeper.

Bridge Version 16.1.1

Released on December 1, 2021

Bug Fixes

  • EB-458: Privileged Escalation vulnerability reported by Bugcrowd researcher Rémi ESCOURROU (@remiescourrou). Special thanks to Rémi for detailed reproduction steps. Keeper works with Bugcrowd to manage the bug bounty and vulnerability disclosure program at https://bugcrowd.com/keepersecurity

  • EB-456: Improved popup message when the login session has expired

  • EB-459: Bridge is generating unnecessary node update requests

  • EB-460: Bridge is not auto-starting on a fresh install

Bridge Version 16.1.0

Released on Nov 2, 2021

Bug Fixes

  • EB-452: Change Primary Email on Keeper when Email Attribute changes in AD

  • EB-453: Bridge client cannot setup a bridge on the MSP enterprise account

  • EB-455: Admin Team Approval Authentication fails with Proxy Operation

Bridge Release 16.0.0

Released on September 10, 2021

New Features

  • 🇱🇷 Support for the Amazon AWS GovCloud environment. Keeper is currently FedRAMP in-process and public sector entities can now establish their Keeper tenant in the GovCloud environment. Contact the public sector sales team at govsales@keepersecurity.com for more information.

Bug Fixes

  • EB-448: Registration failing with System proxy in use

Bridge Release 15.1.0

Released on April 5, 2021

Features & Improvements

  • EB-445: Support for Australia (AU) data center

Bridge Version 15.0.2

Released on December 31, 2020

Bug Fixes

  • EB-441: Member range doesn't process for groups with >1500 users

Bridge Version 15.0.1

Released on November 2, 2020

Improvements

  • Updated to the latest Keeper .Net SDK supporting the new Login API V3 and SSO Connect Cloud

Bridge Version 15.0.0

Released September 8, 2020

Features & Enhancements

  • New Login API - Support provided for new Login API flow and device token.

  • Bridge Proxy Operation - Support provided for Keeper Bridge to work across TLS proxy.

  • LDAP Server Reset - Admins now have the ability to reset the LDAP connection.

Bug Fixes

  • Fixed: Various Admin login issues.

Bridge Version 14.1.1

Released May 18, 2020

Bug Fixes

  • Fixed: Bridge reverts to OpenLDAP server setting for Active Directory.

Bridge Version 14.1.0

Released April 29, 2020

Features & Enhancements

  • Support for OpenLDAP - This release introduces a major enhancement to the existing Keeper Bridge. In addition to support for Active Directory, Keeper Bridge now supports open-source implementation of the Lightweight Directory Access Protocol (OpenLDAP). Businesses running OpenLDAP are now able to integrate Keeper password management software within their current systems.

  • Delete Override Configuration Option - This override configuration allows the Bridge to delete users and teams if they are not in the designated LDAP filter. By default, this is disabled, which prevents accidental deletion of users and teams in Keeper.

Bug Fixes

  • Fixed: Bridge clients are reported as "Commander" in ARAM.

  • Fixed: Logging in with a service account causes Bridge Client to crash.

Bridge Version 14.0.0

Released February 21, 2020

Benefits & Enhancements

  • Securely Store Admin Login - The admin login required for team approvals is now securely stored, making the login process automatic. Previously, the admin login was lost upon service restart.

Bug Fixes

  • Fixed: Changes to a user's email address in AD Bridge causes a lockout. Users are now flagged in the bridge logs as needing a manual change and are otherwise, left unaffected.

  • Fixed: DUO push and RSA SecureID for 2FA (two-factor authentication) fail in certain environments.

  • Fixed: Client is unable to communicate with AD Bridge service after following a service restart.

Bridge Version 13.1.2

Released October 28, 2019

Bug Fixes

  • Fixed: Bridge Administrators are being logged out after 30 days due to the session token expiring.

  • Fixed: An issue causing Administrative Role Provisioning to not work correctly for a Managed Company.

Bridge Version 13.1.1

Released October 18, 2019

Benefits & Enhancements

  • Non-Bridge Created Roles and Teams Excluded from Bridge Operation - Unless non-Bridge created Roles and Teams match an identically named Security Group in the AD Bridge, those Roles and Teams will now be excluded from Bridge operations. Roles with a matching Security Group will be moved to the relevant node in the Keeper node tree.

Bridge Version 13.1.0

Released on September 22, 2019

This is a major bug fix and stability update to the Keeper AD Bridge.

Bug Fixes & Performance Improvements

  • Complete rewrite/refactor of the AD parsing and query engine

  • Resolved all customer reported issues with team membership syncing

  • Resolved connectivity issues after bridge upgrade process

  • Resolved team approvals after inactive user detected

  • Resolved processing percentages listed over 100%

  • Resolved UI issues related to accounts with over 100,000 users

  • Lock user accounts when user has expired in AD

  • Resolved crash after creating empty Top Level Node Filter

Features & Benefits

  • Bridge can now provision users to a role with elevated privileges

  • Sorting alphabetical

  • Change Install Directory to "Keeper Security"\"Keeper Bridge"

Bridge Version 13.0.1

Released on August 19, 2019

Bug Fixes

  • Fixed: Bridge reverts Region back to US after upgrading the version in EU data center.

Bridge Version 13.0.0

Released on July 24, 2019

Features & Benefits

  • Refreshed UI and branding

New Bridge UI

Bug Fixes

  • Syncing improvements and optimizations

Security Updates

  • Implement LAN IP Address Checking LAN IP address adds another level of security by enforcing that all communication contains the LAN IP address of the local system and must match the value the user provides in the data setup for bridge in the admin console.

  • Encryption Key Protection Added additional layer of protection against a malicious trusted server from manipulating the salt and iterations against the Bridge.

Bridge Version 10.5.4

Released on February 10, 2019. This release has improved performance, UI updates and bug fixes.

Bug Fixes

  • ​We corrected a workflow which generated corrupt Team Keys when the Bridge was configured to automatically approve team key distribution. A corrupt team key caused an error when logging into the vault displaying "RSA Key Error". Note: Any previously created corrupt team keys require that the team is deleted and re-created either through the Admin Console or through the new Keeper Bridge v10.5.4 application.

  • Fixed issue with "One or more domains could not be contacted" that made the bridge unable to communicate or authenticate with AD

Enhancements & Benefits

  • Improved performance

Installation

The latest version of the Keeper Bridge can be downloaded from the below URL:

https://keepersecurity.com/bridge/KeeperBridge.zip

Or, download from the Admin Console > Provisioning > Download Bridge

Bridge Version 10.5.3

Release date: December 7, 2018

This release was issued to address a backend version check between Keeper Active Directory Bridge and Keeper Backend API.

Coming Soon

Version 10.5.4 is being released soon to address customer issue "one or more domains could not be contacted."