For older releases, see the Keeper Commander GitHub page

Releases · Keeper-Security/CommanderGitHub

Commander releases 16.2.0 - 16.2.3

Features and Improvements

• Server switching w/ out exiting Commander. Just type logout and then server US/EU/AU/GOV, once switched to a new region just login with the account that is registered there.

• Improved logging in binary version of Commander

Bug Fixes

• KC-290 Fix logging level when using "-lwsc=true"

• KC-285 Support register_device_in_region command.

• KC-290 --launched-with-shortcut parameter turns off info logging.

• Fixing this-device register

New Features and Improvements

Edit Role Enforcements

• KC-272: Enterprise: Edit role enforcements

It is now possible to edit role enforcement policies in Commander. See the Documentation for details.

Import

• KC-229: Import/Export Records with Types

Records can now be imported with record types

• KC-286: Import LastPass' Shared Folders

Importing directly from LastPass now shares any shared folders with corresponding Keeper accounts. See the Documentation for details.

Secrets Manager (Beta)

• Secrets Manager: New format of One-Time token

• Secrets Manager: Added ability to generate config string in Json or Base64.

Other Improvements

• KC-122: Title/URL display options in audit-report

• KC-259: Fix some account restrictions: Expired Master Password, Accept Account Transfer

Features and Improvements

Secrets Manager (Beta)

• New KSM command to delete application

General Improvements

• Ability to manage record types enforcements

• allow cd command to navigate to folders with slash or quote in the title

• enterprise-info command to respect --node parameter

• Other bug fixes and improvements

Features and Improvements

Automator

• Added Automator commands

General Improvements

• Ability to copy uid in clipboard-copy command by add flag --copy-uid

• Improved totp command output by adding --details flag

• Various bug fixes and improvements

Commander releases 16.3.0 - 16.3.3

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.3.3

Improvements

• create-user command

  • See documentation

• Import:

  • Skip V3 records with files that are too large (hot fix)

  • Strip URL for record audit

• Secrets Manager:

  • Show editable status of listed Applications

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.3.2

Improvements

• Fixed an issue with Secrets Manager device creation

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.3.1

Improvements

• Printing versions of installed packages using version -v command while debug is on by

• KC-296 Add load/unload shared folder membership commands.

• load-membership: Fix program description

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.3.0

Improvements

• Support for cryptography 35.0.0 package

• Improved LastPass data import

  • See Documentation for details

Commander releases 16.4.0 - 16.4.9

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.4.8

Improvements

run-batch command

• Run commands sequentially from a provided file

• See Documentation

find-duplicate command

• Locate duplicate records in the Keeper Vault

• See Documentation

Import

• support for KeePass import using pykeepass

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.4.8

Improvements

Import

• LastPass - support for TOTP codes

Login

• SSO login support

• See Documentation

General

• Various bug fixes

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.4.7

Improvements

convert command

• Convert legacy (V2/General) records to record-typed records

• See Documentation

transfer-user command

• Added support for mapping files

• See Documentation

General

• Support http and socks proxies

• Various bug fixes

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.4.6

Improvements

• General fixes and improvements

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.4.5

Improvements

• General fixes and improvements

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.4.4

Improvements

• General fixes and improvements

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.4.3

Improvements

Import

• Better handling of missing titles

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.4.2

Improvements

• Propagate permissions option to default shared folder permissions

See the Release in GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.4.1

Improvements

Import

• Fix for missing file attachments

• Prevent large records being duplicated

• Improved error handling when downloading attachments

Secrets Manager

• Automatically add a number to the end of Client names when multiple are created

General

• Fix for group commands in batch mode

• version command shows the Keeper Commander package directory

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.4.0

Improvements

• Secrets Manager

  • Added ability to create a Kubernetes ready configuration

  • Fix for token returns

  • Bug fix for properly removing Applications

• Import

  • Large record fields will not be converted to file attachments

  • Updated command names

  • LastPass - support for file attachments

• General

  • Made record updates with Commander SOX compliant

  • Fix for incremental sync-down removing records from the Vault

  • this-device command respects "restrict persistent login" restriction

  • clipboard-copy command does not output password for record types

  • General cleanup and bug fixes

Commander releases 16.5.1 - 16.5.18

See sub sections for information on individual releases

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.5.18

MSP Managed Company Creation and Deletion

It is now possible to create or remove Managed Companies using Commander

• msp-add command

  • Create new Managed Companies

  • See the documentation: https://docs.keeper.io/secrets-manager/commander-cli/using-commander/command-reference/msp-management-commands#msp-add

• msp-remove command

  • Remove an existing Managed Company

  • See the Documentation: https://docs.keeper.io/secrets-manager/commander-cli/using-commander/command-reference/msp-management-commands#msp-remove

Improvements

• automator command now supports Base64 and Environment Variables for configuration input

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.5.17

New Commands

verify-shared-folders command

• verifies that records in shared folders have the correct data keys. Useful after some conversion actions

• See the documentation: https://docs.keeper.io/secrets-manager/commander-cli/using-commander/command-reference/misc-commands#verify-shared-folders-command

General

• General bug fixes and improvements

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.5.15

Improvements

shortcut Command

• Displays record links

this-device Command

• removed 30 day maximum logout timeout

ln and mv Commands

• now accept patterns to match record titles

verify-records Command

• fixes TOTP record fields when import causes record corruption

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.5.14

Improvements

Convert

• convert command can now handle more than 1,000 records in one call. Calls and results are paginated.

Export

• Updated export command to handle corrupted record data is null custom fields

  • This is a community improvement provided by contributor flybyray

  • https://github.com/Keeper-Security/Commander/commit/2066c8daf991e865481e3cdef1d795ea1b81b288

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.5.13

Improvements

Import

• Added a script that can import records from HashiCorp KVP storage

  • Find the script in the custom folder: https://github.com/Keeper-Security/Commander/blob/master/keepercommander/custom/vault_dump_hvac.py

Bug Fixes

• Fixed an issue where record-permission command would result in an error

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.5.12

Improvements

convert

It is now possible to convert records that the logged-in account does not own. use the --ignore-ownership flag to perform

• see the documentation here: https://docs.keeper.io/secrets-manager/commander-cli/using-commander/command-reference/record-type-commands#convert-command

Bug Fixes

transfer-user Command

• Fixed an issue that caused "can't concat str to bytes" error

list Command

• Previously showed untyped records as "general" type, now shows nothing in the type column when record is untyped

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.5.11

Improvements

Import

Commander now supports importing from MYKI

• see the documentation here: https://docs.keeper.io/secrets-manager/commander-cli/using-commander/command-reference/import-and-export-commands#import-command

generate Command

• Generated passwords and the password strength, and Breachwatch scan result can be output in json format

• See the Documentation here:

aging-report Command

• Generate a report of password changes and expired passwords per record

• See the documentation here: https://docs.keeper.io/secrets-manager/commander-cli/using-commander/command-reference/reporting-commands#aging-report-command

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.5.10

Improvements

generate Command

• Generate secure passwords and copy them to the clipboard

• See the documentation here: https://docs.keeper.io/secrets-manager/commander-cli/using-commander/command-reference/misc-commands#generate-command

enterprise-role Command

• Roles can now be duplicated with or without automatically adding all the users of the original role

  • --copy to copy a role without users

  • --clone to duplicate a role and its users

• See the documentation here: https://docs.keeper.io/secrets-manager/commander-cli/using-commander/command-reference/enterprise-management-commands#enterprise-role-command

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.5.9

Improvements

Convert Command

Convert records to any record type.

See the documentation: https://docs.keeper.io/secrets-manager/commander-cli/using-commander/command-reference/record-type-commands#convert-command

Connect Command

The connect command has been removed and replaced with the following commands for each connection type:

• ssh

• rdp

• mysql

The connection process has been simplified and now supports typed records.

See the documentation: https://docs.keeper.io/secrets-manager/commander-cli/using-commander/making-connections

General

• password-aging-report script added to examples

• WebAuthN auth support for converter U2F keys

• Various bug fixes

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.5.7

Improvements

Import

• Records can now be imported as any specified record type. Documentation.

• Corrupted LastPass record attachments will not cause the import to fail

delete-attachment

• Orphaned file attachments which have no associated records in the vault can be deleted. Documentation.

General

• Fixed an issue when using the list command when Keeper Secrets Manager applications exist

• Various bug fixes

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.5.6

Bug Fixes

• Commander creates teams with RSA private key encoded with PKCS8 instead of PKCS1 format

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.5.5​

Improvements

connect command

• Improved contextual help messaging

• See Documentation​

enterprise-info command

• Added the ability to display Enterprise nodes as a table

• Added the ability to see queued users

• See Documentation​

audit-report command

• Added ability to export in JSON format

• See Documentation

security-audit-report command

• Added ability to display Breachwatch report

• See Documentation

LastPass Import

• Fix for malformed or corrupted TOTP codes causing import to fail​

• See Documentation

General

• Display messaging when the user is not permitted to use Commander based on role permissions

• Various bug fixes

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.5.3

Improvements

connect command

• Now supports record typed records (V3 records)

• See Documentation

audit-report command

• New filters added

  • --geo-location

  • --device-type

• See Documentation

share-report command

• Added "Folder Location" column

• See Documentation

General

• Initial Vault load performance improved

• Various bug fixes

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.5.2

Improvements

General

• Various bug fixes

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.5.1

Improvements

General

• Support for multiple MFA logins (WebAuthN)

• Improvements for enterprise query command

• Various bug fixes

Find the releases for Commander version 16.6 in the nested pages

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.6.14

New Features

Skip records

You can now tell Commander to not load records when it initially opens. This is helpful when you need to do some administrative jobs that don't require records and don't want to wait for the initial sync-down.

To use this feature, add the skip-records field to Commander's config file with a value of true

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.6.13

Improvements

User report last login

You can now get a report of each the last time each user in the enterprise logged in with the user-report command. Use the new --last-login command to see this

• See the documentation: https://docs.keeper.io/secrets-manager/commander-cli/using-commander/command-reference/reporting-commands#user-report-command

Add or remove admin privileges to roles

Administrative privileges can now be added or removed in Commander with the enterprise-role command. Add or remove the ability to run reports, manage nodes and more.

• See the documentation: https://docs.keeper.io/secrets-manager/commander-cli/using-commander/command-reference/enterprise-management-commands#enterprise-role-command

ManageEngine Import

Import records from ManageEngine with Commander

• See the documentation: https://docs.keeper.io/secrets-manager/commander-cli/using-commander/command-reference/import-and-export-commands

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.6.12

Improvements

SSO Login

SSO login for Commander has been greatly improved. Now when logging into Commander with SSO, you will be prompted to open a webpage to login to Keeper SSO connect. Once logged in, you are shown a button which will copy the authentication token when clicked. This token is then pasted into Commander to complete SSO login.

Audit Log Improvement

Raw type audit logs are no longer limited to 1000 rows. By adding a --limit <NUMBER> flag with any number, that number of rows will be returned.

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.6.11

Improvements

Add Teams to Roles

• The enterprise-role command has been updated with the --add-team option which can add a team to the role.

  • See the documentation: https://docs.keeper.io/secrets-manager/commander-cli/using-commander/command-reference/enterprise-management-commands#enterprise-role-command

• The enterprise-team command has been updated with the --add-role option which can add a role to the team

  • See the documentation: https://docs.keeper.io/secrets-manager/commander-cli/using-commander/command-reference/enterprise-management-commands#enterprise-team-command

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.6.10

Improvements

Action Report Actions

Easily lock or delete user accounts that haven't logged in or edit records for some time, or have been locked for some time.

Use the action-report command to find users that haven't logged in in a given number of days, haven't edited a record in a given number of days or have been locked for a given number of days. Then have Commander automatically lock or delete all the accounts found.

See the documentation here: https://docs.keeper.io/secrets-manager/commander-cli/using-commander/command-reference/reporting-commands#action-report-command

Improved Password Generation

It is now possible to provide rules for password generation when creating and editing records using Commander. --generate-rules (-gr) and --generate-length (-gl) optional flags have been added to the edit and add commands.

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.6.9

New Features

Action Report

Use the new action-report to identify any users that:

• haven't logged in

• haven't updated a record

• have been locked

For a given time period.

See the docs here: https://docs.keeper.io/secrets-manager/commander-cli/using-commander/command-reference/reporting-commands#action-report-command

Improvements

• Commander rotation plugins now support typed records and have improved usability

  • See the Commander rotation docs here: https://docs.keeper.io/secrets-manager/commander-cli/using-commander/plugins

• Commander SSH Agent can now load private keys from attached files

  • See the docs here: https://docs.keeper.io/secrets-manager/commander-cli/using-commander/command-reference/connection-to-hosts#ssh-agent-command

• Improved handling of throttled requests

  • Commander will now wait for 10 seconds and re-perform any throttled commands

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.6.7

Features

Trash Command

• view, restore, or purge records in the Vault trash that have been deleted

• See the documentation here: https://docs.keeper.io/secrets-manager/commander-cli/using-commander/command-reference/record-commands#trash-command

Convert Enterprise Nodes to a Managed Company

• The msp-convert-node command can convert nodes into managed companies under the MSP

• See the Documentation here: https://docs.keeper.io/secrets-manager/commander-cli/using-commander/command-reference/msp-management-commands#msp-convert-node-command

Use Commander as your System's SSH Agent

• New ssh-agent command let's you start, stop, and see info about the SSH Agent

• See the documentation here: https://docs.keeper.io/secrets-manager/commander-cli/using-commander/command-reference/connection-to-hosts#ssh-agent-command

Improvements

• record-history command now supports typed records

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.6.6

Features

Arrange-folders command

• new command moves shared folders into a sub folder

Improvements

• When adding a user to a team, shared folders can be hidden from the user by adding the --hide-shared-folders on option when using the enterprise-team --add-user command

• Display TOTP URLs with untyped records

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.6.5

New Features

Add and Edit Managed Companies in one Script

The msp-add command now sets the new managed company's ID as environment variable that can be used to access the managed company from within a script.

See the docs for more information and examples: https://docs.keeper.io/secrets-manager/commander-cli/using-commander/command-reference/msp-management-commands#create-and-switch-to-a-mc

Export From a Folder

It is now possible to export a portion of the Vault be specifying a folder when using the export command. See the documentation for more details: https://docs.keeper.io/secrets-manager/commander-cli/using-commander/command-reference/import-and-export-commands#export-command

Bug Fixes and Improvements

• Fixed an issue causing Unicode parsing errors when outputting to CSV

• Made import command more robust when encountering null values

• re-instated connect command and gave it typed record compatibility

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.6.3

New Commands

Create One-Time Sharing URLs

The new one-time-share command will be used to create one-time sharable links. See the docs for more details.

Reset-password Command

This new command can be used to reset the account's master password. See the docs for more details.

Improvements

• You can now use the --invite flag with the enterprise-user command to re-invite users that have already been invited to the enterprise

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.6.1

Improvements

Importing

• import command now maintains the correct record type when used to update records

General

get command

• now shows the parent folder's UID

verify-shared-folders command

• updated to correct an issue when typed records are reverted to untyped

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.6.0

Improvements

Import and Export

• import and export commands now support typed records

Password Rotation

• mysql password rotation plugin supports the latest PyMySQL package

Look and Feel

• New and improved Commander Logo

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.7.1

Improvements

1Password Import

Commander now supports import of 1Password 1pux format files

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.7.2

Improvements

Masked Passwords

• The get and search commands now respect masked field settings. Passwords are no longer shown as plain text in command responses.

New Features

Compliance Reports

You can now query compliance reports with Commander. See the status of shared records across your Keeper enterprise account.

See the documentation: https://docs.keeper.io/secrets-manager/commander-cli/using-commander/command-reference/reporting-commands/compliance-reports

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.7.3

Improvements

View Teams in Share Report

When records are shared to a team, the team can now be seen in the share-report.

Record Type Support for Keepass Export

Exporting records to Keepass now supports typed records.

New Features

SFTP Sync

Use credentials in the Keeper Vault to facilitate a connection to a SFTP server and download files to your machine.

See the documentation: https://docs.keeper.io/secrets-manager/commander-cli/using-commander/command-reference/connection-commands/sftp-sync

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.7.5

Improvements

Compliance Report Updates

• Added --team filter option to compliance-report command

• Added --record title filter for compliance-report command

Import Updates

• Added import support for NordPass

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.7.6

Improvements

Compliance Report Updates

• New compliance team-report gives a view of team access to shared folder across the enterprise

  • See the documentation for more: https://docs.keeper.io/secrets-manager/commander-cli/using-commander/command-reference/reporting-commands/compliance-reports#compliance-team-report

Generate Dice-Ware Passwords

• The generate command can now be used to create passwords that consist of randomly selected words

  • See the documentation for more: https://docs.keeper.io/secrets-manager/commander-cli/using-commander/command-reference/misc-commands#generate-dice-roll-passwords

Copy MSP Roles

• new copy-msp-role command copies a role from the MSP to a managed company. Use this to easily onboard new MCs with common role settings and enforcements.

  • See the documentation for more: https://docs.keeper.io/secrets-manager/commander-cli/using-commander/command-reference/msp-management-commands#msp-copy-role-command

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.7.8

Improvements

Transfer Accounts in Batch With the Action Report

• The action-report command now supports a new action "transfer" which transfers all matching user's vaults to a given account

• Automatically transfer users that haven't logged in or updated records

• Read the Documentation for more details: https://docs.keeper.io/secrets-manager/commander-cli/using-commander/command-reference/reporting-commands#action-report-command

Automate Managed Company Creation With a new Example Script

• A new script example in the GitHub repo shows off how to automate Managed Company creation with Python

  • Take a look in GitHub: https://github.com/Keeper-Security/Commander/blob/master/keepercommander/custom/create_mc.py

Plus General Bug Fixes and Improvements

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.7.9

New Features and Improvements

Bitwarden Import

• Records can now be imported from Bitwarden

Create Users Without Invites

• User accounts can be provisioned with the create-user command without sending them an invite. Put new users into roles and teams without waiting for them to answer their email

General Improvements

Compliance Reports

• Usability and performance improvements

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.7.10

Improvements

Support for Share Admin

• Keeper Share Admin allows Keeper Administrators to manage permissions for any records in a shared folder, even if they are not the owner of that record or shared folder

• In Commander, share admins will be able to manage permissions with the existing permission command: share-folder

  • See the command in our docs: https://docs.keeper.io/secrets-manager/commander-cli/using-commander/command-reference/sharing-commands#share-folder-command

• Read more about Share Admin in our Docs: https://docs.keeper.io/enterprise-guide/share-admin

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.8.0

Improvements

Find Invited Users with Action Report

• Action Report can now find users that have been in the invited status for the given number of days

• See the documentation: https://docs.keeper.io/secrets-manager/commander-cli/using-commander/command-reference/reporting-commands#action-report-command

Edit Transfer Enforcements with Enterprise Role Command

• The account transfer enforcement has been added to the available enforcement options for the enterprise-role command

• See the documentation: https://docs.keeper.io/secrets-manager/commander-cli/using-commander/command-reference/enterprise-management-commands#enterprise-role-command

Improvements to Record Restore

• The record-history command updated to use the most recent record restoration API

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.8.1

Improvements

• Updated OpenSSL dependency to v3.0.7

  • Addresses security flaws in OpenSSL plugin. Learn more on the OpenSSL page: https://www.openssl.org/news/vulnerabilities.html#CVE-2022-3786

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.8.2

Improvements

Teams in Compliance Report

• Improved the view of teams in compliance report results

• See the docs for more information: https://docs.keeper.io/secrets-manager/commander-cli/using-commander/command-reference/reporting-commands/compliance-reports

Create User with Sharable Link

• The create-user command can be used to create new user vaults in an enterprise. The command creates a record in your vault with a link to a one time share.

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.8.3

New Features

Import from Thycotic Secret Server

• Commander can now be used to import secrets from Thycotic Secrets Server right into Keeper

• Learn more about import in the docs: https://docs.keeper.io/secrets-manager/commander-cli/using-commander/command-reference/import-and-export-commands#import-command

Distributor commands

• New commands and features for distributors that manage several MSP accounts

Add and Update Typed Records Easily

• Added a command record-add a consolidate record add for v3 typed records

• Added a command record-update a consolidated record edit for v3 typed records

• Learn more in the docs: https://docs.keeper.io/secrets-manager/commander-cli/using-commander/command-reference/record-commands#record-add-and-record-update-commands

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.8.4

Improvements

clipboard-copy command

• Supported record history and TOTP codes

MSP commands

• Respect Distributor's restrictions

• MSP Admin to run audit-report commands for MCs

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.8.6

Improvements

• help command sorts command list

• Use pyproject.toml for building Commander

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.8.7

New Features

apply-membership command

• Applies team membership

Improvements

• windows password rotation plugin supports Active Directory accounts

• Thycotic Secret Server import folder query performance

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.8.8

Improvements

• The number of PBKDF2 iterations performed on login has been increased from 100,000 to 1,000,000

• Commander can now apply email templates to individual enterprise nodes

• The get command now masks hidden fields, such as passwords. Hidden fields can be shown with the new --unmask flag

• The Enterprise aging-report command now supports sorting using the -s flag

Bug Fixes

• Fixed a bug when importing records from LastPass with attachments

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.8.9

Improvements

• Added the create-account command, which registers new Keeper accounts

Bug Fixes

• Improved handling of connection errors during Thycotic Secret Server import

• Fixed a bug where the share-record command could crash when given the uid of a shared folder

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.8.10

Improvements

• LastPass import will now ignore shared folders with no name

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.8.11

Bug Fixes

• Fixed a bug where the record-permission command did not interact properly with admin permissions

• Fixed a bug with updating security score data

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.8.12

Improvements

• The import command now can filter by folder, only importing a single folder from the source vault

• The scim-view command can now output to stdout when running in batch mode

Bug Fixes

The enterprise-push command now correctly creates v3 records instead of v2 records

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.8.13

Improvements

• Added support for the 'Maximum Record Size' enforcement

  • Example: enterprise-role <role> --enforcement MAXIMUM_RECORD_SIZE:<size>

  • Users in the role are prevented from creating records larger than the assigned size, in bytes

  • This new enforcement is not yet available in the console UI

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.8.14

Improvements

• The user-report command now includes login_console event in last_login calculation

• The import command now supports the following:

  • --filter-folder switch now allows for 1Password vault selection

  • Thycotic private key/membership sharing enforcements

• Removed unnecessary warning outputs for the share-folder for the to share-folder output messages

• Improvements to the sync-down command

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.8.15

New Commands

• New command: external-shares-report

Improvements

• Improvements in custom emails:

  • Allow users to set desired custom email template per node

  • custom email templates now support tagging

• Additional 2FA login options: 12 and 24 hours

• Commands download-record-types and load-record-types now support custom record types

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.8.16

New Features

• New command: audit-alert

Improvements

• Multi language support for custom emails

• Switched to using EC transmission key instead of RSA key

• Thycotic imports now support secret templates

Bug Fixes

• Fix in pagination and last_login values

• Minor bug fixes for user-report

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.8.17

Improvements

• Increased minimum master password length from 10 to 12

Bug Fixes

• Fixed handling of corrupt attachments for lastpass imports

• Fixed issue where compliance-report alias command cr was not working properly

• Fixed issue where rm -purge was not removing from the rash bin

• Fixed issue where keeper --debug --batch-mode commands-script was not setting debug mode

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.8.18

New Features

• New command: transform-folder

• New command: sync-security-data

Improvements

• Improvements for command tree:

  • Added switch -r, --records to show record nodes

  • Added switch -s, --shares for showing record permissions

  • Added switch -t, --title <TITLE> to show optional title

  • hierarchy formatting improvements

• Improvements for command trash:

  • Added sub-command unshare to remove shares from deleted records

Bug Fixes

• Resolved issue where switch record-type for command convert was not working

• Lastpass import now ignores corrupted shared folder keys

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.8.19

Improvements

• security-audit-report - added pagination support

• share-record - now able to filter by shared folder

• audit-log - now supports typed records (V3)

• distributor license - now supports multiple targets

Bug Fixes

• Fixes to lastpass import to not fail due to corrupted records

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.8.20

Improvements

• enterprise-info --node - now displays node's provisioning information in new column provisioning

• aging-report - improvements in retrieving and processing data to provide faster results

Bug Fixes

• import - Lastpass imports now suppress utf-8 errors

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.8.21

Bug Fixes

• help command now includes information on external-shares-report

• bug fixes and improvements for share_report, enterprise_data, and audit_report

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.8.22

Improvements

• audit-report

  • can now filter by ip addresses with switch --ip-address

  • switch --event-type now supports multiple values

Bug Fixes

• external-shares-report - optimized error handling and fixed issue where whole program is aborted due to errors

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.8.23

Improvements

• import - Lastpass imports now ignore self-signed certification errors and supports commander's proxy and certificate_check settings

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.8.24

Improvements

• action-report - now supports pagination for big data sets

• share-folder - now supports multiple shared folder targets

• enterprise-push - now supports Keeper JSON export format

• enterprise-user - now supports email aliases with switches --add-alias and --delete-alias

Bug Fixes

• tree - fixed bug where folders with same names are not being displayed

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.9.0

Improvements

• sync-down - improved command to now support download of >100k records

• rm - now supports multiple record targets. Users can now delete multiple records at a time.

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.9.1

Improvements

• download-attachment - now supports multiple record & folder targets

• find-duplicate - new switch --merge or -m allows users to consolidate duplicate records

Bug Fixes

• aging-report

  • Fixed last Password's change value to show most recent datetime

  • Resolved issue where preliminary date was being overwritten with compliance data updates

  • Resolved issues with cached data update history

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.9.2

Improvements

• import - switch --dry-run now enables users to display records to be imported without importing them

• download-attachment - when downloading attachments from a folder in the vault, switch --preserve-dir enables users to preserve the folder's directory structure

Bug Fixes

• Other minor bug fixes and improvements

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.9.3

Improvements

• find-duplicates - switch --shares allows you to add sharing information as matching criteria

• share-folder - now supports @existing as value to specify existing users for switch -e/--email and -r/--record

• action-report - now supports filtering with blocked for switch -t/--target

Bug Fixes

• Other minor bug fixes and improvements

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.9.4

Improvements

• security-audit-report - switch -n, --node now enables you to filter by node

• enterprise-user - switch --add-role now supports value @all

• import - now enables you import custom fields from LastPass

Bug Fixes

• Other minor bug fixes and improvements

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.9.5

Improvements

• Keeper Commander now supports the passkey field type

• compliance - sub command summary-report enables you to generate the compliance summary report

• enterprise-info - now displays user's aliases

• find-duplicate - switch --merge/m: is now supported for paginated record removal requests

Bug Fixes

• Other minor bug fixes and improvements

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.9.6

Improvements

• export - flag --zip allows you to export file attachments as zip archives Note: Only JSON exports are supported i.e export --format json --zip

• compliance - sub command team-report enables you to generate a report showing the team's access & access type to shared folder

• generate - now supports argument --delimiter

Bug Fixes

• Other minor bug fixes and improvements

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.9.7

Improvements

• totp - now displays past and future codes

• apply-membershp - now supports updating & deleting shared folder permissions

Bug Fixes

• Other minor bug fixes and improvements

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.9.8

Improvements

• msp-info command now support JSON and CSV exports

• distributor info command now shows enabled MSP addons

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.9.9

Improvements

• enterprise-role --add-privilege now enables transfer_account privilege

• Commander now supports RESTRICT_IMPORT_SHARED_FOLDERS role enforecement

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.9.10

New Features

• keeper-fill - display and manage KeeperFill browser settings

Improvements

• clipboard-copy - now supports copying custom fields

• scim - now supports provisioning users and teams from Active Directory

• automator - now supports performing team approval for user

• aging-report - now supports user alias

• now allows configuring 12 or 24 hour options for 2FA enforcements

Bug Fixes

• Other minor bug fixes and improvements

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.9.11

New Features

• 2fa - manage your 2FA settings

• password-report - generate custom record password report based on password policy

Improvements

• pam rotation- now supports managing post password rotation scripts with subcommand script

• import - now supports displaying skipped records with switch --show-skipped

Bug Fixes

• Other minor bug fixes and improvements

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.9.12

Improvements

• find-duplicate

  • now supports enterprise wide search with switch --scope

  • now supports formatting and exporting results with swtich --format and --output

Bug Fixes

• Other minor bug fixes and improvements

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.9.13

Improvements

• Keeper Commander's commands that output statuses now display 2fa status

Bug Fixes

• Other minor bug fixes and improvements

Find the release on GitHub: https://github.com/Keeper-Security/Commander/releases/tag/v16.9.14

Improvements

• Improved compliance data caching by encrypting locally stored sensitive data

• compliance - Switch -rebuild or -r now clears all previously cached compliance data

Bug Fixes

• compliance shared-folder-report - fixed bug where external user's email are not found

• action-report - fixed issue when deleting 1000+ accounts

• Other minor bug fixes and improvements