All pages
Powered by GitBook
1 of 1

Admin Console 16.18.7

Released October 8, 2024.

Features

Fresh New Look for Security Audit

The Security Audit tab of the Admin Console has been updated with a fresh new design that makes it easy to identify areas that need your attention.

The Overall Security Score calculation logic is unchanged and features prominently at the top of the Security Audit tab. The security areas that factor into the score (strong record passwords, unique record passwords, and 2FA status) are shown as separate cards below the Overall Security Scores. If a card is at a 100% score (all records have strong passwords, no reused passwords exist, or 2FA is enabled for all users), the card will be in a collapsed state. Otherwise, the card will be expanded to include additional details.

New Record Password Strength Categories

The user details table now has four Record Password strength categories that match the Vault: Weak, Fair, Medium, and Strong. The table is sorted by default on the users’ overall Security Audit score, showing users with the lowest Security Audit score first. You can reverse this sort order or sort instead on the user's name, password strength, resued passwords, or two-factor method.

Additionally, you can filter the table on the following fields:

  • Record Password Strength: Strong, Medium, Fair, or Weak

  • Unique Record Password: Resued or Unique

  • 2FA: Text Message, Authenticator App (TOTP), Smartwatch (KeeperDNA), Security Keys, RSA SecurID, Duo Security, or No 2FA

Security Audit - User Details Table

Refreshing Security Audit Scores

This release provides administrators an easy way to refresh security scores on the UI without having to log out of the Console and log back in. The ability to refresh scores is useful when the admin is expecting users to log into their Vaults to have their latest security scores sync with the Console. When the user has logged into their Vault, the admin needs to simply click the Refresh Scores button to sync the latest scores to the Console.

Security Audit - Refresh Enterprise Scores

Resetting Security Audit Scores

Administrators can now easily reset security scores from the UI if the scores have gotten out-of-sync with user Vaults. The administrator can either reset scores for the entire enterprise using the Reset Scores button on the Security Audit screen or for specific users. Please note that only Root Admins can reset the Security Audit score.

The Reset Scores button on the Security Audit screen will reset scores for the entire enterprise. Once the scores are reset, users will need to log in to their Vaults for the scores to sync to the Admin Console due to the constraints of Keeper’s Zero Knowledge architecture.

Security Audit - Reset Enterprise Scores

Alternatively, the administrator can navigate to the User Details modal and select Reset Security Score under User Actions to reset individual users' Security Audit scores. As is the case with performing an enterprise-wise score reset, once the scores are reset, the user will need to log in to their Vault for the scores to sync to the Admin Console due to the constraints of Keeper’s Zero Knowledge architecture.

Security Audit - Reset Single User Security Score

Bug Fixes

EM-6734: Fixed an issue that would cause the browser to crash for large Security Audit datasets

Known Issues

The Security Audit screen does not load security data for some users due the browser not detecting the updated Admin Console version. Please follow the browser-specific steps below to clear site data to resolve this issue.

Chromium-Based Browsers (Chrome, Edge, Brave)
  1. Log in to the Admin Console

  2. Open Developer Tools

  3. Navigate to Application > Storage

  4. Click Clear site data

Firefox
  1. Navigate to menu button (three horizontal bars) > Settings

  1. Navigate to Privacy & Security tab > Cookies and Site Data section > Manage Data button

  1. Search for ‘keeper’ > select the keepersecurity.com search results > click Remove Selected > click Save Changes

  1. Confirm the removal by clicking the Remove button

Safari
  1. From the menu bar, navigate to Safari > Settings

  1. Navigate to the Privacy tab > Manage Website Data button

  1. Search for ‘keeper’ > select the keepersecurity.com search results > click Remove > click Done