LogoLogo
SSO Connect Cloud
SSO Connect Cloud
  • Keeper SSO Connect Cloud
  • Overview
  • Admin Console Configuration
  • SSO Identity Providers
    • Amazon AWS
    • Auth0
    • Centrify
    • CloudGate UNO
    • DUO SSO
    • Entra ID (Azure AD)
    • F5
    • Google Workspace
      • Google Workspace User and Group Provisioning with Cloud Function
      • Google Workspace User Provisioning with SCIM
    • HENNGE
    • Imprivata
    • JumpCloud
    • Microsoft AD FS
    • Okta
    • OneLogin
    • Ping Identity
    • PingOne
    • Rippling
    • RSA SecurID Access
    • SecureAuth
    • Shibboleth
    • Other SAML 2.0 Providers
  • Passwordless Providers
    • Traitware
    • Trusona
    • Veridium
    • Beyond Identity
  • Device Approvals
    • Keeper Push
    • Admin Approval
    • Keeper Automator Service
      • Version 17.0 Overview
      • Ingress Requirements
      • Azure Container App
      • Azure App Services
      • Azure App Gateway (Advanced)
      • AWS Elastic Container Service
      • AWS Elastic Container Service with KSM (Advanced)
      • Java on Linux
      • Docker on Linux
      • Docker Compose
      • Google Cloud with GCP Cloud Run
      • Kubernetes Service
      • Windows Service
      • Multi-Tenant Mode
      • Custom SSL Certificate
      • Advanced Settings
      • Troubleshooting
    • CLI Approvals
  • Certificate Renewal
  • Logout Configuration
  • User Provisioning
  • System Architecture
  • Security and User Flow
  • Migrate from OnPrem
  • Graphic Assets
  • Links & Resources
Powered by GitBook

Company

  • Keeper Home
  • About Us
  • Careers
  • Security

Support

  • Help Center
  • Contact Sales
  • System Status
  • Terms of Use

Solutions

  • Enterprise Password Management
  • Business Password Management
  • Privileged Access Management
  • Public Sector

Pricing

  • Business and Enterprise
  • Personal and Family
  • Student
  • Military and Medical

© 2025 Keeper Security, Inc.

On this page
  • Configure Keeper for Traitware Integration
  • Configure TraitWare
  • End User Login

Was this helpful?

Export as PDF
  1. Passwordless Providers

Traitware

How to configure Keeper SSO Connect Cloud with Traitware for Passwordless login to Keeper.

PreviousPasswordless ProvidersNextTrusona

Last updated 3 years ago

Was this helpful?

Configure Keeper for Traitware Integration

Visit the Keeper Admin Console and login as the Keeper Administrator. https://keepersecurity.com/console (US / Global) https://keepersecurity.eu/console (EU-hosted customers) https://keepersecurity.com.au/console (AU-hosted customers) https://govcloud.keepersecurity.us/console (GovCloud customers)

Note: Passwordless integration can only be applied to specific nodes (e.g. organizational units) within your Admin Console.

Click on the Admin tab and click Add Node.

From the Provisioning tab, click Add Method

Select Single Sign-On with SSO Connectâ„¢ Cloud and click Next

Enter your Configuration Name and Enterprise Domain, then click Save. Take note of the Enterprise Domain. This will be used later for Enterprise SSO login.

The newly-created SAML 2.0 with Cloud SSO Connect provisioning method will be visible. Select View from the menu.

Note the Entity ID and Assertion Consumer Service (ACS) Endpoint. These values will be used when configuring TraitWare.

Configure TraitWare

Log into the TraitWare Admin Console (TCC) https://api.traitware.com/console/login

Generate Application Key

Select the Signing Keys from the left menu. Click Generate new Key Pair button. Enter the application name for the key pair. Select desired Lifetime in Years, Product Key Type and Product Key Size. Click Generate Key.

Create Traitware Application

  1. Select Applications from the left menu and click Add Application.

  2. Select SAML 2.0.

  3. Click Use a Template and select Keeper

  4. Insert your Keeper Entity ID and Assertion Consumer Service (ACS) Endpoint noted previously in the walkthrough and click Submit.

Configure SAML 2.0 Integration

  1. From the Traitware Admin Console Applications tab, select Keeper

  2. Select the Provider Credentials tab and click the download icon for Traitware IdP SAML Metadata (XML)

  3. Click Save Application

  4. Return to the Keeper Admin Console

  5. Edit the SAML 2.0 with Cloud SSO Connectâ„¢ provisioning method

  6. Upload the file from step 2 to the SAML Metadata field

Create and Enable Users to Login to Keeper Vault through Traitware

  1. From the Traitware Admin Console Users tab, select Create User

  2. Complete the form and click Save Changes

  3. Click on the newly created user and select the Applications tab

  4. Toggle Application Access on for Keeper

Note: A user with the same email address must also exist within the Keeper Admin Console. For more information on creating Keeper users, see Manual Addition of Users in our enterprise documentation.

Enable All Traitware Users to Login to Keeper Vault through Traitware

  1. From the Traitware Admin Console Applications tab, select Keeper

  2. Click Enable All User Access

  3. Confirm the action and click Enable Access

End User Login

Users may login either using their enterprise domain or email address.

Login Using Email Address

  1. Navigate to the Keeper Vault

  2. Enter your email address and click Next

  3. From your Traitware app on your smart device, scan the QR code on your desktop browser

  4. You will now be logged in to your Keeper vault

Login Using Enterprise Domain

  1. Navigate to the Keeper Vault

  2. Click the Enterprise SSO Login dropdown and select Enterprise Domain

  3. Enter the Enterprise Domain name you specified in the Keeper portion of this walkthrough and click Connect

  4. From your Traitware app on your smart device, scan the QR code dispalyed on your desktop browser

  5. You will now be logged in to your Keeper vault