How to configure Keeper SSO Connect Cloud with Traitware for Passwordless login to Keeper.
Visit the Keeper Admin Console and login as the Keeper Administrator. https://keepersecurity.com/console (US / Global) https://keepersecurity.eu/console (EU-hosted customers) https://keepersecurity.com.au/console (AU-hosted customers) https://govcloud.keepersecurity.us/console (GovCloud customers)
Note: Passwordless integration can only be applied to specific nodes (e.g. organizational units) within your Admin Console.
Click on the Admin tab and click Add Node.
From the Provisioning tab, click Add Method
Select Single Sign-On with SSO Connectâ„¢ Cloud and click Next
Enter your Configuration Name and Enterprise Domain, then click Save. Take note of the Enterprise Domain. This will be used later for Enterprise SSO login.
The newly-created SAML 2.0 with Cloud SSO Connect provisioning method will be visible. Select View from the menu.
Note the Entity ID and Assertion Consumer Service (ACS) Endpoint. These values will be used when configuring TraitWare.
Log into the TraitWare Admin Console (TCC) https://api.traitware.com/console/login
Select the Signing Keys from the left menu. Click Generate new Key Pair button. Enter the application name for the key pair. Select desired Lifetime in Years, Product Key Type and Product Key Size. Click Generate Key.
Select Applications from the left menu and click Add Application.
Select SAML 2.0.
Click Use a Template and select Keeper
Insert your Keeper Entity ID and Assertion Consumer Service (ACS) Endpoint noted previously in the walkthrough and click Submit.
From the Traitware Admin Console Applications tab, select Keeper
Select the Provider Credentials tab and click the download icon for Traitware IdP SAML Metadata (XML)
Click Save Application
Return to the Keeper Admin Console
Edit the SAML 2.0 with Cloud SSO Connectâ„¢ provisioning method
Upload the file from step 2 to the SAML Metadata field
From the Traitware Admin Console Users tab, select Create User
Complete the form and click Save Changes
Click on the newly created user and select the Applications tab
Toggle Application Access on for Keeper
Note: A user with the same email address must also exist within the Keeper Admin Console. For more information on creating Keeper users, see Manual Addition of Users in our enterprise documentation.
From the Traitware Admin Console Applications tab, select Keeper
Click Enable All User Access
Confirm the action and click Enable Access
Users may login either using their enterprise domain or email address.
Navigate to the Keeper Vault
Enter your email address and click Next
From your Traitware app on your smart device, scan the QR code on your desktop browser
You will now be logged in to your Keeper vault
Login Using Enterprise Domain
Navigate to the Keeper Vault
Click the Enterprise SSO Login dropdown and select Enterprise Domain
Enter the Enterprise Domain name you specified in the Keeper portion of this walkthrough and click Connect
From your Traitware app on your smart device, scan the QR code dispalyed on your desktop browser
You will now be logged in to your Keeper vault
