# Traitware

### **Configure Keeper for Traitware Integration**

Visit the [Keeper Admin Console](https://keepersecurity.com/console) and login as the Keeper Administrator.\
\
<https://keepersecurity.com/console> (US / Global)\
<https://keepersecurity.eu/console> (EU-hosted customers)\
<https://keepersecurity.com.au/console> (AU-hosted customers)\
<https://govcloud.keepersecurity.us/console> (GovCloud customers)

{% hint style="success" %}
Note: Passwordless integration can only be applied to specific nodes (e.g. organizational units) within your Admin Console.
{% endhint %}

Click on the **Admin** tab and click **Add Node**.

![](/files/-MhZ_ypiNjYeSykwo0pZ)

From the **Provisioning** tab, click **Add Method**

![](/files/-MhZRD9oPwAZQEcCeoqu)

Select **Single Sign-On with SSO Connect™ Cloud** and click **Next**

![](/files/-MhZRVqBIAuznR2MhHrC)

Enter your **Configuration Name** and **Enterprise Domain**, then click **Save**. Take note of the Enterprise Domain. This will be used later for Enterprise SSO login.

![](/files/-MhZRqWfE0IbtSAeCt6Q)

The newly-created SAML 2.0 with Cloud SSO Connect provisioning method will be visible. Select **View** from the menu.

{% hint style="success" %}
Note the **Entity ID** and **Assertion Consumer Service (ACS) Endpoint**. These values will be used when configuring TraitWare.
{% endhint %}

![](/files/-MhZWUzB3ZOu4NyLB2vE)

### Configure TraitWare

Log into the TraitWare Admin Console (TCC) <https://api.traitware.com/console/login>

![](/files/-Mh_DPtw-r9N1jlcyf7-)

#### Generate Application Key

Select the **Signing Keys** from the left menu. Click **Generate new Key Pair** button. Enter the application name for the key pair. Select desired **Lifetime in Years**, **Product Key Type** and **Product Key Size**. Click **Generate Key**.

![](/files/-Mh_FAVQROyg2Fb1tn5T)

#### Create Traitware Application

1. Select **Applications** from the left menu and click **Add Application**.
2. Select **SAML 2.0**.
3. Click **Use a Template** and select **Keeper**
4. Insert your **Keeper Entity ID** and **Assertion Consumer Service (ACS) Endpoint** noted previously in the walkthrough and click **Submit**.

{% embed url="<https://vimeo.com/591345332/5fab85fd65>" %}

#### Configure SAML 2.0 Integration

1. From the Traitware Admin Console Applications tab, select **Keeper**
2. Select the **Provider Credentials** tab and click the download icon for **Traitware IdP SAML Metadata (XML)**
3. Click **Save Application**
4. Return to the Keeper Admin Console
5. Edit the **SAML 2.0 with Cloud SSO Connect™** provisioning method
6. Upload the file from step 2 to the **SAML Metadata** field

{% embed url="<https://vimeo.com/591303969/9a3ba9868f>" %}

#### Create and Enable Users to Login to Keeper Vault through Traitware

1. From the Traitware Admin Console **Users** tab, select **Create User**
2. Complete the form and click **Save Changes**
3. Click on the newly created user and select the **Applications** tab
4. Toggle **Application Access** on for **Keeper**

{% hint style="success" %}
Note: A user with the same email address must also exist within the Keeper Admin Console. For more information on creating Keeper users, see [Manual Addition of Users](/en/enterprise-guide/user-and-team-provisioning/manual-provisioning-through-admin-console.md) in our enterprise documentation.
{% endhint %}

{% embed url="<https://vimeo.com/591306916/4f24a60ab9>" %}

#### Enable All Traitware Users to Login to Keeper Vault through Traitware

1. From the Traitware Admin Console **Applications** tab, select **Keeper**
2. Click Enable All User Access
3. Confirm the action and click **Enable Access**

![](/files/-MhpW5iqxP9742vxvRqF)

### End User Login

Users may login either using their enterprise domain or email address.

#### **Login Using Email Address**

1. Navigate to the Keeper Vault
2. Enter your email address and click **Next**
3. From your Traitware app on your smart device, scan the QR code on your desktop browser
4. You will now be logged in to your Keeper vault

![](/files/-MhyWzXgkKyBPWQmbEkJ)

**Login Using Enterprise Domain**

1. Navigate to the Keeper Vault
2. Click the **Enterprise SSO Login** dropdown and select **Enterprise Domain**
3. Enter the Enterprise Domain name you specified in the Keeper portion of this walkthrough and click **Connect**
4. From your Traitware app on your smart device, scan the QR code dispalyed on your desktop browser
5. You will now be logged in to your Keeper vault

![](/files/-MhyU7qw2SyLskhv-iMP)


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.keeper.io/en/sso-connect-cloud/passwordless-providers/traitware.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.