Traitware

How to configure Keeper SSO Connect Cloud with Traitware for Passwordless login to Keeper.

Configure Keeper for Traitware Integration

Visit the Keeper Admin Console and login as the Keeper Administrator. https://keepersecurity.com/console (US / Global) https://keepersecurity.eu/console (EU-hosted customers) https://keepersecurity.com.au/console (AU-hosted customers) https://govcloud.keepersecurity.us/console (GovCloud customers)

Note: Passwordless integration can only be applied to specific nodes (e.g. organizational units) within your Admin Console.

Click on the Admin tab and click Add Node.

From the Provisioning tab, click Add Method

Select Single Sign-On with SSO Connect™ Cloud and click Next

Enter your Configuration Name and Enterprise Domain, then click Save. Take note of the Enterprise Domain. This will be used later for Enterprise SSO login.

The newly-created SAML 2.0 with Cloud SSO Connect provisioning method will be visible. Select View from the menu.

Note the Entity ID and Assertion Consumer Service (ACS) Endpoint. These values will be used when configuring TraitWare.

Configure TraitWare

Log into the TraitWare Admin Console (TCC) https://api.traitware.com/console/login

Generate Application Key

Select the Signing Keys from the left menu. Click Generate new Key Pair button. Enter the application name for the key pair. Select desired Lifetime in Years, Product Key Type and Product Key Size. Click Generate Key.

Create Traitware Application

Select Applications from the left menu and click Add Application.
Select SAML 2.0.
Click Use a Template and select Keeper
Insert your Keeper Entity ID and Assertion Consumer Service (ACS) Endpoint noted previously in the walkthrough and click Submit.

Configure SAML 2.0 Integration

From the Traitware Admin Console Applications tab, select Keeper
Select the Provider Credentials tab and click the download icon for Traitware IdP SAML Metadata (XML)
Click Save Application
Return to the Keeper Admin Console
Edit the SAML 2.0 with Cloud SSO Connect™ provisioning method
Upload the file from step 2 to the SAML Metadata field

From the Traitware Admin Console Users tab, select Create User
Complete the form and click Save Changes
Click on the newly created user and select the Applications tab
Toggle Application Access on for Keeper

Note: A user with the same email address must also exist within the Keeper Admin Console. For more information on creating Keeper users, see Manual Addition of Users in our enterprise documentation.

From the Traitware Admin Console Applications tab, select Keeper
Click Enable All User Access
Confirm the action and click Enable Access

Users may login either using their enterprise domain or email address.

Navigate to the Keeper Vault
Enter your email address and click Next
From your Traitware app on your smart device, scan the QR code on your desktop browser
You will now be logged in to your Keeper vault

Login Using Enterprise Domain

Navigate to the Keeper Vault
Click the Enterprise SSO Login dropdown and select Enterprise Domain
Enter the Enterprise Domain name you specified in the Keeper portion of this walkthrough and click Connect
From your Traitware app on your smart device, scan the QR code dispalyed on your desktop browser
You will now be logged in to your Keeper vault