Integrating Keeper SIEM push to


Keeper supports event streaming into deployments. External logging is real-time, and new events will appear almost immediately. Setup instructions are below. uses their HTTPS listener method.
The connection to requires two fields:
  • Host (e.g.
  • Token
Please refer to your documentation for generating a security token.
Important: Ensure that the endpoint is using a valid signed SSL certificate that has a domain matching the subject name in the certificate. The certificate must also include the full certificate chain from your CA. Keeper's systems will refuse to connect to a self-signed certificate. Also, ensure that your server allows traffic from Keeper servers. See Firewall Configuration page.
Last modified 8mo ago