Unix Passwd Plugin
Rotate Unix passwords with Commander
Keeper has launched a new Password Rotation feature with Keeper Secrets Manager. This new capability is recommended for all password rotation use cases. The Documentation is linked below:
This plugin allows rotating a local user's password using the Unix
passwd command.pip3 install pexpect
Rotation supports legacy and typed records. If using typed record, a 'Login' type field is required. Additional fields may be added depending on the rotation type as well. See the instructions below.
Populate the 'Login' field of the Keeper record with the login to use with this rotation.
The following values can customize rotation parameters. Add these options to a record as text fields and set the label to correspond to the parameter as shown in the table.
Name | Value | Comment |
cmdr:plugin | unixpasswd | (Optional) Tells Commander to use Unix password rotation. This should be either set to the record, or supplied to the rotation command |
cmdr:rules | # uppercase, # lowercase, # numeric, # special' (e.g. 4,6,3,8) | (Optional) Password generation rules |
Keeper Record setup for Unix passwd rotation
To rotate Unix passwords, use the
rotate command in Commander. Pass the command a record title or UID (or use --match with a regular expression to rotate several records at once)rotate "My Azure Credentials" --plugin unix
The plugin can be supplied to the command as shown here, or added to a record field (see options above).
Adding the plugin type to the record makes it possible to rotate several records at once with different plugins.
After rotation is completed, the new password will be stored in the
Password field of the recordLast modified 4mo ago