Keeper SSO Connect is a SAML 2.0 application that leverages Keeper’s zero-knowledge security architecture to securely and seamlessly authenticate users into their Keeper Vault and dynamically provision users to the platform. Keeper SSO Connect works with popular SSO IdP platforms such as Google G Suite, Microsoft ADFS, Microsoft Azure, F5 BIG-IP APM, Okta, Centrify, OneLogin, Ping Identity, and CAS to provide businesses the utmost in authentication flexibility.

Keeper SSO Connect System Architecture Diagram

Keeper SSO Connect is a software application that is installed on the enterprise’s on-premise, private, or cloud servers. All user encryption keys are generated dynamically by Keeper SSO Connect, encrypted, and stored locally on the SSO Connect server, providing the customer with full control over the keys that are used to encrypt and decrypt the digital vaults.

The Keeper SSO Connect service application can be installed on a private on-premise or cloud-based server. Windows and Linux-based operating systems are supported.

On Microsoft Windows environments, the Keeper SSO Connect application runs as a standard Windows service. This ensures the service won't exit when anyone logs off the PC and will automatically start up upon reboot. On all platforms SSO Connect can be configured for High Availability (HA). In order to ensure the service is always active, Keeper SSO connect can be installed on multiple servers that are located behind a load balancer.