Android Phone & Tablet

Comprehensive guide for Keeper on Android phones and tablets.

Your Keeper Vault

With Keeper, your passwords, logins and other personal information are saved in a private, digital vault. It is here where you can view and edit all of your website login credentials and details, as well as store important files and photos.

Account Creation & Login

Signing up for Keeper's Android mobile app is easy. Simply visit the Google Play Store on your device and install the Keeper Password Manager where you will be able to either create a new account or login to an existing account.

New Users

If you are signing up for Keeper as a new user click Create Account at the login page. You will first enter your email address then you will be asked to create a Master Password. This will be the only password you have to remember -- don't forget your Master Password! We recommend that you choose a strong Master Password that is only used for Keeper. To finalize your account and proceed to your vault, you will be asked to enter the verification code that was sent to your email.

Enterprise customers who login with SSO do not require selection of a Master Password.

Existing Users

If you are an existing user, tap Login and enter your email address. Next, you may encounter a "device approval" request. If you are attempting to log in on an unrecognized device or browser, a device approval must take place before you can proceed to your Keeper vault. Users have three methods of approval to choose from: Email Verification, Keeper Push or Two-Factor Authentication.

Keeper Push is Keeper’s proprietary notification-based device approval system that sends a push notification to an existing, recognized device.

If you select Send Keeper Push, a notification (push) will be appear in your Keeper vault at an approved device or browser.

Select Yes to approve the new device.

You must be actively logged into a different, recognized/approved device to receive the notification.

Once your device has been approved, you will be prompted for 2FA (if enabled), then you will enter your Master Password to proceed to your vault.

Enterprise SSO Login

If you are an Enterprise customer using SSO Login, tap Enterprise SSO Loginand enter the Enterprise Domain provided by your Keeper administrator; once entered tap Connect. Keeper will then ask permission to share information with you, to accept tap Continue.

Next, you will be directed to a browser for web-based SSO Enterprise authentication. After you have successfully entered your credentials and two-factor authentication code (if enabled) you will be logged into your Keeper vault.

Importing Passwords

When you first log in to your vault, Keeper will walk you though the process of creating your first password record and highlight several features of the app.

If you would like to import passwords from your computer and/or web browsers, go to your desktop computer's web browser and open "keepersecurity.com/setup" to begin the process of importing your passwords (if you're not near a desktop computer, you can perform the import at a later time).

Click here for detailed instructions on importing passwords from web browsers and other password managers to your Web Vault.

Creating New Records

In addition to importing passwords, users can also create new password records manually. Your passwords, logins, credit card numbers, bank accounts and other personal information are saved in your private digital Vault (as "Records") and are encrypted on your device using 256-bit AES. To begin, simply tap the "+" Create Button.

  • Name Your Record

  • Enter Your Email or Username

  • Enter Your Password or Tap the Dice to Generate One (more on that here)

  • Enter the Website Address

  • Enter Additional Notes, Custom Fields and Securely Add Files & Photos

  • Click Save to Finish

Organization

Keeper allows you to organize your records by folders and subfolders. To create a folder, tap the "+" Create Button and select Folder. To create a subfolder, navigate to the parent folder, and again, tap the "+" Create Button and select Folder.

Please note, once created, regular folders cannot be converted to a shared folder. To learn how to create a shared folder, click here.

Moving & Shortcuts

Keeper makes it easy to adjust the organization of your vault to your preferred liking. Individual or multiple records and folders can be moved and shortcuts can be created.

Shortcuts like alias files, can exist in two or more places and when edited, change together.

To move or shortcut a folder, record or multiples thereof, long press on the record or folder and select any additional folder(s) or record(s) you would like to move or shortcut. Next, select the action you would like to perform by tapping the icons located at the bottom of your screen.

You can also move or shortcut a single record while viewing the record details and tapping the overflow menu.

Favorites

Adding a record to your Favorites is an easy way to locate your most frequently visiting sites within the Keeper app. To add a record to your Favorites, tap on the record then tap the star icon.

Watch Favorites

Watch Favorites are easily accessible records that are displayed on your Apple Watch. To add a record to your Watch Favorites, tap on the the record then tap the overflow menu (three vertical dots) and tap Watch Favorite.

Sharing

Securely create, share and manage records and folders with existing Keeper users such as family, friends and colleagues.

Share a Record

Open the Keeper record and tap the Share icon, then tap Share with Users.

Enter the user's email address, then use the toggle switches to select their permissions (Can Edit, Can Share and Make Owner). Tap the check mark icon to finish.

Share a Folder

Shared Folders allow you to share any number of records across your personal folders with one or more Keeper users.

Create a Shared Folder & Add Records:

  1. Tap on the Shared Filter near the top of your screen, then tap the Sharing icon.

  2. Give the Shared Folder a name, then tap Save.

  3. Select the record(s) you would like to add to the folder by tapping the + button and make your selection from the options listed.

Share with Other Users:

  1. Select the users you would like to share the folder with by tapping the Users tab then the + button.

  2. Enter the emails addresses of the user(s) then tap the check mark icon to save.

Default Folder Permissions can be accessed from the Overflow Menu of either tab (Records, Users).

Permission

Permission Level

Can Manage Users

Users can add or remove users

Can Manage Record

Users can add or remove records

Can Edit Record

The record can be edited by users of the folder

Can Share Record

The record can be shared with others by users of the folder

Identity & Payments

Identity & Payments, located in the left navigation menu, is the place for you to store your personal address and payment information safely.

Personal Info is where you can securely store multiple addresses and phone numbers. Payment Cards is where you can store credit card numbers, expiration dates, card verification values (CVV) and billing addresses.

Under the "Personal Info" tab, tap the pencil and address icons to enter phone number and address details. Under the "Payment Cards" tab, tap the payment card icon to enter payment card details and billing addresses.

Key Features

Password Generator

Long, random passwords that are created for each login help protect your information and reduce your exposure to data breaches. Keeper generates and securely stores strong, random passwords for all of your sites and apps with the click of the dice.

Edit Record View

This will NOT automatically change the website's existing login password. You must still visit the corresponding website's "Change Password" form to update the old password to match the new, stronger password. Click here to learn how to easily change your password with KeeperFill.

Auto-Launch

Keeper's Auto-Launch feature makes it easy to login to websites without having to leave the app. While viewing a record simply tap the record's URL. Keeper will then ask what browser you would like to open the website with.

To learn more about Keeper's In-App Browser, click here.

Security Audit

Security Audit located in the left navigation menu, gives your passwords an overall security score and lets you clearly see what passwords are weak from a password strength visual indicator (red being the weakest, green being the strongest).

You can edit a record's password by clicking on the record from the provided list (you will still need to update the password at the record's website to match the new password in the corresponding Keeper record).

Record History

Users also have the ability to conveniently restore previous versions of a record. While viewing a record, tap the overflow menu (three vertical dots) then tapRecord History.

To restore a record back to a previous state, tap on the version number you would like to restore. Review the record information then tap Restore.

Please note, restoring a folder does not return it to its original folder structure, instead it becomes a standalone folder.

The Record History feature is only available as part of the paid consumer and Business plans.

Deleted records can be reviewed and restored by visiting theDeleted Recordssection in the left navigation menu.

KeeperFill

Use KeeperFill to quickly autofill passwords into web browsers such as Chrome, Firefox and all other 3rd Party Applications.

Before you can utilize this feature, you need to first perform a few setup steps:

Navigate to Settings.

Toggle KeeperFill "on".

You will then prompted to enable various settings on your device including:

  • Selecting Keeper in the Autofill service.

  • Enabling KeeperFill in the Installed services.

  • Enabling KeeperFill in the Available virtual keyboard section.

  • Enabling Keeper to Display over other apps.

Autofill in Apps & Web Browsers

KeeperFill presents somewhat differently depending on what Android version your device is running. Reference the instructions below that are dedicated specifically to the Android version you are currently using.

Android Version 8.0 and Newer:

On Android Oreo (8.0) and newer, our KeeperFill feature seamlessly autofills your logins and passwords into apps and web browsers.

From the app or website login screen, tap Sign in to Keeper and enter your Keeper Master Password.

If Keeper identifies a record match, the site's login credentials will appear in the KeeperFill dropdown. Fill them by tapping YES to confirm the autofill action.

Once you've signed into your Keeper account, you will not be prompted to login again to utilize KeeperFill until your session times out.

Android Version 7.0 and Below:

The legacy version of KeeperFill is available for Android Nougat (7.0) and below, as a custom, virtual keyboard.

Google Chrome Browser on Android 8.0 also utilizes the legacy version of KeeperFill.

Tap the login field of the app or site, then tap the Keeper icon that will appear on the right side of you screen to activate the KeeperFill keyboard.

Tap Login to login to Keeper using your Master Password then enable the KeeperFill keyboard (if prompted).

If Keeper identifies a record match, your login credentials will appear in the KeeperFill keyboard. Tap the fill button then tap Yes to confirm the autofill action.

Once you've signed into your Keeper account, you will not be prompted to log in again to utilize KeeperFill until your session times out.

Keeper's In-App Browser

Users also have the option to auto-launch a record and autofill their login credentials directly from the Keeper App using Keeper's in-app browser.

(1) Tap once on a record's URL to auto-launch the site and select Open with Keeper.

Once you are at the site's login page, your credentials will appear at the top of your screen and be autofilled into the login form.

If your credentials are not automatically filled, tap each login field and the corresponding credential from the top of your screen to individually fill the form and sign-in.

Secure Add-Ons

Secure File Storage

Keeper offers Secure File Storage to protect your confidential files, photos and videos. Securely upload and store files such as passport photos, medical cards, drivers licenses, tax and loan documents, videos and any other private file to your Keeper vault.

From within your vault, you can either create a new record or add a file or photo to an existing login record. While creating or editing a record, tap the paperclip icon to either choose an existing file or take a photo or video and upload it to your vault.

Once the file has been uploaded, be sure to tap the checkmark icon to save the record.

Tap once on the file or photo to view it.

To learn more about Secure File Storage, click here.

BreachWatch

BreachWatch is a powerful, secure add-on feature that monitors the internet and dark web for breached accounts matching records stored within your Keeper vault. BreachWatch alerts you so that you can take immediate action to protect yourself against hackers. Once activated, BreachWatch continuously monitors for compromised credentials and notifies you if any of your records are at risk.

To start your BreachWatch scan, tap BreachWatch > Let's Begin

BreachWatch will then scan your records and report any risks associated with them. Tapping the individual records listed, will allow you view the steps needed to resolve each risk.

Resolving the risk requires you to change the password at the affected website. Once you have done that, be sure to update the corresponding record in your Keeper vault with the same password.

If you click Ignore, then that record will be skipped on future scans until the password is reset. You may also do nothing (deferring a response) and leave the risky password unchanged and thus still at risk.

To learn more about BreachWatch, click here.

Settings

The Settings menu is where you can customize the personalization and security features of the Keeper application. Settings can be accessed from the left navigation menu.

Please note, that some security settings may be enforced by your Keeper Administrator if you are part of a Business or Enterprise account.

  • Choose a Theme

  • Enable Two-Factor Authentication

  • Enable Biometric Login

  • Enable KeeperFill

  • Set Auto-Logout Duration

  • Enable Clipboard Expiration

  • Enable Self-Destruct

  • Enable Fast Login Mode

  • Hide Passwords

  • Prevent Screenshots

  • Change your Email Address

  • Reset your Security Question

  • Reset your Master Password

  • Adjust PBKDF2 Iterations (Advanced Settings)

Two-Factor Authentication

Two-Factor Authentication (2FA) provides an extra layer of security when logging into your Keeper Vault or another site or application by requiring a secondary passcode upon logging in.

Enabling Two-Factor Authentication is advised for highly valuable or sensitive accounts (e.g. banking, medical and social media accounts).

Keeper provides two ways to take advantage of 2FA:

  • To log into your Keeper Vault.

  • To login into any site or application from your Keeper Vault by embedding a Two-Factor code into your records.

2FA for Keeper Vault

To enable 2FA for your Keeper Vault, from the Settings Menu, and Locate Two-Factor Authentication from the menu and toggle the switch "ON" next to Two-Factor Authentication. Then select your preferred 2FA method from the dropdown menu.

Text Message Setup:

(1) From the Keeper Two-Factor Authentication method dropdown menu select Text Message.

(2) Select a country code (US+1 by default) and enter your 10 digit phone number (including your area code) then tap SAVE.

(3) Select how long you want the code to be valid.

You will be prompted for 2FA every time you login to your Vault unless you select an alternative code duration. Business customers may be required to enter the code every login as determined by their Keeper Administrator.

(4) To verify that you trust this number and device, enter the Keeper code that was sent to the phone number you provided.

Codes will only last for a minute; if you need another code sent, tapSend a new code

(5) Backup codes will be shown next. If you are unable to receive Two-Factor codes via the phone number you entered, you can enter one of the codes listed instead. Tap I HAVE WRITTEN THESE CODES DOWN to finish.

If you are not receiving SMS messages from Keeper, please use the TOTP method instead or contact [email protected] to troubleshoot the issue.

Google and Microsoft Authenticator (TOTP) Setup:

(1) From the Keeper Two-Factor Authentication method dropdown menu select Google and Microsoft Authenticator (TOTP) then tap SAVE.

(3) Select how long you want the code to be valid.

You will be prompted for 2FA every time you login to your Vault unless you select an alternative code duration. Business customers may be required to enter the code every login as determined by their Keeper Administrator.

(3) When prompted, Scan the QR code with your Google Authenticator or a TOTP app and enter the verification code that appears. Tap SAVE.

(4) A list of Backup Codes will appear next. If you are ever unable to receive Two-Factor codes, you can enter a backup code instead. Tap I HAVE WRITTEN THESE CODES DOWN to finish.

TOTP 2FA Set-up

Depending on how you answered the question "How long you want the code to be valid" will determine when and where you will need your Two-Factor code. Save code on this device forever will do just that but, if you sign in somewhere else, let's say, another phone, it will ask for your code again. Once the code is inputed, it will save the code on that device forever. The same will be true of one that is requested every 30 days or every login.

KeeperDNA Setup:

KeeperDNA is another method of supporting Two-Factor Authentication using Google Wear devices. Essentially, a code will be sent to the user's wearable such as a watch (which is paired with the Keeper Application on a mobile device) and verifies the users identity with the tap of a button.

To begin, make sure your device is paired with your wearable and that you have downloaded the corresponding Keeper app. Once installed it will appear in your wearable's app section.

Keeper App on a Google Wear Device

(1) From the Keeper Two-Factor Authentication method dropdown menu select Smartwatch (KeeperDNA).

(2) Select how long you want the code to be valid.

(3) A KeeperDNA graphic will then appear while it waits for your verification. On your wearable tap Verify when prompted. Your wearable is now enabled for Two-factor Authentication.

In the case that verification fails or doesn't register, you will have the option to enter a code generated by your wearable instead. To do so, open the Keeper app on your wearable, under Watch Favorites, tap KeeperDNA. You will see a timed code appear which you will then enter on your device to complete the 2FA set-up process.

2FA for Websites & Apps

Keeper integrates seamlessly with all Two-Factor Authentication (2FA) methods including TOTP, SMS, Touch/Face ID and U2F security keys. Use Keeper to store your sites' Two-Factor Authentication codes and KeeperFill will autofill them at your next login where 2FA is required (Android 8.0 and newer)

(1) While creating or editing a record tap the paperclip icon.

(2) Select Two-Factor Code then tap Allow when asked if Keeper can access your device's camera.

Using your device's camera function, hover over the site's QR code. The Two-Factor Code will automatically be generated in the record. Tap the checkmark icon to finish.

Tap the Two-Factor Code field to copy it to the device clipboard and paste it into apps and sites as needed.

Account Switching & Vault Selection

Keeper supports the use of multiple vaults on the same device allowing you to switch between a personal account and business account, for example.

To add another account to your device, visit the Account tab located in the left navigation menu and tap the dropdown icon next to your email address. Select Add Account to register another account. All accounts that have been added will now appear here and in the Keeper login screen.

Users can also switch and add accounts from the Keeper login screen.

2FA Prompting Behavior & Offline Access

When 2FA is activated on an account, it protects the user on all devices and all platforms because 2FA is protecting access to the backend cloud system.

By definition, two-factor authentication protects access to the cloud and it protects access to online accounts. It therefore requires an online connection to be prompted for 2FA. 2FA is triggered when a request is made from the client device to the server. For example when logging into a new device, syncing new information on an existing device or performing any other cloud-based features.

By default, the native Keeper app for iOS, Android, Mac and Windows allow users to login quickly with their master password (offline mode) to access their vault. After typing in the master password or using biometric login, the user decrypts the data locally, then the app sends a sync request to the server at which time the user may be prompted for their 2FA code. Depending on the speed of the Internet connection, the 2FA prompt may be received a couple seconds after logging into the native application because the local decryption of data occurs much faster.

Offline authentication and vault access is permitted by all consumer customers. Enterprise customers may restrict the use of offline access for their employees.

2FA Token Retention & Timing

When activating 2FA on your Android device for the first time, the user selects how often they want to be prompted. Users can be prompted for 2FA every login, once every 30 days, or only one time per device. It's important to understand that 2FA is always enabled on the Keeper servers. After a successful login on a device, a "token" is generated from the 2FA code and stored locally on the device as long as it's deemed valid by the server. This is why you are still able to login to the same device over and over without being re-prompted. By default, consumer customers will be prompted only one time per device. Enterprise customers may enforce users to be prompted every time for a new code.

Currently, the 2FA token retention timing on Android will default to "only one time" on a device if the 2FA was initially set up on the Web Vault or Desktop App. To change this behavior, please turn 2FA off and then re-activate 2FA on the iOS device.

Import & Export

To import and export data from your Keeper vault, visit the Keeper Web Vault or download Keeper Desktop for your computer.

Keeper Web Vault: https://keepersecurity.com/vault

All Downloads: https://keepersecurity.com/download

Uninstall & Account Reset

The instructions below apply to the latest OS. Third party operating system instructions may differ.

Uninstall Keeper

Uninstall will only delete Keeper and its data on the local device. Data stored in Keeper's Cloud Security Vault will NOT be erased.

  1. Open your device's Settings menu

  2. Tap Apps or Application Manager (depending on device).

  3. Navigate to the Keeper App

  4. Tap Uninstall

  5. Confirm by tapping OK when prompted

Account Reset:

Resetting Keeper will erase all records from all Keeper accounts stored locally on your device. Data stored on Keeper's Cloud Security Vault is NOT erased.

  1. Open your device's Settings menu

  2. Tap Apps or Application Manager (depending on device)

  3. Navigate to the Keeper App > Storage

  4. Tap Clear data and Clear cache

  5. Confirm by tapping OK when prompted

Helpful Links

Customer Support Form: https://keepersecurity.com/support.html

Email Support: [email protected]

Business Customers: [email protected]

System Status: https://statuspage.keeper.io