iOS - iPhone & iPad
A comprehensive guide for Keeper for Apple iOS (iPhone, iPad) devices.
Your Keeper Vault
With Keeper, your passwords, logins and other personal information are saved in a private, digital vault. It is here where you can view and edit all of your website login credentials and details, as well as store important files and photos.
Account Creation & Login
Signing up for Keeper's iOS mobile app is easy. Simply visit the App Store on your device and install Keeper Password Manager. Watch the video below to learn more about account creation and login.
New Users
To create your Keeper account, first enter your email address then you will be asked to create and confirm a Master Password which will be the only password you have to remember. We recommend that you choose a strong Master Password that is only used for Keeper -- don't forget your Master Password!
To finalize your account and proceed to your vault, you will be asked to enter the security verification code that was sent to your email.
Enterprise users who log in with SSO do not require selection of a Master Password.
Existing Users
If you are an existing user, tap Login and enter your email address. If you are attempting to log in on an unrecognized device, a device approval must take place before you can proceed to your Keeper Vault. Users have three methods of approval to choose from:
Email Verification
Keeper Push
Two-Factor Method
Keeper Push is Keeper’s proprietary notification-based device approval system that sends a push notification to an existing, recognized device.
If you select Send Keeper Push, a notification (push) will appear in your Keeper vault at an approved device or browser.
On the device, login and tap Yes to approve the new device. You must be actively logged into a an approved device to receive the notification.
Once your device has been approved, you will be prompted for 2FA (if enabled), then enter your Master Password to proceed to your vault.
Enterprise SSO Login
If you are an Enterprise customer using SSO Login, you can enter your email address and tap Next to login through SSO. Alternatively, you can tap Use Enterprise SSO Login and enter the enterprise domain provided by your Keeper administrator and tap Connect.
Next, you will be directed to the Safari browser for web-based SSO Enterprise authentication. After you have successfully entered your SSO credentials and two-factor authentication code (if enabled), you will be returned to Keeper to complete the login. You may be required to approve your device using Keeper Push or administrator approval after the SSO login process has been completed.
For more information about Enterprise SSO login, click here.
Importing Passwords
When you first login to your vault, Keeper will prompt you to import passwords from your computer and/or web browsers (if you're not near a desktop computer, you can perform the import at a later time).
After tapping I'm at my computer Keeper will ask you to navigate to keepersecurity.com/setup on your desktop computer to begin the process of importing your passwords.
Click here for detailed instructions on importing passwords from web browsers and other password managers to your Keeper Web Vault.
Creating New Records
Your passwords, logins, credit card numbers, bank accounts and other personal information are saved in your private digital vault (as "Records") and are encrypted on your device using 256-bit AES.
Tap + and Create New Record.
Choose a Record Type from the dropdown menu ("Login" is the default type)
Enter a Title for the record
Enter the Email or Username
Enter the Password or tap the dice icon to generate one (more on that here)
Enter the Website Address (if one wasn't already entered for you)
Enter Notes, add Files & Photos, a Two-Factor Code and Custom Fields
Tap Save to finish
Depending on the Record Type you selected, the default record fields will vary.
Organization
With Keeper you can organize your records into folders and subfolders. To create a folder, tap + and Create New Folder, then enter a name for the folder. To add records to the folder, Tap + and Add Existing Record or you can tap Create New Record to add a new record to the folder.
To create subfolder, within the new folder, tap + and Create New Folder.
Once created, a regular folder cannot be converted to a shared folder. To learn how to create a shared folder, click here.
Moving & Shortcuts
Keeper makes it easy to move records around within your vault. Individual or multiple records and folders can be moved and shortcuts can be created. Shortcuts, like alias files, can exist in two or more places and when edited, change together.
To begin, tap the pencil icon and select the folder(s) and/or record(s) and then select an option listed below.
Create a Shortcut
Move to a New Folder
Move to an Existing Folder
Change the record(s) "type"
Delete
Favorites
Adding a record to your vault Favorites is an easy way to locate your most frequently visited sites. To add a record to your Favorites, tap More > Add to Favorites.
Sharing
Securely create, share and manage records and folders with other Keeper users such as friends, family, friends and colleagues.
Share a Record
Open the record you would like to share and tap Share > Share with User. Enter the user's email address, then use the toggle switches to select permissions (Can Edit, Can Share, Make Owner) then tap Save.
If this is the first time you are sharing with this person, you will first need to establish a "sharing relationship". The user will receive an email prompting them to login to Keeper and either accept or deny the share request. Once you establish a sharing relationship, the user will appear in the email dropdown list.
Keeper "One-Time Share" provides time-limited secure sharing of a record to anyone even if they don't have a Keeper account. To learn more about One-Time Share, click here.
Share a Folder
Shared folders allow you to share multiple records at once and new records can be added to the folder as needed.
Create a Shared Folder & Share with Others:
Tap + and Create Shared Folder.
Enter a name for the folder and tap Save.
The new folder will now appear in your records list. To share the folder with other users, select the folder, then tap the three dots to the right of the folder name to open a menu of options.
Select Manage Users & Records and enter the email addresses of the user(s) you would like to share the folder with.
Assign Permissions & Add Records:
You can assign permissions for each user by tapping on their email address under the "Users" tab.
To add records to the folder, switch to the "Records" tab.
Select the record(s) you would like to add to the shared folder. Once a record has been added, select it from the list to assign permissions (Can Edit, Can Share). Tap Save to finish.
Identity & Payments
Identity & Payments is the place for you to store your personal contact/address information and credit card numbers safely.
Payment cards can also be stored in your vault as records using the "Payment Card" record type which allows them to be shared with other users. See our Record Types Guide for more information.
Key Features
Password Generator
Long, random passwords that are created for each login help protect your information and reduce your exposure to data breaches. Keeper generates and securely stores strong, random passwords for all of your sites and apps by tapping the dice icon.
This will NOT automatically change the website's existing login password. You must still visit the corresponding website's "Change Password" form to update the old password to match the new, stronger password. Click here to learn how to easily change your password with KeeperFill.
Password Zoom
To generate a enlarged view of a record's password, tap the eye icon then long press on your password. Any numbers and symbols can be easily identified by blue and red color-coding.
Send a File to Keeper
When you open a file from your email for example, you seamlessly launch into the Keeper App to create a new record or add the file to an existing record.
Upon opening the file, tap the share icon. From the share dialogue, select Keeper in the list of apps.
Once Keeper opens, select either Add to New Record or Add to Existing Record. If you are creating a new record, the record type will automatically default to a "File Attachment" (Tap the dropdown icon to change the record type). Enter the record details and tap Save.
Scan a Document (iOS 13+)
Keeper's Scan a Document feature uses optical recognitiion (OCR) to scan a picture, document, card or credentials written on paper then transcribes them in plain text with your record's "Notes" field. This makes it easier to use the text, remember notes and save time.
While viewing a record in edit mode, tap Scan a Document to open the camera function of your device. Once the document has been scanned, tap Save. You will have the option to either add the scanned document to the record as a file attachment or save it in plain text to the "Notes" field.
Security Audit
Security Audit gives your passwords an overall security score and lets you clearly see what passwords are weak from a password strength visual indicator (red being the weakest, green being the strongest).
If a record is indicated as having a high risk password, Keeper recommends changing the password at the affected site immediately and updating the corresponding record in your Keeper Vault.
Record History
Users also have the ability to conveniently restore previous versions of a record. While viewing a record, tap More > Record History.
To restore a record back to a previous state, tap on the version you would like to restore. Review the record information by tapping the "Record Information" dropdown then tap Restore.
A few notes on Record History:
Restoring a record does not place it back into the original folder structure.
Record History is only available as part of the paid consumer and business plans.
Deleted records can be reviewed and restored by visiting "Deleted Items" in the left navigation menu.
KeeperFill
Keeper is fully integrated into the login experience of every website and app using the Passwords button that appears above your device's keyboard.
As of iOS version 16.2, Keeper is also able to store your two-factor authentication (2FA) codes automatically by serving as your time-based one-time password (TOTP) generator.
Setup:
Before you can utilize these autofill features, you will first need to perform a few simple setup steps:
Open your device's Settings app.
Scroll down and select Passwords.
Tap Password Options and ensure "AutoFill Passwords" is toggled on.
Select Keeper below both "Allow filling from" and "Set up Verification Codes using"
Follow the prompt and uncheck all other password managers (including keychain).
To learn how to set up 2FA for websites and apps, click here.
Once these steps are complete, you will see a Passwords button appear above the keyboard when logging into an app or website. By default, tapping Passwords, will prompt you to log in to Keeper and automatically launch KeeperFill. Please note, for security purposes, you must authenticate to Keeper each time you autofill a record on your mobile device.
If you subscribe to iCloud+, you may need to tap the key icon to the right of "Hide My Email" to open KeeperFill.
KeeperFill will present a matching record from your vault. Alternatively, you can search for a record or create a new record. If there is a record match, tap Fill to autofill your login credentials.
Two-factor codes will be automatically copied to your clipboard when possible. To copy it manually, tap the copy icon next to the code and when prompted paste the code into the field provided.
Passkeys on iOS
Passkeys on iOS devices, a highly anticipated feature for enhanced security and convenience, is now available on Apple devices running iOS 17+. This update marks a significant enhancement in our mobile applications capabilities, offering users an even more secure and streamlined experience. To learn more about Passkeys with Keeper, click HERE.
Passkeys work on websites and applications that have been specifically built to support them. Keeper maintains a passkey directory, which can be found HERE.
Creating a passkey for a website or app is a simple process on your iOS device.
Tapping Create Passkey on a site or app will trigger Keeper to intercept the request. Keeper then prompts you to create a passkey for your associated login and saves it to your vault.
Returning to sites or apps where you have a stored passkey you will either be prompted to sign in with passkey or will be able to select Sign in with Passkey. Keeper does the rest!
Passkey functionality is not enabled by default on iOS devices. To enable Passkeys with Keeper follow the steps below.
Activating Passkeys on iOS
Launch the Settings app on your iOS device and select Passwords.
Next, choose Password Options.
Toggle ON AutoFill Passwords and Passkeys.
Then tap Keeper so a blue tick appears. If you have used Autofill before, iCloud Passwords & Keychain may have a blue tick as well. For optimal accuracy when using Keeper for Passkeys, make sure to tap iCloud Passwords & Keychain to remove it as an option.
Secure Add-Ons
Secure File Storage
Keeper offers Secure File Storage to protect your confidential files, photos and videos. Securely upload and store files such as passport photos, medical cards, drivers licenses, tax and loan documents, videos and any other private file to your Keeper Vault.
You can either add an attachment to any existing record or create a new record using the "File Attachment" record type. Tap Add Files or Photos to upload your file.
To learn more about Secure File Storage, click here.
BreachWatch
BreachWatch is a powerful, secure add-on feature that monitors the internet and dark web for breached accounts matching records stored within your Keeper Vault. BreachWatch alerts you so that you can take immediate action to protect yourself against hackers. Once activated, BreachWatch continuously monitors for compromised credentials and notifies you if any of your records are at risk.
To start your BreachWatch scan, tap BreachWatch in the lower menu of your screen tap then Let's Begin > Scan.
BreachWatch will then scan your records and report any risks associated with them. Resolving the risk requires you to change the password at the affected website. Once you have done that, be sure to update the corresponding record in your Keeper vault with the same password.
If you tap Ignore, then that record will be skipped on future scans until the password is reset. You may also do nothing (deferring a response) and leave the risky password unchanged and thus still at risk.
To learn more about BreachWatch, click here.
Settings
The Settings screen allows you to customize the personalization and security features of the application.
Please note that some security settings may be enforced by your Keeper Administrator if you are part of a Keeper Business account.
Appearance (Theme)
Login Options (Two-Factor Authentication, Biometric Login)
Keyboard Widget
Clipboard Expiration
KeeperFill
Auto-Logout
Default Browser
Security (Enable Self-Destruct, Hide Passwords)
Sort Record Types (Edit Order,
Change Email
Account Recovery
Reset Master Password
Fast Login Mode
Image Quality
Account Recovery
If you forget your Master Password, this feature will help you quickly regain access.
Set up Account Recovery:
Tap Account Recovery from the Settings menu.
Confirm your Master Password and tap Generate New Phrase.
Once your recovery phrase has been generated, be sure to store it in a safe place. For added convenience, you will be given the option to copy or download it.
Check the confirmation box to confirm that you've stored your Recovery Phrase.
Tap Set Recovery Phrase.
Reset Master Password
To change your Master Password:
Tap Reset Master Password.
Enter your current master password.
If you have Touch ID or Face ID enabled, you won't be required to enter your current master password.
Create and confirm a new master password.
If you are unable to login with your current master password, and you've set a recovery phrase, go to Forgotten Master Password & Account Recovery to recover your account.
Two-Factor Authentication
Two-Factor authentication (2FA) provides an extra layer of security when logging into your Keeper Vault or another site or application by requiring a secondary passcode upon logging in.
Enabling two-factor authentication is especially advised for highly valuable or sensitive accounts (e.g. banking, medical and social media accounts).
Keeper offers two ways to take advantage of 2FA:
To log into your Keeper Vault.
To log into any site or application from your Keeper Vault by embedding a TOTP (time-based one-time password) into your records.
2FA for Keeper Vault
To enable 2FA for your Keeper Vault, tap Settings > Two-Factor Authentication then select your method from the list of options.
Text Message Setup:
(1) Select a Region (US+1 by default), enter your 10 digit phone number including your area code and tap Save.
(2) Select how long you want the two-factor method to be valid for.
You will be prompted for 2FA every time you login to your vault unless you select an alternative duration. Business customers may be required to enter the code every login as determined by their Keeper Administrator.
(3) Enter the code that was sent to the phone number you provided. Codes will only last for a minute; if you need another code sent, tap Send a new code.
(4) Backup codes will be shown next. If you are unable to receive two-factor codes via the phone number you entered, you can enter one of the backup codes listed instead. Save these codes somewhere safe, and then tap OK to finish.
If you are not receiving SMS messages from Keeper, please use the TOTP method.
Authenticator App (TOTP) Setup:
(1) Once you select "Authenticator App" tap Save.
(2) Select how long you want the code to be valid and tap Back.
You will be prompted for 2FA every time you login to your vault unless you select an alternative code duration. Business customers may be required to enter the code every login as determined by their Keeper Administrator.
(3) You will be asked to scan the QR Code or enter your secret key in your authenticator or TOTP app. Copy the code displayed in Keeper. Open Google or Microsoft Authenticator (or whichever app you use for 2FA) and add a TOTP record, pasting in the copied Secret Key.
(4) Return to Keeper and copy or enter the TOTP code provided.
(5) Backup codes will be shown next. If you are ever unable to receive Two-Factor codes, you can enter one of the codes listed instead. Tap OK to finish.
In order for Azure MFA (using the Microsoft Authenticator app) to be utilized as a TOTP, the Azure Administrator needs to allow the verification method "Verification code from mobile app or hardware token" when setting up MFA in Azure.
KeeperDNA Setup:
Apple Watch devices can be used for Two-Factor Authentication. Make sure your device is paired with your phone and that the Apple Watch device has downloaded the corresponding KeeperDNA app.
In Keeper, navigate to Settings > Two-Factor Authentication > Smartwatch (KeeperDNA) then follow the prompts to verify your identity.
If you don't get a notification, you may not have notifications enabled for Keeper. To turn on notifications, on your phone navigate to Settings > Notifications > Keeper and toggle "Allow Notifications" on.
The Keeper DNA app on your Apple Watch can also generate Two-Factor Authentication codes that can be used for logging in.
2FA for Websites & Apps
Keeper can fill 2FA codes on any website or application that supports TOTP. Some apps will allow an automatic import of the setup code into Keeper or you can simply copy and paste a secret key to generate the code, while some will provide a QR code to scan (requires a second device). Continue reading to review these three setup methods in more detail.
Automatically Import a Setup Code
For apps that allow an automatic import of the setup code into Keeper, follow the app or website setup steps prompting you to link a compatible authentication app to the account.
Be sure to first set Keeper as your default password manager in your device's Settings. Learn how here.
(1) Keeper will automatically open and you can login as normal.
(2) Select whether to add the two-factor code to a new or existing record (if you choose existing record, select if from your records list or locate it using the search bar).
(3) You will see the code has been added to the record. Tap Save and return to the record to copy the code to your clipboard.
(4) Return to the app or site to paste the code to complete the setup.
Copy a Setup Key
(1) For apps that provide a setup key to paste into Keeper, begin by copying the key to your device’s clipboard.
(2) Switch to the Keeper app and login as normal. Open the corresponding record and tap Edit > Add Two-Factor Code.
(3) Select Enter Setup Key and paste the key into the field provided and tap OK.
(4) You will see the code has been added to the record. Tap Save and then tap the code to copy it to your clipboard.
(5) Return to the app or site to paste the code to complete the setup.
Watch the video below to learn more about two-factor authentication setup using automatic import of a code or a secret key.
QR Code
(1) Open the Keeper record on your mobile device and tap Edit > Add Two-Factor Code > Scan QR Code (this will open your device's camera).
(2) On a secondary device (e.g. tablet, computer), navigate to the corresponding record's 2FA set up screen to retrieve the site's QR code.
(3) Scan the QR code with your mobile device. You will see the code has been added to the record.
(4) Tap Save and then tap the code to copy it to your clipboard.
(5) Return to the site to paste the code to complete the setup.
For more information about Keeper's two-factor code feature, click here.
Siri Shortcuts
Keeper is integrated with Siri Shortcuts and supports the following voice command variations:
Begin each phrase with "Hey Siri..."
Make a Keeper Record
Make a Keeper record
Make a Keeper password
Keeper record
New Keeper record
Make a record in Keeper
Create a Keeper record
Create a Keeper password
Create a record in Keeper
Add Keeper record
Add a Keeper password
Add a record in Keeper
Display Keeper Verification Codes
Display Keeper verification codes
Show me Keeper verification codes
Show me my Keeper verification codes
Display Keeper authentication codes
Launch Keeper verification codes
Launch Keeper authentication codes
Open Keeper verification codes
Open Keeper TOTP codes
Open Keeper TOTP
Launch Keeper TOTP codes
Launch Keeper TOTP
Display Keeper TOTP codes
Display Keeper TOTP
Show me my Keeper TOTP codes
Show me my Keeper TOTP
Display Keeper Shared Records
Display Keeper shared records
Display my Keeper shared records
Launch Keeper shared records
Launch my Keeper shared records
Show me my Keeper shared records
Open Keeper shared records
Open my Keeper shared records
You must be logged into Keeper to use the shortcuts (otherwise Siri will prompt you to login). Currently, Siri Shortcuts are only available in English.
To view the shortcuts currently available for Keeper, from the Account screen tap shortcuts.
Biometric Login
Both Touch and Face ID must be set up in your device's settings before they can be used to login into Keeper. Once that is complete, from Keeper's Settings screen, toggle "Biometric Login" on.
You can now log into Keeper with your fingerprint using Touch ID or with face recognition using Face ID. Tap on the Touch ID or Face ID symbol to initiate biometric login.
Biometric login such as Touch and Face ID on iOS are a time saving & convenience feature and are not a replacement for two-factor authentication.
Upon your first login, Keeper will ask you if you want to use Face ID to login. If you decline this feature, you can re-enable it under your device's Settings > Keeper and toggle Face ID on.
Keeper Widget
The Keeper widget provides an account security overview that is displayed on your device's home screen. To add Keeper's iOS widget to your home screen, follow the steps below:
(1) In Keeper, tap Settings then toggle "Enable Keeper Widget" on.
(2) From your device's home screen, press and hold on any empty area until the apps icons move.
(3) Tap the "+" add icon from the upper left corner of your screen.
(4) Select or search for the Keeper widget.
(5) Choose a size by swiping through the three options and tap Add Widget.
(5) Tap Done.
FIDO2 WebAuthn Security Keys
Keeper provides two-factor authentication (2FA) on iOS with compatible hardware keys such as the YubiKey 5 NFC, YubiKey 5C NFC and YubiKey 5Ci.
Support for NFC devices is available with Keeper iOS version 16.4.0 and newer.
| Support Physical Keys | NFC Support | Plug-in Support |
|---|---|---|
YubiKey 5 NFC | ✅ | ❌ |
YubiKey 5C NFC | ✅ | ❌ |
YubiKey 5Ci | ❌ | ✅ - Lightning ONLY |
Keeper is committed to enhancing the security and flexibility of your experience. Support for more plug-in style physical keys will come with a future release.
Setup and Configuration
(1) Before you add a security key, a two-factor authentication method must be in place as a backup.
(2) Navigate to Settings > Two-Factor Authentication, tap the field under "Security Keys".
(3) Tap Add New and enter a name for the key.
(4) Select a duration and tap Register.
(5) Choose your security key activation method: NFC or Insert and Touch, depending on the type of key.
(5) Tap the key on the back of your device or touch the sensor on your YubiKey.
(6) Your security key has been registered, tap OK to finish.
A user can register up to 5 security keys. Any one of those keys will unlock the account. To delete a security key, swipe left on the registered key in the "Security Key" page and tap Delete.
Prompt Frequency & Offline Access
The FIDO2 WebAuthn device will be required for login based on the configuration of the first 2FA method. For example:
If the first 2FA method is set to "Prompt Every Login", then the Yubikey will be required on every login, and offline login will be disabled.
If the first 2FA method is set to "Every 30 days", then the Yubikey will be required every 30 days, and offline login will be disabled.
If the first 2FA method is set to "Remember Forever", then the Yubikey will only be required one time on each new device. Offline vault login will be enabled.
Account Switching
Keeper supports the use of multiple vaults on the same device allowing you to switch between a personal account and business account, for example.
Users can switch between accounts or add an account from the login screen. While logged out, tap the email field then select an account email address or tap Add Account to register a new account. Any accounts added will be stored in the drop down menu at the Vault Login screen for future use.
The multi-account switching feature is only available as part of the paid Personal and Business Plans.
2FA Prompting Behavior & Offline Access
When 2FA is activated on an account, it protects the user on all devices and all platforms because 2FA is protecting access to the backend cloud system.
By definition, two-factor authentication protects access to the cloud and access to online accounts. Therefore, it requires an online connection to be prompted for 2FA. 2FA is triggered when a request is made from the client device to the server. Logging into a new device, syncing new information on an existing device or performing any other cloud-based features.
By default, the native Keeper app for iOS, Android, Mac and Windows allow users to login quickly with their master password (offline mode) to access their vault. After entering their master password or using Biometric Login, the user decrypts the data locally, then the app sends a sync request to the server at which time the user may be prompted for their 2FA code. Depending on the speed of the Internet connection, the 2FA prompt may be received a couple seconds after logging into the native application because the local decryption of data occurs much faster.
Offline authentication and vault access is permitted by all consumer customers. Enterprise customers may restrict the use of offline access for their employees.
2FA Token Retention & Timing
When activating 2FA on your iOS device for the first time, the user selects how often they want to be prompted. Users can be prompted for 2FA every login, once every 30 days or only one time per device. It's important to understand that 2FA is always enabled on the Keeper servers. After a successful login on a device, a "token" is generated from the 2FA code and stored locally on the device as long as it's deemed valid by the server. This is why you are still able to login to the same device over and over without being re-prompted. By default, consumer customers will be prompted only one time per device. Enterprise customers may enforce users to be prompted every time for a new code.
Currently, the 2FA token retention timing on iOS will default to "only one time" on a device if the 2FA was initially set up on the Web Vault or Desktop App. To change this behavior, turn 2FA off and then re-activate 2FA on the iOS device.
Import & Export
To import and export data from your Keeper Vault, visit the Keeper Web Vault or download Keeper Desktop for your computer.
Keeper Web Vault: https://keepersecurity.com/vault
Keeper's Downloads Page: https://keepersecurity.com/download
Uninstall & Account Reset
Uninstall Keeper:
Uninstalling Keeper will delete the data from Keeper on the local device. Data stored in Keeper's Cloud Security Vault is NOT erased.
On your device, long press on the Keeper App icon.
Tap Remove App > Delete App > Delete. (For older iOS systems, long press on the Keeper App icon until all the apps start to shake. Tap the "X" that appears in the upper left corner of the Keeper App icon. To confirm, tap Delete).
Account Reset:
Resetting Keeper will erase all records from all Keeper accounts stored locally on your device. Data stored on Keeper's Cloud Security Vault is NOT erased.
Open your device's Settings app and select Keeper.
Toggle "Reset Keeper" on.
Helpful Links
Customer Support Form: https://keepersecurity.com/support.html
Business Customers: business.support@keepersecurity.com
System Status: https://statuspage.keeper.io
Last updated