What's New With Keeper 
Try Keeper’s passphrase generator for a secure and user-friendly alternative to traditional passwords Passphrases are quickly emerging as a user-friendly alternative to traditional passwords. Earlier this
Privileged Access Manager
KeeperPAM enables organizations to achieve complete visibility, security, control and reporting across every user on every device. KeeperPAM is cloud-based, enables zero-trust and zero-knowledge security, and helps your organization meet compliance mandates by unifying four integral solutions into one unified platform and control plane – enterprise password management, secrets management, connection management, zero-trust network access and remote browser isolation.
Key Benefits and Features Include:
- Credential management, vaulting and access control
- Admin console with delegated administration, role-based access control policies and JIT provisioning
- Secrets management
- Dark web monitoring and real-time alerts across all endpoints
- Integration with any tech stack and identity application – e.g. Azure Entra ID, SSO
- Automated credential rotation
- One-click secure sessions to machines, databases and servers
- Remote browser isolation sessions
- Connections and tunneling using developer-native tools
- Integration with major CI/CD tools, vault SDKs and automation tools
- Session recording, playback, auditing and reporting across every user, device and session
- Reporting for risk management, real-time alerts and industry compliance (e.g., SOX)
Keeper Launches iOS Version 17.1.0
Keeper’s latest iOS update boasts a number of major updates including a robust passphrase generator, Dark Mode option and support for PAM records including Remote Browser, Directory, Database and Machine record types. The new passphrase functionality allows users to create and manage secure, memorable passphrases that comply with strict security policies while offering a number of customization options. Additionally, users can also choose between Light Mode, Dark Mode or Match System settings to personalize their display experience.
Offline mode receives updates for improved usability across devices
In instances where users need vault access in poor network conditions, the Work Offline feature allows users to log in to Keeper while their device is offline. Our latest update provides admins with even more flexible offline access settings. In addition to restricting offline access, the Offline Access policy has been expanded to include optional offline durations ranging from 1 to 30 days, with users allowed to set their own duration. It’s important to point out that in order to log in to their Keeper Vault while offline, users now have the ability to bypass any active two-factor authentication methods. Keeper users with personal accounts can also enable offline access for a set duration or turn it off entirely within their vault settings (also available on Android 17.1 and iOS 17.3).
Keeper expands support for two-factor security keys on iOS
Keeper is excited to announce its support for plug-in USB-C and Lightning security keys on iOS, including the Google Titan key. While Keeper has always provided Two-Factor Authentication (2FA) on iOS with compatible NFC hardware keys such as YubiKey, the latest release from Apple presented a demand for expanded hardware key support. This timely update further advances Keeper’s commitment to enhancing the security and flexibility of the end-user experience.
Keeper achieves FIPS 140-3 validation of its cryptographic module
Adding to the already extensive list of industry-leading certifications, Keeper is proud to announce its attainment of FIPS 140-3 validation. This milestone achievement highlights a number of key improvements, including stronger security requirements, more rigorous testing and certification, closer alignment with international standards and software security enhancements. These enhancements bolster defenses against sophisticated cyber threats, providing critical assurance for federal agencies and enterprises dedicated to protecting their most valuable information.
Import your logins from CyberArk
You can now import your usernames and passwords into your Keeper Vault from CyberArk Safes using Microsoft PowerShell and the CyberArk PACLI utility. CyberArk includes a Command-Line Interface, PACLI, that communicates directly with the CyberArk Vault. It operates on “files” stored in “safes” in the vault and can export CyberArk account data, which CyberArk clients, like PrivateArk and Password Vault Web Access (PVWA), store as files in safes. The PACLI is available for download from the CyberArk Marketplace website.
Run Keeper Automator on Google Cloud with Cloud Run
Keeper Automator can now be deployed on Google Cloud Platform (GCP) using Cloud Run, providing a serverless deployment option with automatic scaling and high availability. This integration is protected by Google Cloud Armor to ensure secure access limited to Keeper’s infrastructure IPs.
Keeper Connection Manager’s Guest Mode solution for secure internet access in educational environments
“Guest Mode” for Keeper Connection Manager provides controlled internet access for educational environments and is designed specifically for classrooms or exam settings where full internet access is restricted. It creates a custom homepage for students that contains only approved websites, with session monitoring capabilities and device-agnostic functionality. The system works through remote browser isolation, which protects against data exfiltration and malicious sites. Setup requires installing the Guest Mode extension, configuring default connections and modifying Docker settings.
Introducing Service Mode for Keeper Commander
Keeper’s new Service Mode module gives users a secure API server with minimal setup required. Execute all Commander CLI commands through a simple REST interface while maintaining robust security. Run it locally or connect with your Ngrok network for flexible deployment options.
Snapshot Tool for fast autofill fixes
From time to time, KeeperFill may not function as expected on certain websites. With Keeper’s new Snapshot Tool, users can easily capture the screen with our one-click solution, which securely packages page information and JSON code for our autofill improvement team. This innovative tool dramatically accelerates our ability to resolve autofill issues, including those with customer-owned websites or internal tools that were previously difficult for our engineers to access. After submitting your snapshot, you’ll be notified once your fix is implemented, ensuring seamless password management across all your digital environments.
Gain granular control over KeeperFill’s autofill behavior with advanced record settings
KeeperFill’s advanced record settings deliver precise control over autofill behavior, enabling users to tailor the autofill experience to their individual preferences and requirements. The Overwrite Field Content setting determines whether KeeperFill can populate form fields that already contain data, giving users control over whether existing information should be preserved or replaced. By disabling Autofill on Subsequent Pages, users can prevent KeeperFill from automatically completing fields across multi-step login processes, which effectively eliminates “false positive” autofill scenarios where credentials might be inserted in incorrect fields. This update ensures credentials appear exactly when and where users want them, providing a more reliable experience across websites with various authentication flows.
Access your favorite records from your smartwatch with Keeper’s redesigned WearOS app
Now available in the Google Play Store, the latest Keeper WearOS app update features a beautiful redesign that aligns with Google’s newest WearOS guidelines while maintaining Keeper’s signature interface reflected across all platforms. A streamlined home screen gives you instant access to your most-used records alongside a powerful two-factor authentication method for your Keeper Vault. Setting up two-factor authentication is effortless. Once configured, you’ll receive secure push verification requests directly on your smartwatch, allowing you to approve or deny login attempts with one tap.
Various improvements to the Commander CLI
Keeper Commander is constantly evolving. With our latest set of improvements, you can:
- KeeperPAM commands – configure and execute KeeperPAM features on Commander
- Import –format=cyberark – migrate Cyberark accounts to Keeper
- Service Management – propagate rotated passwords to Windows services and tasks
For a full list of Keeper Commander improvements, visit our Release Notes.
