How to Enhance and Extend Your SSO Solution With Keeper SSO Connect®*

*Included with Keeper Enterprise

What is Keeper SSO Connect?

What is Keeper SSO Connect?

Keeper SSO Connect is a patented technology which allows customers to quickly and securely integrate zero-knowledge password management and encryption with your existing Single Sign-On (SSO) solution using standard SAML 2.0 (Security Assertion Markup Language) authentication. SSO Connect is deployed with thousands of organizations across all industries.

With Keeper SSO Connect (included with Keeper Enterprise), organizations leverage Keeper’s zero-knowledge security architecture to securely and seamlessly authenticate users into their Keeper Vault and dynamically provision and deprovision user vaults as employees join or leave an organization. Keeper supports SCIM provisioning and integrates with all popular SSO Identity Providers (IdP) including:

  • Microsoft Entra ID,
    Formerly Azure
  • Okta
  • Google Workspace
  • Centrify
  • OneLogin
  • Shibboleth
  • Duo
  • Ping Identity
  • JumpCloud
  • HENNGE One
  • Active Directory Federation Services (ADFS)

Benefits of Keeper SSO Connect

Integrating Keeper with your SSO and System for Cross-Domain Identity Management (SCIM) system offers several benefits:

Strengthened Security

The combination of Keeper’s robust password management and secure digital vault platform with your IdP’s capabilities enhances security and helps organizations protect critical resources, prevent unauthorized access and mitigate the risk of password-related breaches.

Centralized Access Management

Keeper SSO Connect enables centralized access management, allowing IT teams to monitor and control user access to authorized resources. This approach simplifies access management, improves visibility and ensures compliance with security policies.

Streamlined User Experience

With Keeper SSO Connect, users enjoy seamless access to only the websites and applications necessary to perform their job duties while eliminating the need for them to remember multiple passwords – providing a convenient sign on experience.

Enhanced User Provisioning

The integration leverages SCIM to automate provisioning and deprovisioning, ensuring users have the appropriate least privilege access based on their roles and responsibilities. By streamlining onboarding and offboarding, administrative overhead is reduced and efficiency is improved.

How Keeper SSO Connect Provides Secure Authentication

How Keeper SSO Connect Provides Secure Authentication

Hundreds of thousands of cloud and native applications do not support SSO. What if your employees need to access internal apps, Security as a Service (SECaaS) applications and infrastructure that doesn't support SAML? How can they securely share passwords or secrets? Employees must keep track of those passwords on their own, which leaves your company vulnerable to data breaches.

Keeper SSO Connect provides secure authentication and end-to-end encryption across all of your websites, systems and applications without the need to remember a master password. Keeper is compatible with Conditional Access Policies (CAP) enforced by the identity provider, including any existing MFA solution. If your identity provider supports passwordless login, users can choose between any available passwordless options including:

  • Biometric authentication
  • FIDO2 Security Keys
  • Passkeys
  • One-time passwords (OTP)
  • Magic links
  • Rules engines based on state of systems

Our KeeperFill® browser extension lets your users automatically log into systems and applications without having to think about credentials. Using passwordless authentication with your identity provider, users may never need another password at all. Keeper revolutionizes the security landscape with its unparalleled blend of security and user-friendly design. It guarantees utmost protection and effortless usability, preserving absolute data confidentiality through advanced elliptic curve encryption and robust key management techniques.

How Keeper Compares to Other SSO Identity Providers

If your organization already uses an SSO solution or is thinking of implementing one, pairing it with Keeper will fill the gaps in function and security.

Use Case

Keeper

SSO Identity Providers

Password-Based Apps
Password-Based Apps
No
Shared Passwords & Secrets
Shared Passwords & Secrets
No
Encrypted Data Storage
Encrypted Data Storage
No
Social Media Sites
Social Media Sites
No
Native Apps
Native Apps
No
Offline Access
Offline Access
No
SSH Keys & SSL Certs
SSH Keys & SSL Certs
No
API Credentials
API Credentials
No
Encrypted Private Files
Encrypted Private Files
No
Zero-Knowledge Encryption
Zero-Knowledge Encryption
No
SAML-Based Apps
SAML-Based AppsVia KeeperSSO Connect®
SAML-Based Apps
View Full Comparison

Works With All Identity Providers

Keeper Can Be Deployed Across Any Environment

Keeper Can Be Deployed Across Any Environment

  • Provision users for either SSO or Master Password authentication
  • Enable offline vault access when SSO is not available
  • Automatically provision vaults, teams and roles through SCIM
  • Supports Just-In-Time provisioning
  • Supports cloud, on-prem and hybrid environments
  • Installs and deploys in just minutes

Keeper SSO Connect® Cloud

Keeper SSO Connect® Cloud leverages Keeper’s zero-knowledge security architecture to authenticate users into their Keeper Vault and dynamically provision user vaults.

Keeper SSO Connect<sup>®</sup> Cloud

Cloud

For more detailed technical documentation, view the Keeper SSO Connect® Cloud Guide.

Keeper SSO Connect® On-Prem

Keeper SSO Connect® provides seamless integration with your SAML 2.0 identity provider in a Zero-Knowledge security architecture.

Keeper SSO Connect<sup>®</sup> On-Prem

On-Premise

For more detailed technical documentation, view the Keeper SSO Connect® On-Prem Guide.

English (US) Call Us