How Keeper Complements Single Sign-On (SSO) Solutions
Employees use weak passwords and still forget them. Gartner found that up to 50% of helpdesk calls are password resets and another study showed each call costs $31. Single sign-on (SSO) was created to solve this problem, but many legacy (and even many newer) applications don’t support the SAML protocols. Many privileged access accounts don’t use passwords, so storing encryption keys, digital certificates and access keys are use-cases that SSO doesn’t address
Why It’s Critical
Applications and use-cases that don’t support SAML protocols fall through the cracks with an SSO deployment. Privileged access users such as IT admins and security professionals need one secure location to store and find all their (non-SSO) passwords, digital certificates, SSH keys, access keys, API keys and more. These other security assets need the same role-based access, fine-grained control of policies and ability to share and revoke as the SSO assets.
How Keeper Solves It
Keeper works with any application or use case that uses a password. Every employee is provided a secure, cloud-based digital vault that stores passwords and any other critical information such as encryption keys and digital certificates. Keeper will generate strong, random passwords and automatically fill them for users. This saves them time, frustration and eliminates the need for them to reuse and remember passwords. This means many SMBs can meet all their IAM needs in a very cost-effective way with Keeper alone. For larger organizations that require SSO Solutions, Keeper is a perfect complement for the legacy applications and other use cases that SSO misses. Keeper SSO Connect works with popular SSO IdP platforms such as Okta, AWS, OneLogin, Ping Identity, F5 BIG-IP APM, GSuite, JumpCloud and Microsoft ADFS / Azure AD to provide businesses the utmost in authentication flexibility.
Keeper is a Zero-Knowledge Password Management solution. This means all information that is stored in Keeper is only accessible by the end-user. All encryption and decryption is done on-the-fly in the client’s device, and the data is encrypted both in-transit (TLS) and at rest on Keeper’s Infrastructure (AES-256). The plaintext version of the data is never available to Keeper Security employees nor any outside party. Keeper is fanatical about protecting customer data, but in the unlikely event Keeper was hacked, the attackers could only possibly access the worthless ciphertext.
Improve Password Awareness and Behavior
Most businesses have limited visibility into the password practices of their employees which greatly increases cyber risk. Password hygiene cannot be improved without critical information regarding password usage and compliance. Keeper solves this by providing comprehensive password reporting, auditing, analytics and notifications.
Securely Share your Passwords
Each user has a set of public and private encryption keys used for encrypting the vault, sharing password records and messages between users. Shared information is encrypted with the recipient's public key. Keeper’s record sharing methodology is easy to use, secure and intuitive.
Keeper is intuitive and easy to deploy regardless of the size of your business. Keeper integrates with Active Directory and LDAP servers which streamlines provisioning and onboarding. Use Keeper SSO Connect to integrate into your existing SSO solution.
Keeper Scales With Your Business
Keeper was designed to scale for any sized business. Features such as role-based permissions, team sharing, departmental auditing and delegated administration support your business as it grows. Keeper Commander™ provides robust APIs to integrate into current and future systems.
- Keeper Enterprise Deployment Guide
- SSO Provisioning with Keeper Enterprise
- Active Directory Provisioning with Keeper Enterprise
- Why Biometrics Will Not Replace Passwords
- Enhancing and Extending Single Sign-On with Keeper SSO Connect™
- How Can I Store and Protect My Digital Certificates and Access Keys?
- All the Keys to the Kingdom: Use Keeper to Stop Trust-Based Attacks
- Learn More About Keeper for Your Business