Enterprise Grade Password Management
Business & Enterprise class password management
The Greatest Risk of Breach can be Isolated to the Most Basic of Security Concepts, the “Password”
It is well-documented that passwords pose the greatest security risk to organizations today; Verizon reported over 81% of data breaches are due to weak employee passwords. Data breaches can be very costly and result in escalating response costs, lost productivity, regulatory fines and tarnished brand.
Enterprise Class Management
Keeper is the trusted leader in password management helping organizations manage, secure and enforce strong passwords across all employee logins, applications and sites. Employees can access Keeper natively on all mobile operating systems, desktops and browsers.
Password Reset Cost Savings
Password resets are a major burden on the productivity of IT departments. The #1 help desk call is for a forgotten password - Gartner estimates the annual industry cost for password resets is around $10B per year.
Secure More than Just Passwords
Passwords are one of many confidential assets that businesses need to secure. Keeper protects your sensitive files, documents, digital certificates, private keys, photos and videos in a highlysecure, encrypted digital vault. You can securely share files with colleagues and have confidence knowing that your information is backed up in a Cloud Security Vault.
- Encrypted vault for each employee
- Enhanced protection with two-factor authentication
- Secure file storage and sharing
- Password generator
- Cloud-based, OS and device independent
- Admin console with reporting, auditing and analytics
- Fast deployment with AD/LDAP provisioning
- Prevent password-related data breaches and cyberthreats
- Strengthens compliance
- Boost employee productivity
- Enforce password policies and procedures
- Reduce help desk costs
- Minimal training, fast time-to-security
- Improve employee security awareness and behavior
The XBAND Difference
- Provides a simple, intuitive and unified password manager and digital vault
- Has an impenetrable security architecture with rigorous 3rd party audits (SOC II Type 2 and HIPAA compliant)
- Delivers native applications across all major devices, operating systems and browsers
- Provides password policy visibility and enforcement
- Has a dedicated customer care team 24x7x365
The most advanced security perimeter is easily bypassed
by weak passwords. Employee password habits can only be
improved with insight into password usage and compliance.
Keeper solves this by providing comprehensive reporting,
auditing and notifications.
Every cybersecurity framework from NIST to ISO and PCI to
HIPAA requires access tracking, least-privilege controls and
audit logs. Keeper enables role-based controls and visibility into shared credentials. Access logs to Keeper vaults can be audited for compliance or forensics.
Drastically reduce help desk costs related to password issues. Forrester found that several large companies have allocated over $1 million annually for password-related support.
Save employees time, frustration and eliminate the need for them to reuse and remember passwords. Keeper will generate strong, random passwords and automatically fill them for users. The Keeper vault, with a responsive and intuitive UI, is available to employees from any device and location. Everything Keeper does is geared towards quick user adoption and security. Keeper is published in 21 languages for global use.
Microsoft Active Directory Synchronization
eeper® AD Bridge synchronizes to MicrosoftActive Directory or Open LDAP. This enables rapid user provisioning and automatically adds Nodes (organizational units), Users, Roles and Teams. Keeper enables role-based access control
and the ability to track roles as people move throughout the organization. This includes automatically locking vaults of employees that leave.
Automate Back-End Password Rotation
Keeper® Commander SDK provides IT admins and developers with command-line tools and Python source code to perform password management, password rotation and vault functionality. Eliminate hard-coded or plaintext back-end passwords. Connectors include Unix, Windows and AD logins; Oracle, Microsoft SQL, MySQL, Postgres and Dynamo databases; and AWS password and API access keys.
Keeper supports Two-Factor Authentication (2FA) including SMS, Keeper DNA® (smartwatch tap), TOTP (e.g. Google Authenticator and Authy), FIDO U2F (e.g. Yubikey), Duo and RSA SecurID. 2FA may be enforced through role-based controls.
Large organizations such as universities can provision Keeper vaults to thousands of users with a domain match on email addresses. With minimum administration, large-scale deployment can be accomplished using an existing email
channel or portal.
All encryption and decryption is done on the user’s device. PBKDF2 with 100,000 rounds is used for deriving a key from the user’s master password. Each record is encrypted using AES-256 with a different and unique key that is randomly
generated client-side. RSA encryption is used for secure record sharing between users and teams. Keeper’s infrastructure sync’s encrypted ciphertext between devices. Key pinning is enforced between client and server. All data in transit and at rest is always encrypted – it cannot be viewed by Keeper Security employees or any outside party.