Keeper Security, Inc.
Password Manager & Digit Vault 14.4
Certified: April 30, 2019
Solution Summary
This section describes the ways in which Keeper Password Manager can integrate with RSA SecurID Access. Use this information to determine which use case and integration type your deployment will employ.
Use Case
When integrated, Keeper Password Manager users must authenticate with RSA SecurID Access to sign in. Keeper Password Manager can integrate using Authentication Agent, SSO Agent or relying party integration types.
Integration Types
SSO Agent integrations use SAML 2.0 or HFED technologies to direct users’ web browsers to RSA SecurID Access for authentication. SSO Agents also provide Single Sign-On using the RSA Application Portal.
Relying Party integrations use SAML 2.0 to direct users’ web browsers to RSA SecurID Access for authentication. Primary authentication is configurable, so relying party can be a good choice for adding additional authentication (only) to existing deployments.
Authentication Agent integrations use an embedded RSA agent to provide RSA SecurID and Authenticate Tokencode authentication methods within the partner’s application. Authentication agents are simple to configure and support the highest rate of authentications.
Supported Features
This section shows all of the supported features by integration type and by RSA SecurID Access component. Use this information to determine which integration type and which RSA SecurID Access component your deployment will use.
Keeper Password Manager integration with RSA Cloud Authentication Service
| RSA SecurID | - | - | ✔ | ✔ |
| LDAP Password | - | - | ✔ | ✔ |
| Authenticate Approve | - | - | ✔ | ✔ |
| Authenticate Tokencode | - | - | ✔ | ✔ |
| Device Biometrics | - | - | ✔ | ✔ |
| SMS Tokencode | - | - | ✔ | ✔ |
| Voice Tokencode | - | - | ✔ | ✔ |
| FIDO Token | n/a | n/a | ✔ | ✔ |
Keeper Password Manager integration with RSA Authentication Manager
| RSA SecurID | - | - | ✔ |
| On-Demand Authentication | - | - | ✔ |
| Risk-Based Authentication | n/a | - | - |
| ✔ | Supported |
| - | Not supported |
| n/a | Not applicable |
| n/t | Not yet tested or documented, but may be possible. |
Configuration Summary
This section links to instructions for integrating Keeper Password Manager with RSA SecurID Access using all of the integration types.
This document is not intended to suggest optimum installations or configurations. assumes that the reader has both working knowledge of all products involved, and the ability to perform the tasks outlined in this section. Administrators should have access to the product documentation for all products in order to install the required components. All RSA SecurID Access and Keeper Password Manager components must be installed and working prior to the integration.
Integration Configuration
Authentication Agent
Relying Party
SSO Agent - SAML
Certification Details
Date of testing: April 19th, 2019
RSA Cloud Authentication Service
RSA Authentication Manager 8.3, Virtual Appliance
Keeper Security Password Manager & Digital Vault 14.4.4
Keeper Security SSO Connect 14.02
Known Issues
No known issues.
