Privileged credentials are high-value targets for cybercriminals
Keeper Secrets Manager is a fully managed cloud-based, zero-knowledge platform for securing infrastructure secrets such as API keys, database passwords, access keys, certificates and any type of confidential data.
Watch Keeper Secrets Manager Brief Demo
Craig Lurey
CTO & Co-Founder
Presenter
Capabilities of Keeper Secrets Manager
Secure your environment and eliminate secrets sprawl by removing hard-coded credentials from your source code, config files and CI/CD systems.
- Securely store all credentials in the Keeper Vault
- Manage access rights and permissions with role-based access controls
- Integrate secrets into your infrastructure, containers and build systems
- Consolidate your secrets in a unified platform with auditability
- Automatically rotate credentials for service and admin accounts, user identities, REST-based API accounts, machines and user accounts across your infrastructure and multi-cloud environments
- Expand the capabilities of your Keeper Enterprise Password Manager (EPM) platform for enterprise-wide coverage
- Team members can manage an unlimited number of secrets, applications and environments
Secure and easy-to-use password rotation
Keeper allows organizations to automate changing passwords for privileged accounts including SSH keys, database passwords, Active Directory (AD) user accounts, AWS IAM accounts, Entra ID/Microsoft Entra ID (Azure AD) IAM accounts and Windows/Mac/Linux user accounts.
- Automate credential rotation on demand or scheduled
- Execute post-rotation actions like restarting services or containers
- Securely share records and IT configuration between users
- No VPN is required to rotate credentials in remote locations
- Rotate credentials whether they are on-premises or in the cloud
- Credential rotation designed for all users, not just IT teams
- Notifications for incidents such as unexpected credential rotation
- Access change history and audit logs through the Advanced Reporting and Alerts Module
Seamlessly integrates with your IT stack
Integrates with all popular CI/CD systems, SDKs for all major programming languages and supports any type of machine to protect your infrastructure.
Why choose Keeper over other secrets management solutions?
Fully managed, cloud-based and IT friendly
Keeper is a cloud secrets manager that is user-friendly. No hosted software, no complex VPC peering requirements and no new infrastructure to configure and manage. Keeper does NOT have access to your environment, your hardware or your instances.
Protects the most complex IT infrastructure
With millions of users and thousands of Enterprise customers, Keeper is available on any device, anywhere you are.
Zero-trust and zero-knowledge security
Keeper provides a superior zero-knowledge encryption model, designed to ensure that only YOU can access your vault. Secrets can only be decrypted on the designated devices which you manage. Learn more about Keeper's encryption model.
KSM base pricing at tier 1 covers 50,000 API calls per month and is billed annually. Higher tiers are available with additional API calls included.
Key features
- Vault Secrets are provisioned to devices and machines through an intuitive UI or CLI
- Each authorized user gets a private, encrypted vault for storing and managing their passwords, credentials, files and shared secrets
- Developer SDKs are provided in popular programming languages to access and update secrets with a few lines of code
- Plugins and integrations are provided in popular CI/CD platforms and build tools
- Centralized Admin Console provides role-based access controls, provisioning, reporting, auditing and user management
- Granular event reporting and alert capabilities with SIEM integration