By Stephanie Simone
Keeper Security, the leading zero-trust and zero-knowledge identity security and Privileged Access Management (PAM) platform, is offering KeeperDB, a new vault-embedded database access capability that enables secure, policy-controlled database interactions directly from the Keeper Vault.
According to the company, KeeperDB enables developers, database administrators, and security teams to work with sensitive data through a unified interface that simplifies workflows while maintaining strict access governance. KeeperDB will be officially launched at RSA Conference 2026.
KeeperDB broadens KeeperPAM with a vault-native interface that unifies database session management within the zero-trust and zero-knowledge platform. Access is governed by centralized policies and fully recorded for audit and compliance purposes.
By embedding database access directly into the Vault, KeeperDB helps reduce credential sprawl, standardize database access workflows, and strengthen audit readiness across cloud and on-prem environments, the company said.
“Database access has historically been one of the most used yet least-governed areas of enterprise security,” said Darren Guccione, CEO and co-founder of Keeper Security. “KeeperDB brings database management into the vault—allowing organizations to apply the same zero-trust controls, visibility and auditing they rely on for privileged access—without introducing new tools, credentials or attack paths.”
KeeperDB enables users to launch database sessions directly from a database record in the Keeper Vault, with the option to connect through either a Graphical User Interface (GUI) or Command-Line Interface (CLI). Initial support includes MySQL, PostgreSQL, Oracle, and Microsoft SQL Server.
Key benefits include:
- Eliminating credential exposure by ensuring database credentials are never revealed to users or stored on endpoints.
- Reducing data exfiltration risk through granular controls such as read-only access and governed data transfer policies.
- Strengthening audit readiness with full visual session recording of database activity,
- Standardizing and centralizing database access within the Keeper Vault, replacing fragmented tools and unmanaged workflows.
- Improving usability for technical teams by providing a modern, browser-based interface without sacrificing zero-trust controls.
For organizations that continue to rely on existing database clients, KeeperDB will be complemented by KeeperDB Proxy, which enables secure connections through Keeper while maintaining centralized policy enforcement, credential protection and session visibility. Additional details on availability will be provided alongside upcoming Keeper Gateway and Keeper Vault releases.
“Most database access today happens through disparate tools that sit outside security controls,” said Craig Lurey, CTO and co-founder of Keeper Security. “We built KeeperDB so teams can work the way they’re used to, but inside a zero-trust environment. It’s a simpler, safer way to manage database access that enhances productivity.”
For more information about this news, visit www.keepersecurity.com.