Info
Pleasant Password Server
D. User Access Basics
Web Browser Access
KeePass Desktop Client
Auto-Type
Client Configuration
Client Notes
Connecting with KeePass
Default the KeePass Server URL
Import Existing KeePass Database
KeePass Plugins
MSI Extraction Instructions
Offline Mode
Linux Client
Mac Client
Mobile Devices (Android, iOS and Windows Phone)
Password Safe Desktop Client
Setup Folder Permissions
Settings SMTP Email Configuration
Windows Login Integration for Self-Serve Reset
Sitemap
Info  >  Pleasant Password Server  >  D. User Access Basics  >  KeePass Desktop Client Page last modified Jul 22 2020, 13:55

KeePass Desktop Client

Users prefer Pleasant Password Server with a KeePass client!

Pleasant Password Server allows you to access passwords on your Windows desktop using our customised KeePass client.

Using KeePass for Pleasant is simple to setup and use and provides a wealth of features ready-to-go for you, for your team, and for your whole enterprise.

See Connecting with KeePass for a step by step guide using our online demo.

Have Questions?  Contact Us

Download

Download and install the KeePass for Password Server client from:

Client Download

Previous version downloads can be found by following: these instructions.

Software Requirements

KeePass for Pleasant Password Server will run on these machines:

  • Windows 10/8/7/Vista, or Windows Server 2019/2016/2012/2008
  • .NET 4.5+

Login

You can log into KeePass for Pleasant Password Server with any enabled user account, so log as the Server location is valid and the port is properly configured.

By default, Password Server runs on port 10001. This port will need to be open in the server firewall. To change your server port configuration, follow these instructions.

Pleasant Password Login

You will receive a warning about the certificate (a TLS / SSL policy error), unless a server compatible certificate has been installed on the client machine.

SSL Policy Error Message

Setup Considerations

Use Pleasant KeePass Client to setup passwords and groups of passwords for the whole company.

Folder Layout

Give some initial thought as to how you might want to structure your passwords and create groups that make sense for your company.

See some ideas in Structure folder permissions.

Also, think about the roles you might set up in Pleasant Password Server, as this may suggest a better way to organise passwords in the KeePass Client. The objective, of course, is to streamline as much as possible the assignment of group access to passwords by role.

Consider creating empty Unsorted password groups for each user, where they can store user-specific passwords until they are given access to a more appropriate location.

Enforcing KeePass Options

KeePass has many options, some of which you may want to provide some user roles, but not to others.

To enforce KeePass options for some users/roles, see the advanced Client Configuration (quick guide).

  • For example, Exporting entries: by default in new KeePass configurations is toggled off in the KeePass options menu. Administrative users will still wish to keep this enabled, but may wish to either allow your users to export their passwords, or to block this functionality altogether.

Setting Up Permissions

Once folders and passwords have been set, you can use the Pleasant Server Web Admin interface to configure roles (user groups) and grant permissions to access a subset of the password database.

To open the Password Server Website from the KeePass Client, you have three options:

  1. Click the Pleasant Password Server button in the toolbar (next to the search box).
  2. Click Go to Admin Website in the Password Server menu.

  3. Right-click a credential entry and click Open in Web Client.

Using KeePass

If you're not familiar with the KeePass application, you can find more details on the official KeePass Help website.

Note: this client is proprietary and not interchangeable with the standard KeePass software.

If you already have a spreadsheet or database listing your passwords, you can import these into CSV format.

Much of the feature set is identical, however some have been disabled for compatibility with a shared database such as:

  • USB function for KeePass Client
    Of little use to the KeePass Client user, since access to the password server is not granted to users.
  • Use of a key file for login
    Not practical in a client-server environment, since there is no secure way for the admin to store login keys.