Quickly access any computing resource anywhere

Teleport Access Plane

Teleport allows engineers and security professionals to unify access for SSH servers, Kubernetes clusters, web applications, and databases across all environments.

Get Started

Teleport 6.0 Brings Access to Databases behind NAT - Learn more

terminal

Loading...
Teleport Server Access

Teleport Server Access

For SSH servers behind NAT in multiple environments.

Learn more
Teleport Kubernetes Access

Teleport Kubernetes Access

For Kubernetes clusters behind NAT in multiple environments.

Learn more
Teleport Application Access

Teleport Application Access

For web applications behind NAT in multiple environments.

Learn more
Teleport Database Access

Teleport Database Access

For databases behind NAT in multiple environments.

Learn more

Access that doesn't get in the way

A single sign-on allows discovery and instant access to all layers of your tech stack behind NAT across clouds, data centers, or on the edge. There is no more juggling of shared secrets, SSH keys, or hopping between VPNs and multiple access points.

  • Enhanced Audit Logging Unified Resource Catalog

    There is no need to maintain inventories. Enjoy the live view of all servers, Kubernetes clusters, internal applications, databases, and live sessions across all environments.

  • Enhanced Audit Logging Session Recording

    Invite colleagues to collaborate in a shared session. Work together to troubleshoot a problem on a remote server or on each others’ laptops. Record sessions for knowledge-sharing purposes.

  • Enhanced Audit Logging Plug-ins and API

    Teleport provides ready to use auth for your internal web applications. Customize access workflows and react to security events using favorite programming languages.

  • resource catalog
  • session recording
  • # use your favorite programming language to customize access:
    def access_request_callback(req):
       is_admin    = req.roles.contains("admin")
       jira_ticket = jira.get_ticket(req.id)
       team_name   = req.attributes['team']
    
       # only allow users with an 'admin' role:
       if not is_admin:
           raise AccessDenied("must be an administrator")
    
       # contractors should provide a valid ticket    
       if team_name == "contractor" && not jira_ticket:
          raise AccessDenied("provide an active JIRA ticket")
                            

Easily implement security and compliance

Use Teleport to adopt industry best practices for access across all protocols and all environments with minimal configuration. Easily enforce MFA, RBAC, and SSO using identity-based short-lived certificates.

  • Enhanced Audit Logging Access Requests

    Approve or deny privilege escalation requests using flexible access workflows. Access can be approved or denied via ChatOps, Slack, PagerDuty, or customized via the programmable API. Learn more.

  • Enhanced Audit Logging Access Controls

    Use flexible access controls to implement compliance standards such as SOC2, PCI, and FedRAMP. Teleport can bring new and legacy resources into compliance.

  • Enhanced Audit Logging Session Controls

    Define and enforce policy to handle idle sessions, concurrent sessions, and to share and record interactive sessions across all protocols and environments.

  • access workflows
  • compliance
  • Audit logging

Complete visibility into access and behavior

Teleport records interactive sessions, filesystem changes, data transfers, command executions and other security events across all environments into a structured audit log, making it easy to see what’s happening and who is responsible.

  • Enhanced Audit Logging Unified Resource Catalog

    There is no need to maintain inventories. Enjoy the live view of all servers, Kubernetes clusters, internal applications, databases, and live sessions across all environments.

  • Enhanced Audit Logging Live Session View

    Teleport maintains a list of live sessions across all protocols and environments, providing a picture of what’s happening. Each session is recorded and tied to identities of humans and machines involved.

  • Enhanced Audit Logging Audit Log

    Teleport streams recorded sessions and security events to a centralized destination of choice such as SIEM solutions to help integrate access events into a single source of truth.

  • resource catalog
  • active sessions
  • access workflows

Works with everything you have

Teleport is open source and it relies on open standards such as X.509 certificates, HTTPS, SAML, OpenID connect and others. Deployed as a single-binary it seamlessly integrates with the rest of your stack.

Puppet
Puppet
Google Cloud
Google Cloud
AWS
Amazon
Linux
Linux
Azure
Azure
Chef
Chef
Okta
Okta
Free BSD
Ansible
One Login
One Login
Auth0
Auth0
Windows
Active Directory
Kubernetes
Kubernetes

Easy to get started

Teleport is easy to deploy and use. We believe that simplicity and good user experience are key to first-class security.

Teleport consists of just two binaries.

  1. The tsh client allows users to login to retrieve short-lived certificates.
  2. The teleport agent can be installed on any server or any Kubernetes cluster with a single command.
# on a client
$ tsh login --proxy=example.com

# on a server
$ apt install teleport

# in a Kubernetes cluster
$ helm install

Trusted by leading organizations

Our vision for the future

We are trying to solve the problem every company has - how to run and access software running anywhere in a secure and compliant manner. We call this environment-free computing.

Learn more

Try Teleport today

In the cloud, self-hosted, or open source

View developer docs

This site uses cookies to improve service. By using this site, you agree to our use of cookies. More info.