Teleport Access Plane
Teleport Database Access
Implement identity-based access to PostgreSQL, MongoDB, and MySQL, prevent data exfiltration, meet compliance requirements, and have complete visibility into access and behavior.Get Started
tsh login db-proxy
Single Sign On
Multi Factor Authentication
Security Key or Biometric Authenticator
Multi Factor Authentication
Secure your databases & meet compliance requirements
Implement industry best practices for database access with unified access plane: identity-based single sign-on, short-lived certificates, multi-factor authentication, RBAC and audit for all databases across all environments.
Teleport offers all required access controls to implement compliance standards such as SOC2, PCI, and FedRAMP. This includes end-to-end encryption, idle session controls, RBAC, and others.
Users can request elevated privileges to complete sensitive tasks. Their requests can be approved or denied via Slack, PagerDuty, or customized workflow via the programmable API.
Access that doesn't get in the way
A single sign-on gives developers access to all databases behind NAT across all environments. There is no need to juggle multiple authentication methods across cloud providers or for jumping between VPNs.
A single login gives engineers instant secure access to all databases they need, ending the hassle of juggling multiple VPNs or rotating shared passwords.
Unified Database Catalog
Teleport allows developers to list all databases they have access to, across all environments, with a single CLI command or via a live view in a browser.
Teleport automatically routes client connections to databases behind NAT, cloud VPCs, edge networks, even to mobile IoT platforms!
Complete visibility into access and behavior
Teleport Database Access keeps an audit log of database access events across all environments, making it easy to see what is happening and who is responsible.
Commands executed within sessions are to user identities and sent to a centralized destination of choice such as SIEM solutions.
Live Session View
Adminstrators can see all live client sessions across all dataabases, getting an instant picture of what is happening.
Works with everything you have
Teleport Database Access is open source and it relies on open standards such as X.509 certificates, HTTPS, SAML, OpenID connect and others. Deployed as a single-binary, it seamlessly integrates with the rest of your stack.
Easy to get started
Teleport is easy to deploy and use. We believe that simplicity and good user experience are key to first-class security.
Teleport consists of just two binaries.
tshclient allows users to login to retrieve short-lived certifcates.
teleportagent can be installed on any server or any Kubernetes cluster with a single command.
# on a client $ tsh login --proxy=example.com # on a server $ apt install teleport # in a Kubernetes cluster $ helm install
Our vision for the future
We are trying to solve the problem every company has - how to run and access software running anywhere in a secure and compliant manner. We call this environment-free computing.Learn more
Learn more about Teleport Database Access
Key feature listing and details
Nearly all Teleport features are available in the open source package.
Five minute demo of Teleport
This short video shows the basic capabilities of Teleport, Quickly access any computing resource anywhere.
Teleport Quick Start Guide
Developer Documentation for using Teleport. This tutorial will guide you through the steps needed to install and run Teleport on Linux machines.
HOW IT WORKS
Deep dive into how Teleport works
Learn the fundamentals of how Teleport works. The following is a series of articles describing key Teleport concepts.