Teleport Access Platform
Teleport Database Access
Implement identity-based access for SQL and NoSQL databases, prevent data exfiltration, meet compliance requirements, and have complete visibility into access and behavior.
Easily secure your databases using security best practices
Teleport enforces the use of auto-expiring x.509 certificates instead of static or shared credentials for engineers and service accounts to access databases.
Move away from admin accounts with just-in-time privilege escalation for administrative tasks. Access requests can be approved via Slack or other supported plugins.
Consolidate policy for role-based access to all database instances across all environments in one place. This increases security and reduces operational overhead.
Meet compliance requirements
Use the authorization mechanism best suited for your compliance requirements such as RBAC, per-session MFA, and dual authorization for privileged operations.
Avoid human errors using Teleport FIPS mode, which rejects configuration options unless they are compliant with FIPS 140-2, also known as the Federal Information Processing Standard.
Implement moderated sessions, enforce concurrent session restrictions, proactive session termination, and identity locking across your entire infrastructure footprint.
Database security that doesn't get in the way
A single login gives users instant secure access to all databases they need, across all environments, ending the hassle of juggling multiple VPNs and access points.
Teleport automatically routes client connections to databases behind firewalls, cloud VPCs, edge networks, even to mobile IoT platforms!
Teleport Database Access natively works the same way you do: on any laptop, any operating system, or in a browser.
Complete visibility into access and behavior
Understand database access events including what queries are being run and by who to increase security and maintain compliance.
With a real-time global catalog of all your databases in the cloud, on-prem, or edge, resource discovery, remote access, and maintenance are easy.
Teleport provides access to cloud databases such as Amazon RDS and Aurora, GCP Cloud SQL, and MongoDB Atlas as well as self-hosted databases.
Give an identity to all your microservices, CI/CD automation, and service accounts
Teleport Machine ID vastly simplifies certificate management for IT infrastructure and applications, just like Let’s Encrypt simplified TLS certificate management for websites.
Teleport Machine ID unifies access policies for people and machines, reducing operational overhead and increasing security and compliance.
Teleport Machine ID automatically implements least privilege for all machine users so you don’t have to worry about a compromised service taking over your infrastructure.
Enter command and press enter
Servers
Applications
Kubernetes
Databases
Desktop
hostname
ariel
titania
iapetus
stephano
hyperion
despina
hostname
Windows
Windows Prod
Windows Dev
Windows Bizops
Windows Sys
Windows Bkp
address
118.117.49.216
179.107.7.218
181.203.6.225
68.150.64.132
154.152.16.215
179.107.7.218
labels
arch: x86_64
env: dev
env: staging
env: prod
os: centos-8
os: rhel-8
action
Connect
Connect
Connect
Connect
Connect
Connect
Teleport Connect
Developer-friendly browser for cloud infrastructure
Traditional terminals are optimized for accessing localhost
. Teleport Connect offers enhanced user experience and identity-based access for engineers who work in the cloud
.
Cloud-optimized user experience
Teleport Connect makes you feel that all cloud resources like thousands of SSH servers, Kubernetes clusters, databases, code repositories and Grafana dashboards are running on your laptop.
Identity-based security
When you access infrastructure using a traditional terminal, you inherit the identity of the localhost account and use disjointed combinations of config files, passwords and keys to access remote resources. Teleport Connect leaves passwords behind, inherits your identity from SSO and uses it for everything.
Demo Video
Works with everything you have
Teleport Database Access is open source and relies on open standards such as X.509 certificates, HTTPS, SAML, OpenID connect and others. Deployed as a single binary, it seamlessly integrates with the rest of your stack.
Easy to get started
Teleport is easy to deploy and use. We believe that simplicity and good user experience are key to first-class security.
- The tsh client allows users to login to retrieve short-lived certificates.
- The teleport agent can be installed on any server or any Kubernetes cluster with a single command.
# on a client
$ tsh login --proxy=example.com
# on a server
$ apt install teleport
# in a Kubernetes cluster
$ helm install
Explore resources
Learn more about Teleport Database Access
FEATURES
Key feature listing and details
Nearly all Teleport features are available in the open source package.
DEMO
Five-minute demo of Teleport
This short video shows the basic capabilities of Teleport. Quickly access any computing resource anywhere.
DOCS
Teleport Quick Start Guide
Developer Documentation for using Teleport. This tutorial will guide you through the steps needed to install and run Teleport on Linux machines.
HOW IT WORKS
Deep dive into how Teleport works
Learn the fundamentals of how Teleport works. The following is a series of articles describing key Teleport concepts.