- Available for:
Teleport Enterprise is a commercial product built around Teleport's open source core.
Like Teleport Enterprise Cloud, Teleport Enterprise includes advanced features such as support for SAML– and OIDC-based single sign-on providers as well as Just-in-Time Access Requests through integrations with Slack, PagerDuty, and more. Unlike Teleport Enterprise Cloud, Teleport Enterprise is self hosted, giving you control over the Teleport Auth Service and Proxy Service for large organizations with particular security needs and compliance requirements.
You can compare editions in How to Choose a Teleport Edition.
Teleport Enterprise Cloud offers most of the functionality available in self-hosted deployments of Teleport Enterprise. If you are interested in trying Teleport for the first time, we recommend signing up for a free trial of Teleport Team, which manages the Teleport Auth Service and Proxy Service for you. You can then upgrade your account to Teleport Enterprise Cloud.
Once you have determined that your organization would benefit most from Teleport Enterprise, contact sales to discuss the best way to proceed with your self-hosted Teleport Enterprise deployment.
For documentation on deploying a self-hosted Teleport Enterprise cluster on your platform, read our self-hosted production deployment guides.
The table below gives a quick overview of the benefits of Teleport Enterprise.
|Teleport Enterprise Feature
|Single Sign-On (SSO)
|Allows Teleport to integrate with existing enterprise identity systems. Examples include Active Directory, GitHub, Google Apps and numerous identity middleware solutions like Auth0, Okta, and so on. Teleport supports SAML and OAuth/OpenID Connect protocols to interact with them.
|Request elevated access to roles or specific resources.
|Access controls to meet the requirements in a FedRAMP System Security Plan (SSP). This includes a FIPS 140-2 friendly build of Teleport Enterprise as well as a variety of improvements to aid in complying with security controls even in FedRAMP High environments.
|Hardware Security Module support
|The Teleport Auth Service can use your organization's HSM to generate TLS credentials, ensuring a highly reliable and secure public key infrastructure.
|AWS KMS support
|Teleport Enterprise allows you to configure the Teleport Auth Service to use AWS KMS-based private keys for establishing trust with users and Teleport services.
|Google Cloud KMS support
|Teleport Enterprise allows you to configure the Teleport Auth Service to use Google Cloud KMS-based private keys for establishing trust with users and Teleport services.
|Allow or require moderators to be present in SSH or Kubernetes sessions.
|Support SLA with guaranteed response times.
Commercial Teleport subscriptions require a valid license. See Enterprise License File for how to manage the file in your Teleport Enterprise deployment.