Teleport allows users to request elevated privileges in the middle of their command-line sessions. Requests can be approved or denied via ChatOps in Slack & PagerDuty or anywhere else via flexible Authorization Workflow API.
Teleport can help implement common compliance standards such as SOC 2 or FedRAMP for SSH and Kubernetes access.
Moderated Sessions allow two people to be part of a session: a moderator and an operator. In order to prevent mistakes or acts of malice, the moderator can observe the session in real time, participate in the session, and terminate the session at will.
Teleport integrates into a company's existing company directory and SSO system. Enterprise Teleport supports all major SSO providers, including Okta, Sailpoint, Active Directory, OneLogin, G Suite, Auth0 and many others.
Add an additional layer of protection to your infrastructure with IP-based restrictions. In addition to role-based access controls, Teleport can bind short-lived SSH certificates to a client IP and validate the IP on every connection to prevent pivot attacks.
Easily scale unified access to your entire infrastructure for your entire team. Teleport Proxy Peering reduces network congestion and latency for large-scale deployments of more than 15,000 nodes.
Managing static SSH keys can lead to increased operational overhead and may lead to security vulnerabilities. The industry best practice is to use certificate-based authentication for SSH and Kubernetes.
Restricting access and granting specific permissions through role-based access controls is the first step to securing your infrastructure. The next step is to log all activity across your infrastructure.
Privileged session recording, or SSH session recording, means recording the user’s actual screen during their SSH session for real-time or later playback.
Teleport’s “Trusted Clusters” capability allows organizations to partition their infrastructure and grant access to each other. Managed service providers and contract-based DevOps teams take advantage of Teleport’s Trusted Clusters to manage servers for their clients.
Teleport works by being a unified gateway for both Kubernetes and SSH sessions. This allows to synchronize SSO, role-based access controls and audit logging for both protocols.
Teleport integrates into an existing company identity management. This allows DevOps, developers and other end-users to access computing infrastructure via the same SSO policy.
Role-Based Access Control (RBAC) is the practice of managing privileged access to infrastructure through a central directory of users, roles, and teams. Authorization is granted to groups (or roles) within a company directory.
Teleport provides access to SSH servers and Kubernetes clusters anywhere in the world, behind NAT. From restaurants to autonomous vehicles, no VPN required.
Extend identity-based access to IT Infrastructure and applications. Teleport Machine ID is the easiest way to issue, renew and manage X.509 and SSH certificates for your services.
Traditional terminals are optimized for accessing
localhost. Teleport Connect offers enhanced user experience and identity-based access for engineers who work in the
Easily implement Multi-Factor Authentication across your organization without relying on device management systems. Teleport MFA is designed for distributed teams and comes with a self-enrollment MFA portal.
Teleport removes passwords, private keys and other secrets that can be shared, leaked, or stolen from your infrastructure and replaces them with more secure biometrics. Improve productivity and security with Passwordless Access.
How Teleport Works
Teleport is a single binary which enables secure access to SSH nodes, Kubernetes clusters, web apps, PostgreSQL and MySQL databases behind NAT. Teleport is trivial to setup as a Linux daemon or in a Kubernetes pod. Learn more about how Teleport works.