Unify secure access to servers, Kubernetes clusters, applications, and databases
Teleport implements industry best security practices out of the box and brings all computing resources into compliance with security standards such as SOC2, PCI, and FedRAMP by providing all necessary access controls as well as audit and visibility into access and behavior across all computing environments
Use flexible access controls to implement compliance standards such as SOC2, PCI and FedRAMP. This includes MFA, short-lived certificates, RBAC, concurrent sessions control, and others. Teleport even adds compliance to legacy resources, such as internal dashboards.
Teleport supports multiple common access workflows out of the box, such as on-demand privilege escalation requests and dual session authorization. Access can be approved or denied via ChatOps, Slack, PagerDuty, or customize access approval via the API.
Teleport converts all actions across all computing resources and environments into JSON events. DevSecOps engineers can see interactive sessions, command executions, filesystem changes, database queries and network connections in real time.
Teleport Unified Access Plane manages X.509 certificate authorities to federate trust between computing resources across independent organizations. For example, a service provider and their customers can be connected by mapping users and roles between organizations.
Engineers can discover and instantly access any computing resource on any cloud, data center,bit or on the edge. There is no need to manage shared secrets or SSH keys, to wrestle with VPNs, or to jump between multiple access points
Teleport issues credentials for everything an engineer needs with a single sign-on (SSO) login with multi-factor authentication. It integrates with all enterprise and community SSO providers, including GitHub, Okta, Active Directory, Google, and others.
Teleport provides a dynamic view of all computing resources. Engineers see all servers, Kubernetes clusters, internal applications, databases, and even live sessions on any infrastructure across all environments anywhere in the world.
Teleport allows engineers to invite colleagues to collaborate in a shared session. Work together to troubleshoot a problem on a remote server, a Kubernetes cluster, or even on each others’ laptop. Record sessions for knowledge sharing purposes.
Teleport delivers industry security best practices out of the box with minimal configuration. Available as a cloud subscription or a self-hosted option, it removes the need to stitch together multiple complex legacy tools that are costly to maintain at scale
Teleport is a self-updating, single binary. Designed to be as maintenance-free as possible, it can be deployed as a UNIX daemon or as a Kubernetes service, but supports an agentless mode too. This is as lightweight as it gets in the DevOps world.
Teleport is built on open standards and is fully compatible with OpenSSH clients and servers, kubectl and other Kubernetes tools, configuration management utilities, all CI/CD solutions, database clients, and all identity providers.
Teleport is available as a cloud offering and as a self-hosted option. Both deployment methods can even be mixed and matched to find the perfect balance between company mandated security policies, ease of use and compliance needs.
Teleport Unified Access Plane is open source and it relies on open standards such as SSH, HTTPS, SAML, OpenID connect and others. Deployed as a single-binary drop-in replacement for OpenSSH, it seamlessly integrates with the rest of your stack
Teleport Unified Access Plane comes in three flavors. The commercial offerings have a minimum base price and are priced by usage - see details
Open sourceFreeDesigned for engineers who prefer to build their own software. Often used by individual developers or small teams. |
Cloud$20per resource/monthDesigned for engineering teams that require the peace of mind and simplicity of a hosted and managed service. |
Self-hosted$20per resource/monthDesigned for engineering teams that demand the flexibility to run software anywhere, on any infrastructure. |
|---|---|---|
| Unified Access Plane | ||
| Yes | Yes | Yes |
| Host anywhere | ||
| Yes | no | Yes |
| Single sign-on | ||
| partial Github Only | Yes | Yes |
| Role based access control | ||
| no | Yes | Yes |
| Fully managed | ||
| no | Yes | no |
| Premium support | ||
| no | Yes | Yes |
This site uses cookies to improve service. By using this site, you agree to our use of cookies. More info.