Teleport is optimized for ease of use, making it easy to do the right thing by default. It is purpose-built for cloud-native applications and infrastructure, with native support for Kubernetes.
Certificate Auth for SSH and K8s
Managing static SSH keys can lead to increased operational overhead and may lead to security vulnerabilities.
The industry best practice is to use certificate-based authentication for SSH and Kubernetes.
Learn more about certificate-based SSH authentication.
Single Sign-On (SSO)
Teleport integrates into an existing company identity management. This allows DevOps, developers and
other end-users to access computing infrastructure via the same SSO policy.
Learn more about SSO for SSH and Kubernetes.
Kubernetes Access Management
Teleport works by being a unified gateway for both Kubernetes and SSH sessions. This allows to synchronize
SSO, role-based access controls and audit logging for both protocols.
Learn more about managing access to Kubernetes.
Restricting access and granting specific permissions through role-based access controls is the first step to securing your infrastructure. The next step is to log all activity across your infrastructure.
Learn more about audit logging for SSH and Kubernetes.
IoT and Edge Connectivity
Teleport provides access to SSH servers and Kubernetes clusters anywhere in the world, behind NAT.
From restaurants to autonomous vehicles, no VPN required. Learn more about SSH and Kubernetes edge access
Privileged session recording, or SSH session recording, means recording the user’s actual screen during their SSH session for real-time or later playback.
Learn more about session recording for SSH and kubectl.
Teleport allows users to request elevated privileges in the middle of their command-line sessions. Privilege elevation requests can be approved or denied via ChatOps in Slack & PagerDuty or anywhere else via flexible Authorization Workflow API.
Teleport’s “Trusted Clusters” capability allows organizations to partition their infrastructure and grant access to each other. Managed service providers and contract-based DevOps teams take advantage of Teleport’s Trusted Clusters to manage servers for their clients.
Role-Based Access Controls (RBAC)
Role-Based Access Control (RBAC) is the practice of managing privileged access to infrastructure through a central directory of users, roles, and teams. Authorization is granted to groups (or roles) within a company directory.
Learn more about Role-Based Access Controls.
Enterprise Single Sign-On (SSO)
Teleport integrates into a company's existing company directory and SSO system. Enterprise Teleport supports all major SSO providers, including Okta, Sailpoint, Active Directory, OneLogin, G Suite, Auth0 and many others.
Learn more about Single Sign-On (SSO).