A brief introduction: The step toolchain is a suite of services and command line components that make it easy to manage credentials and orchestrate security at “agile devopsy” shops in “cloud-ish” environments that use things like containers, microservices, and serverless functions.

More generally, the goal is to make security easy and non-intrusive in any environment.

Below, you’ll find documentation for the various pieces of the step ecosystem.

Join the chat at

Getting Started →

Getting started with step, including installing it locally.

Step CLI →

The step command line interface is what you’ll use to configure and manage smallstep components and plugins, but it’s also a swiss-army-knife for security related tasks.

Certificate Authority (step certificates) →

step certificates is an online certificate authority and related tools for secure automated certificate management, so you can use TLS everywhere.