Single Sign-On SSH with Smallstep

A modern Open Source framework for single sign-on privileged user access

The Best Way to Manage SSH User Access

Centralized User Management

Automatically add and remove SSH users without build and deploy. Access based upon corporate IAM rules.

One-time configuration

Easy setup with two lines of configuration on clients and servers. No need to script manual updates host-by-host.

Highly Interoperable

Based on industry-standard SSH certificates. Users continue using SSH (and scp, git, rsync, etc) in the same way as today.

More Secure solution

Shorten vulnerability windows - IAM rules remove users. Eliminate shared passwords & long-lived credentials.
A Modern Approach To Privileged Users