Self-service SaaS offering
Highly-available SSH certificate authority (CA)
Direct connect, bastion, and mixed environment support
Login with Smallstep Account
Login with Okta, Azure AD, and G Suite (SSO+MFA)
Identity provider (IDP) authentication & user group sync
Satisfy compliance requirements
Self-service SaaS offering
Highly-available SSH certificate authority (CA)
Direct connect, bastion, and mixed environment support
Login with Smallstep Account
Login with Okta, Azure AD, and G Suite (SSO+MFA)
Identity provider (IDP) authentication & user group sync
Satisfy compliance requirements
Self-service SaaS offering
Highly-available SSH certificate authority (CA)
Direct connect, bastion, and mixed environment support
Login with Smallstep Account
Login with Okta, Azure AD, and G Suite (SSO+MFA)
Identity provider (IDP) authentication & user group sync
Satisfy compliance requirements
Self-service SaaS offering
Highly-available SSH certificate authority (CA)
Direct connect, bastion, and mixed environment support
Login with Smallstep Account
Login with Okta, Azure AD, and G Suite (SSO+MFA)
Identity provider (IDP) authentication & user group sync
Satisfy compliance requirements
OpenSSH client configuration
SSHD server configuration
Enrollment token for easy host bootstrapping
Infrastructure automation (Ansible, Terraform, Puppet, Chef...)
User command to display the list of SSH accessible Hosts
OpenSSH client configuration
SSHD server configuration
Enrollment token for easy host bootstrapping
Infrastructure automation (Ansible, Terraform, Puppet, Chef...)
User command to display the list of SSH accessible Hosts
OpenSSH client configuration
SSHD server configuration
Enrollment token for easy host bootstrapping
Infrastructure automation (Ansible, Terraform, Puppet, Chef...)
User command to display the list of SSH accessible Hosts
OpenSSH client configuration
SSHD server configuration
Enrollment token for easy host bootstrapping
Infrastructure automation (Ansible, Terraform, Puppet, Chef...)
User command to display the list of SSH accessible Hosts
Use Smallstep login for access to all hosts
Enforce access to host based on identity provider user groups
Immediate deprovisioning of terminated user accounts
Automatic synchronization of users and groups from IDP
Host and host tags self-discovery
Rules engine for user group to host tag permission mapping
Sudo privileges based on identity provider groups
Automated session management (bots and automations)
Terminate POSIX user processes
Use Smallstep login for access to all hosts
Enforce access to host based on identity provider user groups
Immediate deprovisioning of terminated user accounts
Automatic synchronization of users and groups from IDP
Host and host tags self-discovery
Rules engine for user group to host tag permission mapping
Sudo privileges based on identity provider groups
Automated session management (bots and automations)
Terminate POSIX user processes
Use Smallstep login for access to all hosts
Enforce access to host based on identity provider user groups
Immediate deprovisioning of terminated user accounts
Automatic synchronization of users and groups from IDP
Host and host tags self-discovery
Rules engine for user group to host tag permission mapping
Sudo privileges based on identity provider groups
Automated session management (bots and automations)
Terminate POSIX user processes
Use Smallstep login for access to all hosts
Enforce access to host based on identity provider user groups
Immediate deprovisioning of terminated user accounts
Automatic synchronization of users and groups from IDP
Host and host tags self-discovery
Rules engine for user group to host tag permission mapping
Sudo privileges based on identity provider groups
Automated session management (bots and automations)
Terminate POSIX user processes
Transparently connect via bastion hosts
Automatically create home directories on Hosts
Create, modify, and deactivate user accounts on managed hosts
Transparently connect via bastion hosts
Automatically create home directories on Hosts
Create, modify, and deactivate user accounts on managed hosts
Transparently connect via bastion hosts
Automatically create home directories on Hosts
Create, modify, and deactivate user accounts on managed hosts
Transparently connect via bastion hosts
Automatically create home directories on Hosts
Create, modify, and deactivate user accounts on managed hosts
Short-lived host certificates with automated renewal
Root certificate rotation
Host certificate renewal/rekey
Private keys in multi-tenant KMS
Private Keys in dedicated in HSM with attestation
Short-lived host certificates with automated renewal
Root certificate rotation
Host certificate renewal/rekey
Private keys in multi-tenant KMS
Private Keys in dedicated in HSM with attestation
Short-lived host certificates with automated renewal
Root certificate rotation
Host certificate renewal/rekey
Private keys in multi-tenant KMS
Private Keys in dedicated in HSM with attestation
Short-lived host certificates with automated renewal
Root certificate rotation
Host certificate renewal/rekey
Private keys in multi-tenant KMS
Private Keys in dedicated in HSM with attestation
Session summary metrics (Host, time, etc.)
Session summary metrics (Host, time, etc.)
Session summary metrics (Host, time, etc.)
Session summary metrics (Host, time, etc.)
Session summary metrics (host, time, etc.)
Host and bastion additions, updates, and removals
User and user group additions, updates, and removals
Sudo privileges escalations
Export logs to webhook / SIEM
Session summary metrics (host, time, etc.)
Host and bastion additions, updates, and removals
User and user group additions, updates, and removals
Sudo privileges escalations
Export logs to webhook / SIEM
Session summary metrics (host, time, etc.)
Host and bastion additions, updates, and removals
User and user group additions, updates, and removals
Sudo privileges escalations
Export logs to webhook / SIEM
Session summary metrics (host, time, etc.)
Host and bastion additions, updates, and removals
User and user group additions, updates, and removals
Sudo privileges escalations
Export logs to webhook / SIEM
AWS, Azure, and GCP host register via cloud API
Admin approved on-demand access
Certificate observability service
AWS, Azure, and GCP host register via cloud API
Admin approved on-demand access
Certificate observability service
AWS, Azure, and GCP host register via cloud API
Admin approved on-demand access
Certificate observability service
AWS, Azure, and GCP host register via cloud API
Admin approved on-demand access
Certificate observability service
Releases
Current Release
Current Release
Current Release
N-1 Releases
Channels
Ticket
Ticket
Ticket, Slack
Ticket, Slack
Availability
Best Effort Response
48-hour Response (Monday - Friday)
24-hour Response (Monday - Friday)
24-hour Response (Monday - Friday)