Teleport Access Plane
Teleport Kubernetes Access
Consolidate identity-based access to Kubernetes clusters across all environments, meet compliance requirements, and have complete visibility into access and behavior.Get Started
tsh login k8s-proxy
Single Sign On
Multi Factor Authentication
Security Key or Biometric Authenticator
Multi Factor Authentication
Secure Kubernetes & meet compliance requirements
Implement industry best practices for Kubernetes access with minimal configuration. Easily enforce MFA, RBAC, and SSO using identity-based short-lived X.509 certificates.
Teleport offers all required server access controls to implement compliance standards such as SOC2, PCI, and FedRAMP.
Move away from root accounts with just-in-time privilege escalation for administrative tasks.
Per Session MFA
Easily implement multi-factor authentication across your organization without relying on device management systems.
Access that doesn't get in the way
A single sign-on gives engineers instant Kubernetes access across all environments. Leave behind configuration complexity, juggling of shared keys, hopping between VPNs and bastion hosts.
Invite colleagues to collaborate in a shared terminal session. Record sessions for knowledge sharing purposes.
Live Server Catalog
List servers across all environments and see which servers are online with a single CLI command or via a live view in a browser.
Plugins and API
Automate access provisioning and request approvals using your favorite programming language.
For Security Professionals
Complete visibility into access and behavior
Teleport provides a live view and the audit log of kubectl sessions and access events for all Kubernetes clusters across all environments, making it easy to see what’s happening and who is responsible.
Every interactive session is recorded for future replay and can be analyzed by other tools for behavior anomalies.
All kubectl sessions and security events are logged and exported to SIEM solutions as a single source of truth.
All online clusters, active kubectl sessions, access requests are visible with a single CLI command or in a browser.
Works with everything you have
Teleport Kubernetes Access is open source and it relies on open standards such as X.509 certificates, HTTPS, SAML, OpenID connect and others. Deployed as a single-binary, it seamlessly integrates with the rest of your stack.
Easy to get started
Teleport is easy to deploy and use. We believe that simplicity and good user experience are key to first-class security.
Teleport consists of just two binaries.
tshclient allows users to login to retrieve short-lived certifcates.
teleportagent can be installed on any server or any Kubernetes cluster with a single command.
# on a client $ tsh login --proxy=example.com # on a server $ apt install teleport # in a Kubernetes cluster $ helm install
Our vision for the future
We are trying to solve the problem every company has - how to run and access software running anywhere in a secure and compliant manner. We call this environment-free computing.Learn more
Learn more about Teleport Kubernetes Access
Key feature listing and details
Nearly all Teleport features are available in the open source package.
Five minute demo of Teleport
This short video shows the basic capabilities of Teleport, Quickly access any computing resource anywhere.
Teleport Quick Start Guide
Developer Documentation for using Teleport. This tutorial will guide you through the steps needed to install and run Teleport on Linux machines.
HOW IT WORKS
Deep dive into how Teleport works
Learn the fundamentals of how Teleport works. The following is a series of articles describing key Teleport concepts.