Unified Access Plane

Teleport Kubernetes Access

Fast, secure access to Kubernetes clusters

Teleport Kubernetes Access
Consolidate Access to all Environments


Consolidate access to all environments

Teleport Kubernetes Access consolidates access to all of the company’s Kubernetes clusters, providing fast and secure access to all staging and production environments — behind NAT and firewalls, in the cloud, in data centers, or on the edge

Unified Access Plane

Unified Access Plane

Consolidate access controls and auditing across all your clusters, servers, and internal applications, reducing the complexity that leads to security breaches and lost productivity. (learn more)

Awesome User Experience

Awesome user experience

A single login gives engineers instant, secure access to all computing environments, ending the pain of managing multiple VPNs, secrets storage, and access points.

Trust Federation

Trust federation

Organizations can securely federate access to Kubernetes clusters and delegate cluster management roles to managed service providers or external teams.


Secure Kubernetes and meet compliance requirements

Teleport Kubernetes Access enforces industry-best secure access patterns out of the box, which makes it possible to move faster with less configuration

Secure Kubernetes and meet Compliance Requirements
Single Sign On

Single sign-on (SSO) with multi-factor

Instead of configuring access for every cluster, Teleport Kubernetes Access enforces certificate-based authentication via SSO. Certificates are tied to user identity, expire automatically, and retain rich metadata in audit logs. (learn more)

Role Based Access Control

Role based access control

Teleport Kubernetes Access can synchronize RBAC rules for both Kubernetes and SSH, enforcing compliance requirements across all layers of infrastructure based on one single source of truth. (learn more)

Access Workflows

Access workflows

Flexible access workflows allow engineers to request a single-use privilege elevation initiated via the command-line. Requests can be approved or denied via ChatOps, Slack, PagerDuty, or use the API for custom access approval workflows. (learn more)


Complete visibility into access and behavior

DevSecOps can see what’s happening and who’s responsible. Teleport Kubernetes Access provides real-time and historical visibility into all user sessions and actions

Live view

Real-time data can be viewed across all environments for all Kubernetes API endpoints, active connections, ongoing deployments, and privilege elevation requests. Active sessions can also be joined and monitored.

Enhanced Audit Logging Consolidated audit

Record Kubernetes access attempts can be consolidated across all environments in one encrypted location and access logs can be exported to the SIEM solution of choice. (learn more)

Audit Logging

Session Recording Session recording

SecOps engineers can record every interactive session initiated with kubectl and other tools and store data in an encrypted audit log. Replay any session via the web and export the data into a simple format file for custom processing. (learn more)

Session Recording


Works with everything you have

Teleport Kubernetes Access is open source and it relies on open standards such as SSH, HTTPS, SAML, OpenID connect and others. Deployed as a single-binary drop-in replacement for OpenSSH, it seamlessly integrates with the rest of your stack

Google Cloud
Open BSD
Free BSD
One Login

Pricing and Platforms

Teleport Kubernetes Access comes in three flavors. The commercial offerings have a minimum base price and are priced by usage - see details

  • Unified Access Plane
  • Host anywhere
  • Single sign-On
  • Role based access control
  • Fully managed
  • Supported

Open source


Designed for engineers who prefer to build their own software. Often used by individual developers or small teams.



per cluster/month

Designed for engineering teams that require the peace of mind and simplicity of a hosted and managed service.



per cluster/month

Designed for engineering teams that demand the flexibility to run software anywhere, on any infrastructure.

Unified Access Plane
Yes Yes Yes
Host anywhere
Yes no Yes
Single sign-on
partial Github Only Yes Yes
Role based access control
no Yes Yes
Fully managed
no Yes no
Premium support
no Yes Yes

Teleport Kubernetes Access is part of the

Unified Access Plane

Teleport provides a Unified Access Plane that consolidates access controls and auditing across all environments - infrastructure, applications and data.

Learn more
Teleport Unified Access Plane

Try Teleport today

In the cloud, self-hosted, or open source

View developer docs

This site uses cookies to improve service. By using this site, you agree to our use of cookies. More info.