BastionXP is a Public Key Infrastructure (PKI) / Certificate Authority (CA) that creates, signs and distributes SSH, SSL/TLS X.509 certificates to servers and end users upon successful SSO login and 2FA authentication via OAuth providers such as GitHub, G-Suite, Microsoft Office 365, Okta and more.
BastionXP automates certificate management at scale, while simplifying your end-user workflow without compromising security.
BastionXP also has a built-in SSH proxy server that can be configured to function as an SSH bastion host. BastionXP works seamlessly with OpenSSH server and client software.
BastionXP offers Zero Trust Network Access(ZTNA) Security. All servers and end-users are required to authenticate with the BastionXP Authentication Server using an SSO and 2FA login, before access to the network can be granted.
BastionXP issues short-lived SSH, TLS/SSL X.509 certificates to end-users so that no user would have an indefinite access to any network resource. Moreover, these certificates, issued to a specific user based on Role Based Access Control(RBAC) can be used to access only a specific server(s) in the network. BastionXP provides you fine-grained control over who can access what resources in a network and for how long.
All network access events are logged and available for download, so that the logs can be analyzed using a log analyzer for anamoly detection.
BastionXP solution is available in three different formats:
Software | Features | Best Suited For |
---|---|---|
Free Software Version | Limited features & best-effort support | Hobbyists, educational purposes and non-commercial use cases. |
Cloud-Hosted Version | All enterprise features & priority customer support | Small teams and Startups. |
Self-Hosted Version | All enterprise features & priority customer support | Enterprises and Large Organizations. |
No features have been listed yet.
Based on our record, Authy seems to be more popular. It has been mentiond 139 times since March 2021. We are tracking product recommendations and mentions on various public social media platforms and blogs. They can help you identify which product is more popular and what people think of it.
Authy - Two-factor authentication (2FA) on multiple devices, with backups. Drop-in replacement for Google Authenticator. Free for up to 100 successful authentications. - Source: dev.to / 4 months ago
Https://authy.com/ Acquired by Twilio. I'm not even sure if they still update it, last blog post was 3 years ago. - Source: Hacker News / 6 months ago
2FA apps such as Google Authenticator and Authy randomly generate a code every minute or so, which is matched to a specific key associated with your login. In essence, this means that whenever a login asks for your 2FA code, it knows which number to expect and will only unlock if that correct number is entered. Source: 6 months ago
You can also set up the Authy authenticator app on a PC, so you don't have to use a mobile app at all, but use a PC app instead :). Source: 11 months ago
Check out authy. It's considered less secure than other device-specific OTP solutions, but it's better than not using it. Source: almost 1 year ago
Smallstep Certificates - A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH.
Google Authenticator - Google Authenticator is a multifactor app for mobile devices.
Teleport Database Access - Instant, secure, & privileged access to Postgres and MySQL
Duo Security - Duo Security provides cloud-based two-factor authentication. Duo’s technology can be deployed to protect users, data, and applications from breaches, credential theft, and account takeover.
OpenXPKI - OpenXPKI is a software stack that provides all necessary components to manage keys and certificates...
Azure Multi-Factor Authentication - Azure Multi-Factor Authentication helps safeguard access to data and applications while meeting user demand for a simple sign-in process.