BastionXP
OpenXPKI
Teleport Database Access
Smallstep Certificates
EJBCA
Vault by HashiCorp
Teleport Assist
Dogtag PKI
Smallstep SSH
Keystash.io
Thycotic Privilege Manager
Appviewx Cert
Keyfactor Command
strongDM
Centrify
OneLogin
BastionXP is a Public Key Infrastructure (PKI) / Certificate Authority (CA) that creates, signs and distributes SSH, SSL/TLS X.509 certificates to servers and end users upon successful SSO login and 2FA authentication via OAuth providers such as GitHub, G-Suite, Microsoft Office 365, Okta and more.
BastionXP automates certificate management at scale, while simplifying your end-user workflow without compromising security.
BastionXP also has a built-in SSH proxy server that can be configured to function as an SSH bastion host. BastionXP works seamlessly with OpenSSH server and client software.
BastionXP offers Zero Trust Network Access(ZTNA) Security. All servers and end-users are required to authenticate with the BastionXP Authentication Server using an SSO and 2FA login, before access to the network can be granted.
BastionXP issues short-lived SSH, TLS/SSL X.509 certificates to end-users so that no user would have an indefinite access to any network resource. Moreover, these certificates, issued to a specific user based on Role Based Access Control(RBAC) can be used to access only a specific server(s) in the network. BastionXP provides you fine-grained control over who can access what resources in a network and for how long.
All network access events are logged and available for download, so that the logs can be analyzed using a log analyzer for anamoly detection.
BastionXP solution is available in three different formats:
| Software | Features | Best Suited For |
|---|---|---|
| Free Software Version | Limited features & best-effort support | Hobbyists, educational purposes and non-commercial use cases. |
| Cloud-Hosted Version | All enterprise features & priority customer support | Small teams and Startups. |
| Self-Hosted Version | All enterprise features & priority customer support | Enterprises and Large Organizations. |
BastionXP Smallstep SSHNo features have been listed yet.
No Smallstep SSH videos yet. You could help us improve this page by suggesting one.
Based on our record, Smallstep SSH seems to be more popular. It has been mentiond 1 time since March 2021. We are tracking product recommendations and mentions on various public social media platforms and blogs. They can help you identify which product is more popular and what people think of it.
Through a combination of the properties that are in an SSH certificate and configuration on the hosts, you'll be able to realize RBAC. If you're using the open source step-ca, this will require you to configure things yourself on the hosts. We also have an offering where this capability and management/auditing of the rules is hosted for you, which makes that specific part easier: https://smallstep.com/sso-ssh/. Source: 11 months ago
OpenXPKI - OpenXPKI is a software stack that provides all necessary components to manage keys and certificates...
Keystash.io - Centralized Linux user and SSH key management software
Teleport Database Access - Instant, secure, & privileged access to Postgres and MySQL
Thycotic Privilege Manager - Automate endpoint privilege management and mitigate critical vulnerabilities via application control without disrupting users or your IT support team.
Smallstep Certificates - A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH.
Appviewx Cert - Appviewx Cert is a next-generation certificate management suite that simplifies X.509 certificates, SSH keys, and crypto technologies across user and host endpoints.
