Rom101 Posted December 30, 2022 Share Posted December 30, 2022 Hello, a friend of mine asked for recommendations for a bastion tool for its small business (~20 pax using the bastion), mostly for SSH administration. in between more famous techno such as CyberArk & Wallix, I stumbled upon Teleport, claiming to be an open-source bastion. Have you ever used it ? Do you know about the project, the team, the logging capabilities etc. ? thx Link to comment Share on other sites More sharing options...
clarkee Posted January 5, 2023 Share Posted January 5, 2023 Used it for managing my own fleet of linux servers, providing access to SSH without having to enable any inbound traffic. You deploy an agent to each host and away you go.... For the most part, it works perfectly. For the open source project, I think you're missing SSO / AD integration, but for small use you could get away with it. Recording of SSH sessions for playback, and I believe sessions can be searched also. The platform can be deployed in a single instance, or distributed for HA / distribution of roles. Also supports Windows, but only Domain joined hosts via smartcard emulation. They're working on an agent for workgroup WIndows hosts (since smartcard authentication requires directory services from AD) but I don't believe it's ready yet. Link to comment Share on other sites More sharing options...
Elched Posted January 7, 2023 Share Posted January 7, 2023 Speaking of Open Source Bastion, Cloud provider OVH has also released one, with a very good blog post attached: https://github.com/ovh/the-bastion Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now