Zscaler
Cloud-based zero trust security platform providing secure access to applications without traditional VPNs
Open-Source Projects
Discover top open-source software, updated regularly with real-world adoption signals.
Discover top open-source software, updated regularly with real-world adoption signals.
Secure unified access proxy for modern infrastructure
Teleport delivers certificate‑based authentication, SSO, and audited access across SSH, Kubernetes, databases, and web services, with built‑in tunneling and role‑based controls.
Teleport acts as an identity‑aware access proxy that issues short‑lived certificates for every supported protocol. By replacing shared secrets with certificate‑based auth and enforcing two‑factor verification, it provides zero‑trust security for SSH nodes, Kubernetes clusters, databases, Windows hosts, and internal web applications.
The platform unifies role‑based access control, access‑request workflows, and comprehensive audit logging with session recording and replay. Users can authenticate via GitHub SSO (open source), OpenID Connect, or SAML providers such as Okta and Microsoft Entra ID, and gain seamless, tunnelled connectivity to resources hidden behind NATs or firewalls.
Teleport can be run as a single‑binary Linux daemon, deployed in Kubernetes, or containerized with Docker. The open source edition is production‑ready, while additional enterprise features are offered in a paid cloud‑hosted option.
When teams consider Teleport, these hosted platforms usually appear on the same shortlist.
Looking for a hosted option? These are the services engineering teams benchmark against before choosing open source.
Secure remote SSH access for developers
Developers obtain short‑lived certificates via SSO, eliminating static keys and providing audit logs of every session.
Kubernetes cluster management with zero‑trust
Admins access clusters through Teleport’s proxy, enforcing 2FA and RBAC while recording kubectl activity.
Database access behind a firewall
Database clients tunnel through Teleport, receiving mTLS certificates and centralized audit trails without exposing ports.
Internal web application access from anywhere
Users authenticate via SSO and receive time‑bound certificates to reach internal web services securely.
Teleport uses certificate‑based authentication with short‑lived certificates, supports two‑factor authentication, and provides SSO via GitHub (open source), OpenID Connect, and SAML providers such as Okta or Microsoft Entra ID.
Yes, Teleport can run as a Kubernetes deployment or as a traditional Linux daemon, and Docker images are also provided for containerized environments.
All supported protocols (SSH, Kubernetes, databases, RDP, web) are recorded and stored in an audit log, enabling replay of sessions through the web UI.
The open source edition is production‑ready, offering core security features; however, advanced SSO integrations and enterprise management tools are available only in the paid Enterprise offering.
Building from source requires at least 1 GB of virtual memory; a 512 MB instance without swap will not compile successfully.
Project at a glance
ActiveLast synced 4 days ago