Bastillion – Web-based SSH Console to Manage Access

Bastillion is a web-based SSH console that centrally manages administrative access to systems. Web-based administration is combined with management and distribution of user’s public SSH keys. Key management and administration is based on profiles assigned to defined users.

Bastillion - Web-based SSH Console to Manage Access
Bastillion – Web-based SSH Console to Manage Access

Administrators can login using two-factor authentication with Authy or Google Authenticator. From there they can manage their public SSH keys or connect to their systems through a web-shell. Commands can be shared across shells to make patching easier and eliminate redundant command execution.

some of the features with this tool are:

  • Centralized user control – Grant access to systems through administrative profiles and user accounts.
  • Prevent SSH key sprawl and access mismanagement – Administrators set keys and distribute to systems through profiles. Strong passphrases are enforced by default for SSH keys on registered systems. Also, any administrative key can be disabled forcing key rotation.
  • Productivity – Instead of making the same changes on systems individually, share commands across systems. Eliminates redundancy when patching or debugging issues.
  • Portability – Run SSH through the browser without requiring client software or browser plugins.
  • Layered Protocols – Protocols are stacked (TLS/SSL + SSH) so infrastructure cannot be exposed through tunneling / port forwarding.
  • Infrastructure protection – A hardened version of Bastillion could act as a bastion host allowing for centralized administration through SSH, proxying traffic into a DMZ or perimeter network.
  • Auditable (experimental) – Audit the administrative activity on the systems. Prevents malicious users from deleting history or logs.

Bastillion layers TLS/SSL on top of SSH and acts as a bastion host for administration. Protocols are stacked (TLS/SSL + SSH) so infrastructure cannot be exposed through tunneling / port forwarding.

You can read more and download this tool over here: https://github.com/bastillion-io/Bastillion

Share
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments