Dynamic Secretless Zero Trust Secure Access to PostgreSQL and MySQL Databases at Scale

Provide Passwordless Access for your all Internal as well as Publicly Protected SaaS PostgreSQL and MySQL-based Databases to your Users without Managing and Distributing Passwords to your Users and without Using Special Clients at the User's Side.

Dynamically Force Using Specific Users, Credentials, Databases and Route to Hosts based on User Identity as well as the Access Context using Policy-as-Code via CEL and Open Policy Agent (OPA) on a per-Request Basis

Seamlessly integrate any OpenID Connect or SAML 2.0 SSO Provider as well as GitHub OAuth2. Force Strong MFA via FIDO2 Phishing Resistant Authenticators into Access Control to Sensitive Databases.

OpenTelemetry-ready L7 Aware Auditing that Captures your Database Queries to be Analyzed by your SIEM

Designed to be Administered like Kubernetes via DevOps/GitOps-friendly Centralized and Declarative Way. The Cluster is furthermore fully Programmable over gRPC.

Dynamically Apply Native FIDO2 Passkey/WebAuthn, Time-based one-time Password (TOTP) Authentication and TPM 2.0 Authentication. Enforce Using Attested Hardware-based FIDO2 Authenticators in your Access Control Decisions.