Identity-based access
Enable privileged sessions for users and applications based on user identity and role.
Simple and secure remote access
Access any system from anywhere based on user identity.
Identity-based access
Boundary provides access to applications and critical systems with fine-grained authorizations without managing credentials or exposing your network.
Authenticate and authorize
Authenticate with any trusted identity provider you are already using and authorize access based on granular, logical roles and services.
Connect
Manage dynamic infrastructure and integrate service registries so hosts and service catalogs are kept up to date.
Access
Reduce risk of leaking credentials with dynamic secrets and just-in-time credentials. Automate credential brokering to securely access services and hosts with HashiCorp Vault.
How Boundary works
Boundary is a secure remote access solution that provides an easy way to allow access to applications and critical systems with fine-grained authorizations based on trusted identities across clouds, local datacenters, and low-trust networks.
Van Phan
Technical Product Marketing
Common use cases for Boundary
Session recording and audit logs
Visibility into session metrics, events, logs, and traces with the ability to export data to business intelligence and event monitoring tools.
Seamless IDP integration
Integrate with your IDP of choice, including Azure Active Directory, Okta, and many others that support Open ID Connect.
Dynamic secrets management
Leverage Vault integration for the brokering of Vault secrets to Boundary clients via the command line and desktop clients for use in Boundary sessions.
Service discovery
Automate service discovery and access configuration as workloads are deployed or changed.
Infrastructure as code with Terraform
Define policies and manage Boundary with an infrastructure as code approach. Terraform provider supports the full breadth of Boundary configurations.
Session recording for SSH
Comply with regulatory requirements by recording and playing back SSH sessions to deter, analyze, and remediate threat events.
Boundary in practice
Tutorial
OIDC authentication
Set up OIDC with Auth0, Okta, or Azure Active Directory and manage from Boundary's dev mode.
Tutorial
OIDC IdP groups
Integrate with identity providers like Okta, cloud-hosted active directory services with an OIDC frontend, and cloud identity management systems such as AWS IAM.
Tutorial
Vault credential brokering
Integrate with Vault to broker secrets to Boundary clients.
Tutorial
Dynamic host catalogs on AWS
Enable automated discovery and dynamic connections to target hosts and services on AWS.
Tutorial
Dynamic host catalogs on Azure
Enable automated discovery and dynamic connections to target hosts and services on Azure.
Tutorial
Event filtering and sink configuration
Increase observability of event logging for operators, allowing for more fine-grained visibility when managing Boundary clusters.
Ready to get started?
Reduce your risk of a breach and simplify administration with identity-based, secure remote access from HashiCorp Boundary. Learn how you can grant users access to the critical infrastructure they need — without exposing your network.
Next steps
Boundary automates secure identity-based user access to hosts and services across environments.