🠄 Back to solutions

SpanKey SSH Key Server Management

SpanKey is a centralized SSH key management solution that provides automated key lifecycle management, session recording, and multi-factor authentication for Linux server access.

Description

SpanKey SSH Key Server Management is a comprehensive solution for centralized SSH key lifecycle management within enterprise Linux/Unix server environments. It eliminates the need to manually deploy and maintain SSH keys on individual servers by storing public keys in a central LDAP directory like Active Directory. The solution consists of the SpanKey server running on WebADM clusters and lightweight agents installed on target Linux systems that provide user public keys on-demand. It integrates with RCDevs' OpenOTP for multi-factor authentication and offers advanced features including automated key distribution, session recording, access control policies, and support for shared accounts. The system supports major Linux distributions and industry-standard public key algorithms including RSA, ECC, and DSA.

Features

SpanKey offers web-based SSH key self-enrollment through self-service portals with configurable key types and lengths. It provides graphical session recording with efficient storage (3MB per day), automated public key expiration with renewal workflows, and conditional access based on agreements and presence. The solution supports shared accounts through LDAP group linking, centralized audit rules and log collection for SIEM integration, master keys for super user access, and recovery keys for backup access. It integrates with HSMs for secure key generation and supports hardware SSH devices like smartcards and YubiKeys. The architecture includes server tagging, LDAP access groups, and comprehensive management through the WebADM console.

Benefits

- Eliminates manual SSH key distribution and maintenance on individual servers - Provides centralized control and visibility over SSH key lifecycle - Enhances security through multi-factor authentication integration - Offers comprehensive session recording and audit capabilities - Supports compliance with ISO and PCI regulations through automated key expiration - Enables efficient management of shared accounts and privileged access - Reduces storage requirements for session recordings compared to competitors - Supports large-scale enterprise IT environments - Provides automated key renewal workflows and user notifications - Integrates with existing LDAP directories and SIEM systems

Links

Key info
Open Source
European
Country
LU
Links
Home
https://www.rcdevs.com/products/spankey/
Hosting Information