Product Overview of Foxpass
Foxpass is a comprehensive cloud-based solution designed to streamline and secure user authentication, access control, and identity management for IT and engineering teams. Here’s a detailed look at what Foxpass does and its key features:
Core Functionality
Foxpass serves as a cloud-hosted LDAP (Lightweight Directory Access Protocol) and RADIUS (Remote Authentication Dial-In User Service) server. This allows organizations to manage user authentication, access control, and identity management with ease, integrating seamlessly with existing infrastructure such as Google Workspace, Office365, Okta, and OneLogin.
Key Features
Authentication and Access Control
- LDAP and RADIUS: Foxpass provides intuitive cloud-based LDAP and RADIUS services, enabling secure authentication for Wi-Fi, VPN, SSH, and other network resources. It ensures that only authorized users and devices can access the network.
- Multi-Protocol Support: Foxpass supports various authentication protocols, including EAP-TLS, EAP-TTLS, and RadSec, which offer secure and reliable authentication methods even across untrusted networks.
Integration and Compatibility
- SSO Integration: Foxpass integrates with Single Sign-On (SSO) providers, allowing users to access multiple services with a single set of credentials. This includes support for SAML-based SSO, enabling secure login to various service providers like AWS, Google Workspace, and GitHub.
- Compatibility with Existing Systems: It works with cloud mail systems, existing SSO solutions, and various operating systems (Linux, UNIX, Mac, Windows), making it versatile for different environments.
Security and Compliance
- Advanced Security Measures: Foxpass prioritizes security by default, disallowing insecure protocols and password-hashing algorithms. It also offers features like Multi-Factor Authentication (MFA) and secure SSH key management, including key length and rotation enforcement.
- Compliance Logging: The platform provides detailed logs for authentication requests, user lifecycle events, and group membership changes, which can be used for compliance and governance requirements. Logs can be extended up to 90 days and streamed using Amazon Kinesis.
Automation and Self-Service
- Privileged Access Management (PAM): Foxpass automates server and network access, protecting infrastructure from breaches. It includes self-service SSH keys and password management, reducing IT overhead.
- API and Automation: The platform offers a full-fledged API to automate and manage user permissions, facilitating productive provisioning and eliminating manual challenges.
Scalability and Reliability
- Fault-Tolerant Architecture: Foxpass is built to be scalable and fault-tolerant, with services spanning multiple data centers and no single point of failure. It ensures continuous operation even in the event of service interruptions through features like the Foxpass Cache.
Additional Features
- Role-Based Access Control (RBAC): Foxpass supports RBAC, allowing fine-grained permissions management for users and groups.
- Centralized SUDOers Management: It enables centralized management of SUDO access permissions over LDAP, restricting or enabling commands based on user, group membership, or time.
- Session Recording: The platform offers session recording for SSH sessions, which can be replayed and searched for specific issues, aiding in monitoring and debugging.
Pricing and Support
Foxpass offers a 30-day free trial with all plans, and pricing is based on the number of usernames accessing the service. Discounts are available for educational institutions, non-profits, and bulk users. The platform also provides bronze-level support as standard, with superior customer support and extensive documentation.
In summary, Foxpass is a robust solution that simplifies and secures user authentication and access control, offering a wide range of features that cater to the needs of modern IT and engineering teams while ensuring high security, scalability, and reliability.