AWS Verified Access vs Oathkeeper
Overview
Share your Stack
Help developers discover the tools you use. Get visibility for your team's tech choices and contribute to the community's knowledge.
CLI (Node.js)
Manual
Detailed Comparison
A cloud native Identity & Access Proxy (IAP) which authenticates and authorizes incoming HTTP requests. Inspired by the BeyondCorp / Zero Trust white paper. Written in Go. | It is a new secure connectivity service that allows enterprises to enable local or remote secure access for their corporate applications without requiring a VPN. |
Identify the user and provide the user session to API backends; Restrict access to certain resources based on a set of rules; Transform access credentials (e.g. OAuth2 Access Tokens, SAML Assertions, ...) to a format (e.g. JSON Web Token, Plaintext, Basic Authorization, ...) consumable by your API services | Improve security posture by evaluating each access request in real time against predefined requirements;
Deliver a seamless user experience through virtual access to corporate applications without a VPN;
Define a unique access policy for each application, with conditions based on identity data and device posture |
Statistics | |
GitHub Stars 3.5K | GitHub Stars - |
GitHub Forks 386 | GitHub Forks - |
Stacks 4 | Stacks 0 |
Followers 14 | Followers 1 |
Votes 0 | Votes 0 |
Integrations | |
| No integrations available | |
What are some alternatives to Oathkeeper, AWS Verified Access?
AWS IAM
It enables you to manage access to AWS services and resources securely. Using IAM, you can create and manage AWS users and groups, and use permissions to allow and deny their access to AWS resources.
Identity Management Simplified
Keycloak Enterprise-grade identity & access management, fully managed! Enable user authentication and authorization in minutes, so you can keep growing.
Teleport
Teleport makes it easy for users to securely access infrastructure and meet the toughest compliance requirements. Teleport replaces shared credentials with short-lived certificates and is completely transparent to client-side tools.
HashiCorp Boundary
Simple and secure remote access — to any system anywhere based on trusted identity. It enables practitioners and operators to securely access dynamic hosts and services with fine-grained authorization without requiring direct network access.
SailPoint
It provides enterprise identity governance solutions with on-premises and cloud-based identity management software for the most complex challenges.
AWS Service Catalog
AWS Service Catalog allows IT administrators to create, manage, and distribute catalogs of approved products to end users, who can then access the products they need in a personalized portal. Administrators can control which users have access to each application or AWS resource to enforce compliance with organizational business policies. AWS Service Catalog allows your organization to benefit from increased agility and reduced costs because end users can find and launch only the products they need from a catalog that you control.
Infra
It enables you to discover and access infrastructure (e.g. Kubernetes, databases). We help you connect an identity provider such as Okta or Azure active directory, and map users/groups with the permissions you set to your infrastructure.
BeyondTrust
It supports a family of privileged identity management, privileged remote access, and vulnerability management products for UNIX, Linux, Windows and Mac OS operating systems.
Key Vault Access Policy
It determines whether a given service principal, namely an application or user group, can perform different operations on Key Vault secrets, keys, and certificates. You can assign access policies using the Azure portal, the Azure CLI, or Azure PowerShell.
GCP IAM
It lets you create and manage permissions for Google Cloud resources. IAM unifies access control for Google Cloud services into a single system and presents a consistent set of operations.
