+
+ | Authentication |
+ Login |
+ Unified way to access and authenticate resources |
+
+
+ | LDAP/AD Authentication |
+
+
+ | RADIUS Authentication |
+
+
+ | OpenID Authentication(Single Sign-On) |
+
+
+ | CAS Authentication (Single Sign-On) |
+
+
+ | MFA (Multi-Factor Authentication) |
+ Use Google Authenticator for MFA |
+
+
+ | RADIUS (Remote Authentication Dial In User Service) |
+
+
+ | Login Supervision |
+ Any user’s login behavior is supervised and controlled by the administrator:small_orange_diamond: |
+
+
+ | Accounting |
+ Centralized Accounts Management |
+ Admin Users management |
+
+
+ | System Users management |
+
+
+ | Unified Password Management |
+ Asset password custody (a matrix storing all asset password with dense security) |
+
+
+ | Auto-generated passwords |
+
+
+ | Automatic password handling (auto login assets) |
+
+
+ | Password expiration settings |
+
+
+ | Password change Schedular |
+ Support regular batch Linux/Windows assets password changing:small_orange_diamond: |
+
+
+ | Implement multiple password strategies:small_orange_diamond: |
+
+
+ | Multi-Cloud Management |
+ Automatically manage private cloud and public cloud assets in a unified platform :small_orange_diamond: |
+
+
+ | Users Acquisition |
+ Create regular custom tasks to collect system users in selected assets to identify and track the privileges ownership:small_orange_diamond: |
+
+
+ | Password Vault |
+ Unified operations to check, update, and test system user password to prevent stealing or unauthorised sharing of passwords:small_orange_diamond: |
+
+
+ | Authorization |
+ Multi-Dimensional |
+ Granting users or user groups to access assets, asset nodes, or applications through system users. Providing precise access control to different roles of users |
+
+
+ | Assets |
+ Assets are arranged and displayed in a tree structure |
+
+
+ | Assets and Nodes have immense flexibility for authorizing |
+
+
+ | Assets in nodes inherit authorization automatically |
+
+
+ | child nodes automatically inherit authorization from parent nodes |
+
+
+ | Application |
+ Provides granular access control for privileged users on application level to protect from unauthorized access and unintentional errors |
+
+
+ | Database applications (MySQL, Oracle, PostgreSQL, MariaDB, etc.) and Remote App:small_orange_diamond: |
+
+
+ | Actions |
+ Deeper restriction on the control of file upload, download and connection actions of authorized assets. Control the permission of clipboard copy/paste (from outer terminal to current asset) |
+
+
+ | Time Bound |
+ Sharply limited the available (accessible) time for account access to the authorized resources to reduce the risk and attack surface drastically |
+
+
+ | Privileged Assignment |
+ Assign the denied/allowed command lists to different system users as privilege elevation, with the latter taking the form of allowing particular commands to be run with a higher level of privileges. (Minimize insider threat) |
+
+
+ | Command Filtering |
+ Creating list of restriction commands that you would like to assign to different authorized system users for filtering purpose |
+
+
+ | File Transfer and Management |
+ Support SFTP file upload/download |
+
+
+ | File Management |
+ Provide a Web UI for SFTP file management |
+
+
+ | Workflow Management |
+ Manage user login confirmation requests and assets or applications authorization requests for Just-In-Time Privileges functionality:small_orange_diamond: |
+
+
+ | Group Management |
+ Establishing a multi-tenant ecosystem that able authority isolation to keep malicious actors away from sensitive administrative backends:small_orange_diamond: |
+
+
+ | Auditing |
+ Operations |
+ Auditing user operation behaviors for any access or usage of given privileged accounts |
+
+
+ | Session |
+ Support real-time session audit |
+
+
+ | Full history of all previous session audits |
+
+
+ | Video |
+ Complete session audit and playback recordings on assets operation (Linux, Windows) |
+
+
+ | Full recordings of RemoteApp, MySQL, and Kubernetes:small_orange_diamond: |
+
+
+ | Supports uploading recordings to public clouds |
+
+
+ | Command |
+ Command auditing on assets and applications operation. Send warning alerts when executing illegal commands |
+
+
+ | File Transfer |
+ Full recordings of file upload and download |
+
+
+ | Database |
+ How to connect |
+ Command line |
+
+
+ | Built-in Web UI:small_orange_diamond: |
+
+
+
+ | Supported Database |
+ MySQL |
+
+
+ | Oracle :small_orange_diamond: |
+
+
+ | MariaDB :small_orange_diamond: |
+
+
+ | PostgreSQL :small_orange_diamond: |
+
+
+ | Feature Highlights |
+ Syntax highlights |
+
+
+ | Prettier SQL formmating |
+
+
+ | Support Shortcuts |
+
+
+ | Support selected SQL statements |
+
+
+ | SQL commands history query |
+
+
+ | Support page creation: DB, TABLE |
+
+
+ | Session Auditing |
+ Full records of command |
+
+
+ | Playback videos |
+
+
+
+**Note**: Rows with :small_orange_diamond: at the end of the sentence means that it is X-PACK features exclusive ([Apply for X-PACK Trial](https://jinshuju.net/f/kyOYpi))
### Start
@@ -162,6 +264,50 @@ We provide the SDK for your other systems to quickly interact with the Jumpserve
- [Python](https://github.com/jumpserver/jumpserver-python-sdk) Jumpserver other components use this SDK to complete the interaction.
- [Java](https://github.com/KaiJunYan/jumpserver-java-sdk.git) Thanks to 恺珺 for providing his Java SDK vesrion.
+## JumpServer Component Projects
+- [Lina](https://github.com/jumpserver/lina) JumpServer Web UI
+- [Luna](https://github.com/jumpserver/luna) JumpServer Web Terminal
+- [KoKo](https://github.com/jumpserver/koko) JumpServer Character protocaol Connector, replace original Python Version [Coco](https://github.com/jumpserver/coco)
+- [Guacamole](https://github.com/jumpserver/docker-guacamole) JumpServer Graphics protocol Connector,rely on [Apache Guacamole](https://guacamole.apache.org/)
+
+## Contribution
+If you have any good ideas or helping us to fix bugs, please submit a Pull Request and accept our thanks :)
+
+Thanks to the following contributors for making JumpServer better everyday!
+
+