To enable Secure Remote Access to your database, Akeyless Zero Trust Portal interact with Akeyless Vault to fetch dynamic secrets for Just In Time access.
Akeyless provides 2 main methods to interact with your DB app.
Web access via Adminer app.
Native DB CLI.
Akeyless Zero Trust Bastion
Akeyless Zero Trust SSH Bastion - For native DB CLI access.
A running Database Dynamic Secrets
Akeyless SSH Cert Issuer.
In order to use DB application with Akeyless web access:
Add the following tags to your dynamic secret:
db:dbname- same name that was provided during creation of the producer.
host:host-IP:port- host and port that was provided during creation of the producer.
dbtype- possible variants are MySQL, MSSQL, MongoDB, PostgreSQL.
Optional tag schema:
schema-name. Only MSSQL and PostgreSQL producers supports that tag.
On Akeyless Zero Trust Portal and click on DB application. Portal will open new tab and redirect to relevant page.
Web access via Adminer:
First you need to create an SSH Cert Issuer to enable certificate authentication, make sure to configure your target server properly.
- Add the following tags to the created SSH Cert Issuer:
- Add the following tag to your dynamic secret:
Those settings will create a reference within your dynamic secret, upon CLI access request, Akeyless will fetch the relevant information based on your SSH Cert Issuer, and from your dynamic secret.
Go back to the Zero Trust Portal and click on your DB application. The portal will open a new option to connect via CLI
To access your target SSH server from any UNIX terminal, please download Akeyless Sphere script.
Updated 24 days ago