Documentation

Secure Remote Access Portal

The Secure Remote Access Portal is available through the main console at http://Your-Akeyless-Gateway-URL:8000/sra/portal or through the public SaaS console at https://zerotrust.akeyless.io.

All Akeyless-supported resource types can be accessed using the SRA Portal, CLI, or the Desktop Application.

Currently, the SRA Portal supports the following authentication methods:

Tip (Allowed redirect URL): If you are using SAML or OIDC auth methods, ensure your Gateway URL is trusted.

Connect from the Secure Remote Access Portal

  1. Open the SRA Portal: http://Your-Akeyless-Gateway-URL:8000/sra/portal
  2. Select the relevant authentication method. The default is SAML. Enter your SAML Access ID, or choose a different method.
  3. If you are also working with Zero Trust Web Access, set the Web Application Dispatcher with the external URL of your dispatcher service on port 9000. If you are working with Secure Proxy, also set the Web Proxy URL using port 19414. For instructions on how to retrieve these URLs from your cluster, see Get the Dispatcher Service URL.
  4. Click the Generate SAML Bookmark URL to create a link to the completed form. The link is copied to your clipboard for you to save in a convenient place, such as your browser bookmarks, and use in the future to automatically complete the login details.
  5. Click Sign in.

The portal shows all the resource types that you are authorized to access.

A screenshot of the Akeyless Secure Remote Access product and its portal of available options.

Switch the Portal Theme

Use the theme switch button on the right side of the portal header to toggle between light and dark mode.

  1. Open the Secure Remote Access Portal and sign in.
  2. In the portal header, select Switch to Dark mode or Switch to Light mode.
  3. The portal updates immediately after the switch.

Clipboard Behavior for Long Text

Portal copy actions use browser clipboard APIs.

In the frontend implementation, copy operations call the browser clipboard API with a fallback copy method. The implementation does not define a fixed character limit for copied text.

For long text payloads in active SRA sessions, behavior can vary by browser and session components.

For large payload transfers, use file transfer workflows instead of clipboard copy and paste.

Add a Custom Target for SSH or RDP

In addition to existing hosts that are part of the allowed hosts on the SSH Cert Issuer, you can add new hostnames or IP addresses on the fly by using a matching SSH Cert Issuer that can provide access.

ℹ️

Note (Key Features):

  • On-the-Fly Connections: Users can provide a hostname or IP address for RDP or SSH sessions as needed.
  • Temporary Host Addition: Hostnames added through this feature are temporary and stored in the browser’s cache.
  • Edit and Delete Capability: Users can edit or remove the last added host from the list.
  1. In the SSH or RDP window, choose Custom Target and click the + button.
  2. Select the Permission Profile. For example, SSH Cert Issuer.
  3. Enter Hostname or IP Address.
  4. Select Confirm.

Users can Edit or Delete the last added host, and it will be removed from the list of hosts in the portal.

Updated 3 days ago

Footer Section