Passwordless SSH
Move to SSH with security keys and stop credential theft
Discover the scalable way to go passwordless for SSH with security keys, like the Yubikey. With 0pass, you can store every employee's private key on a security key and deploy to servers without the hassle of public key management.
Talk With Us
The ultimate protection for your private key
Security keys protect the most sensitive operations in the world—from the largest cloud providers to rocket companies. Attackers steal private keys to advance their operation, but when you store all private keys on a the isolated processor of a security key, credential theft becomes impossible.
Why 0pass for strong SSH authentication
A scalable system for SSH without passwords
Let users enroll themselves
The 0pass App lets end users enroll their security key for theft-resistant SSH. The fast enrollment flow stores a private key to the device, along with any other necessary credentials.
Tie PKI to corporate identity
When a user enrolls a YubiKey, 0pass installs a signed certificate onto the security key and derives a public SSH key from it. SSH servers will check 0pass for allowed keys.
Manage users and their access
Define the resources that each user or user group is permitted to access, managing server access the same way that you manage application access with your identity provider.
No public keys management
No need to deploy and manage public keys. The 0pass SSH Plugin only runs when authentication is initiated. It enables the server to communicate directly with 0pass and the security key.
The passwordless infrastructure
0pass manages the full lifecycle of your security keys. Employees can enroll their security keys for native SSH access that resists phishing and theft.
