Jetstack Secure manages your machine identities across Cloud Native Kubernetes and OpenShift environments and builds a detailed view of the enterprise security posture
Built with cert-manager
Originally developed by Jetstack as an open source project to meet the need to improve automation of certificate management within Kubernetes, cert-manager builds natively on top of the Kubernetes API and has become the de facto solution for issuing and renewing certificates from popular public and private certificate issuers.
See Jetstack Secure in action
Cloud Native secure workload automation using Jetstack Secure
Speak to an expert-
Security status monitoring is vital for scaling
Early indication on cluster configuration issues is essential to prevent outages. Certificate validity checks and automatic renewal means the infrastructure can expand securely as new clusters are created.
Jetstack Secure will proactively identify issues that can cause operational or security risk and help pinpoint the root cause to enable fast remediation.
-
Zero trust security in multi-cloud environments
In cloud native environments trust must be enforced at the workload level so the machine identity becomes the critical element to define the new zero-trusted environment.
Jetstack Secure fits with the modern enterprise zero trust security model by automating certificates across different cloud native environments, with a consistent, Kubernetes-native interface and set of controls.
-
Security with Istio service mesh
Istio service mesh is increasingly used to secure, control and observe distributed Kubernetes workloads, all without demanding changes to the workloads themselves.
Enterprises deploying cloud native infrastructure rely on Jetstack Secure to integrate service mesh with external CA systems to enforce mutual TLS (mTLS) with machine identities that are rooted in enterprise chain of trust.
Jetstack Secure feature matrix
-
Jetstack Secure (Free)
-
1 cluster
-
Free
-
Community support on Slack
Features
-
cert-manager for Kubernetes & OpenShift
-
Web-based dashboard UI (single cluster view)
-
Configuration of certificate issuers
-
Certificate validity checks (inc. unmanaged certificates)
-
Certificate auto renewal
-
Alerting integration (single system)
-
-
Jestack Secure (SaaS)
-
Multiple clusters
-
$50 per cluster pcm
-
Email (best effort)
Features
-
cert-manager for Kubernetes & OpenShift
-
Web-based dashboard UI (single cluster view)
-
Configuration of certificate issuers
-
Certificate validity checks (inc. unmanaged certificates)
-
Certificate auto renewal
-
Alerting integration (single system)
-
Packaged private certificate issuers from Google & Venafi
-
Managed cert-manager updates and external issuers
-
-
Jetstack Secure (Enterprise)
-
Unlimited
-
Custom
-
On-call enhanced support with SLAs
Features
-
cert-manager for Kubernetes & OpenShift
-
Web-based dashboard UI (single cluster view)
-
Configuration of certificate issuers
-
Certificate validity checks (inc. unmanaged certificates)
-
Certificate auto renewal
-
Alerting integration (single system)
-
Packaged private certificate issuers from Google & Venafi
-
Managed cert-manager updates and external issuers
-
Automated certificate backup and restore
-
Jetstack signed builds of cert-manager
-
Multi-cluster dashboard UI for control and visibility
-
Access to Jetstack best practice playbooks and blueprints
-
Enhanced alerting integration
-
-
Jetstack Secure (Enterprise +)
-
Unlimited
-
Custom
-
Premium 24x7 with SLAs
Features
-
cert-manager for Kubernetes & OpenShift
-
Web-based dashboard UI (single cluster view)
-
Configuration of certificate issuers
-
Certificate validity checks (inc. unmanaged certificates)
-
Certificate auto renewal
-
Alerting integration (single system)
-
Packaged private certificate issuers from Google & Venafi
-
Managed cert-manager updates and external issuers
-
Automated certificate backup and restore
-
Jetstack signed builds of cert-manager
-
Multi-cluster dashboard UI for control and visibility
-
Access to Jetstack best practice playbooks and blueprints
-
Enhanced alerting integration
-
|
Jetstack Secure (Free)
|
Jetstack Secure (SaaS)
|
Jetstack Secure (Enterprise)
|
Jetstack Secure (Enterprise +)
|
|
|---|---|---|---|---|
|
Cluster configuration
|
1 cluster
|
Multiple clusters
|
Unlimited
|
Unlimited
|
|
Pricing
|
Free
|
$50 per cluster pcm
|
Custom
|
Custom
|
|
Support package
|
Community support on Slack
|
Email (best effort)
|
On-call enhanced support with SLAs
|
Premium 24x7 with SLAs
|
|
cert-manager for Kubernetes & OpenShift
|
|
|
|
|
|
Web-based dashboard UI (single cluster view)
|
|
|
|
|
|
Configuration of certificate issuers
|
|
|
|
|
|
Certificate validity checks (inc. unmanaged certificates)
|
|
|
|
|
|
Certificate auto renewal
|
|
|
|
|
|
Alerting integration (single system)
|
|
|
|
|
|
Packaged private certificate issuers from Google & Venafi
|
|
|
|
|
|
Managed cert-manager updates and external issuers
|
|
|
|
|
|
Automated certificate backup and restore
|
|
|
|
|
|
Jetstack signed builds of cert-manager
|
|
|
|
|
|
Multi-cluster dashboard UI for control and visibility
|
|
|
|
|
|
Access to Jetstack best practice playbooks and blueprints
|
|
|
|
|
|
Enhanced alerting integration
|
|
|
|
|
| in 2021: | ||||
|
Security Information Event Management (SIEM) integrations
|
|
|
|
|
|
Automated remediation for cluster and workload security violations
|
|
|
|
|
|
FIPS 140-2 compliant builds
|
|
|
|
|
|
Advanced certificate policy enforcement
|
|
|
|
|
|
Secure private key storage - eg Hardware Storage Module (HSM)
|
|
|
|
|
|
Automated CA lifecycle management and orchestration
|
|
|
|
|
|
DevSecOps code signing and attestation
|
|
|
|
|
|
|
|
|
|
|
| Start for free | Access now on Google Cloud Marketplace | Talk to Jetstack | Talk to Jetstack | |
Speak to an expert
Feel like a conversation with an expert is the next step? Use the form to provide your contact details and we’ll to make contact within 24 hours.
Download our product sheet
Use the link below to provide us with your contact information and we will send you the datasheet