Machines Management Platform

    Secure Terminal Access for All Your Infrastructure

    Manage servers, laptops, and bare-metal machines securely from your browser, CLI, or IDE.

    Get Started DocumentationCommunity
    Zero open ports
    Linux · macOS · Windows
    Free community edition
    webxterm — agent setup
    0

    Open inbound ports

    Zero-trust

    0

    OS platforms

    Linux · macOS · Win

    0+

    Enterprise features

    SSO, mTLS, RBAC…

    0.9%

    Platform uptime

    Always available

    Access Methods

    Multiple Ways to Connect

    Choose the access method that fits your workflow — browser, IDE, or terminal.

    You
    Portal
    Machine

    Web Terminal

    Browser-based SSH with full terminal capabilities

    Live

    VSAY VS Code Extension

    Manage servers directly from your IDE

    Live

    VSAY Shell CLI

    Command-line tool for automation and scripting

    Live

    Agent-Based Access

    Deploy agents for seamless, secure connections

    Live
    Privileged Access Management

    One Platform. Complete PAM.

    WebXTerm is a full Privileged Access Management solution — control who accesses what, record every session, and enforce zero-trust across your entire fleet.

    Traditional PAM
    • Complex VPN setup required
    • Open inbound firewall ports
    • Separate credentials per tool
    • No unified audit trail
    • Expensive enterprise licensing
    WebXTerm
    • Agent-based, zero VPN needed
    • Zero inbound ports required
    • SSO & OIDC integration
    • Complete session logs
    • Free community edition
    Zero-Trust

    Zero-Trust Access Control

    Agent-based architecture connects outbound — no inbound firewall rules, no open ports, no VPNs. Every session is authenticated and encrypted end-to-end.

    • No inbound ports required
    • TLS + mTLS encryption
    • Per-session authorization
    Full Visibility

    Complete Audit Trail

    Every command typed, every session started, every login attempt — all recorded with full context. Built for compliance from the ground up.

    • Full command history logging
    • Session logs
    • Real-time activity tracking
    Access Governance

    RBAC & Team Access

    Granular role-based access control so every engineer only reaches what they need. Manage all permissions from one centralized dashboard.

    • Per-user machine access
    • Role-based permissions
    • Centralized admin controls
    SSO & Identity

    Enterprise Identity Integration

    Plug into your existing identity provider. OIDC, Keycloak, Microsoft, GitHub, and Okta — bring your own SSO with zero credential sprawl.

    • OIDC / OAuth2 support
    • Keycloak & Microsoft SSO
    • GitHub & Okta integration
    How It Works

    Access Flow in 4 Steps

    1

    Authenticate

    User logs in via JWT or Enterprise SSO. Identity verified against your IdP.

    2

    Authorize

    RBAC policies evaluated. Only allowed machines are accessible.

    3

    Connect

    vsay-agent receives the tunnel. No inbound ports needed.

    4

    Audit

    Every command logged in real-time. Tamper-evident trail.

    Features

    Everything You Need to Manage Infrastructure

    From web terminals to audit logs, WebXterm provides a complete platform for secure infrastructure access.

    Web Terminal

    Browser-based SSH access with full terminal capabilities. No client installation required.

    Session Management

    Open multiple terminal sessions, monitor logs, and track active connections in real-time.

    Secure Access

    TLS encryption, audit logs, and RBAC. Enterprise plan includes mTLS and OIDC/SSO.

    VS Code Extension

    Connect to machines, use remote terminals, and forward ports directly inside VS Code.

    Agent Architecture

    Lightweight agent runs on any machine — servers, laptops, bare-metal, cloud instances.

    VSAY Shell CLI

    Command-line tool for automation, scripting, and connecting from your local terminal.

    Editions

    Community vs Enterprise

    Start free with Community, upgrade to Enterprise for advanced security and multi-tenancy.

    FeatureCommunity
    EnterpriseFull Access
    Secure SSH Access
    Web Terminal
    Team Collaboration (RBAC)
    Real-time Monitoring
    Audit Logs
    TLS Encryption
    VSAY Shell CLI
    VSAY VSCode Extension
    API Access
    MTLS (Mutual TLS)
    OIDC / SSO (Keycloak)
    Multi-tenancy (Organizations)
    Organization API
    Priority Support
    View full pricing details

    Ready to Secure Your Infrastructure?

    Install the agent in minutes. No firewall changes. No VPN. Access your machines from anywhere.

    Get Started Free Read Docs