Consible

A little bit about us...

Consible is an independent access management and monitoring solution used to ensure accountability between multiple parties when accessing servers. An example of this is where two companies have an operations or development level contract specifying that access must be provided to both parties. Consible ensures that everyone has the right level of access and that all activity is recorded to ensure accountability.


How?

We provide a simple to use web interface where users can manage, access and review all activity across their servers.

Features

Consible aims to provide an easy to use and understand interface for managing and monitoring access to your servers.

Permissions Management

Consible has permissions management that scales with your business. From a simple flat structure, you can expand out to custom developed permissions management that suits your business.

Hardened Security

Everything developed in Consible was designed with your security in mind. We have built many protections and security related features into Consible. See the security section for some of highlights.

Terminal Replays

Consible records all activity on all sessions managed on your server. These recordings can be replayed at any time, just like you would replay a video. If that isn’t enough, you can get a detailed analysis of exactly what went on.

PCI Compliance

Consible helps with PCI compliance, contact us for more details.

Autoscaling Discovery

Consible is built for cloud based companies. As a result we have specific features such as several built in methods for handling auto scaling resources.

Security

How we secure your resources so you don't have to think about it.

AES Encryption

All sensitive information that we record is kept encrypted at rest with AES-256 GCM. Session recordings of your terminal output are stored in our custom encrypted block filesystem which are then secured with each users credentials.

Onion Encrypted Keys

Permission management is enforced with a combination of nested RSA4096 and AES265 enforcing access control at a encryption level. All encryption is a one-way chain from each users original password down to each action in each session.

Advisory Notices

While Consible doesn't directly perform certain actions, we will let you know if any unusual activity has occured, or we believe that actions are required based on our best- practices to ensure your account and remote systems stay secure.

Intrusion Monitoring

By having a centralized web based entry point, we can proactively keep watch over your remotes to ensure that only the users and teams with the right level of access can make it onto your systems.

Pricing

Choose a plan that fits your business requirements


SaaS Cloud

Get started as soon as possible, with our simple cloud based offering. All the service is managed for you. All you need to do is put in your details.

Our plans start from $100/month, or $1000/annum. Please contact us to discuss your requirements.

Dedicated Cloud

We can manage a private cloud based instance for you. You and your clients will be the only users with access to the dedicated instance, using your domain name!

Our plans start from $25,000/annum. Monthly pricing is available. Please contact us to discuss your requirements.

On Premise

For those that require on premise deployments, we can provide a virtual appliance you can install on site.

Our plans start from $25,000/annum. Monthly pricing is available. Please contact us to discuss your requirements.

FAQ

If your query is not answered below, please contact us for further help.

How is my data stored and encrypted?

All customer data is encrypted at rest and in transit. We use a special onion based database encryption scheme that ensures that access policies are enforced at the encryption level. This is done using a combination of Parent-Child based AES key-chaining and RSA key exchange inside the database and data store.

Customer recordings are stored in a custom file format, which is also encrypted using the same system as above. This data is stored in S3 which can be a provided bucket, or your own if required. (Contact us.)

What information is recorded?

Every action on the system is recorded, such as connecting to a server, watching a previous replay, joining a team, changing settings, every keypress inside a terminal, and so forth. This information is exposed to the correct level of access. If required some events can be exported to a 3rd party end point. (Contact us.)

What are my options for using the software?

We support:

  • Our Standard Cloud environment
  • A private cloud instance (run by us)
  • On premise (run by you)

We highly recommend using us as an independent party to help enforce accountability and as a safeguard.

What ways can I access my servers?

We support:

  • SSH Directly from a fixed IP address
  • SSH Via VPN
  • SSH via a virtual appliance deployed on your infrastructure
  • An agent that runs on each of your servers, and creates a back connection (SSH-less)

What are your requirements for on premise or private cloud deployments?

Please contact us! It would help to know what your requirements are. How many users/servers? How long you need to retain data? How many sessions do you expect to occur?

Typically we recommend having a highly available setup of at least 2 machines in a cluster. However the application is built around micro services and could be split up further depending on requirements.

Say Hello

Ready to keep in touch with me for amazing things?.

Email

contact@consible.com