Enforce 2FA/MFA and integrate your identity provider
User-scoped allow and denylists through egress firewall rules
Reduce the burden to deploy, configure, and manage remote access
Set a single, static egress IP for all of your team's traffic.
Define what traffic is routed through the encrypted tunnel.
Configure Firezone as a relay between 2 or more peers.
Find answers to product questions and get the most out of Firezone.
View the codebase, request features, and contribute to the project.
Get product updates and connect with the team behind Firezone.
Integrate your identity provider to enforce 2FA / MFA
Require end-users to authenticate before accessing your private networks and resources.
Book a demo
Enable single sign-on (SSO) in minutes. No scripts required.
Legacy VPNs have limited support for identity platforms and integration often require complex scripts. Firezone works with any identity provider that supports SAML 2.0 or OpenID Connect (OIDC).
Integrate your provider
Automatically remove access for users who have left
Manage users centrally using your identity platform. Firezone automatically syncs with your provider to ensure user access is immediately revoked.
Add a time-based one time password (TOTP) for MFA
Meet compliance requirements for MFA and improve your security posture. Add an additional factor for admin accounts and user accounts using local authentication.
Add an additional factor
Require periodic re-authentication to stay connected
Decrease the risk of unauthorized access from stolen devices or leaked configs. Require users to periodically re-enter their credentials to maintain their VPN connection.
Set a session length
Demo: Integrate Okta for SSO
View authentication docs
© 2022 Firezone, Inc. All rights reserved.
WireGuard® is a registered trademark of Jason A. Donenfeld.