[alexmensch]

Hi Everyone! We launched Twingate on Show HN 6 months ago. Excited to share more about a concept we’re calling “Identity-First Networking” and a bunch of product enhancements & partnerships.

While most SaaS applications have already moved to SSO and Identity based controls, Twingate extends SSO and identity-based access to everything else on your private networks - private admin interfaces, servers, databases, k8s clusters, etc..

Also, with every network connection authenticated against a central user identity and authorized by security policies defined in Twingate, we also provide an identity-first view of private network flow. All private traffic is always directly associated with user identity, including the authorization rule that allowed the connection, network path information, data volume transferred, and port details. This provides an auditable record for compliance needs, investigating incidents, etc..

Twingate is free to try it out and we’d love to get your feedback!

[jarym]

Congratulations to Alex and the team. SCIM-based sync is exciting - not least because I've had to deal with this for my current customer (Azure AD + external cloud vendor's service).

I think this might seem boring to most of the startup cloud but putting in place the native 2FA might make it much easier to get certain business certifications like SOC-2.