A standalone PAM and job-automation platform for your server fleet — vaulted credentials, a browser terminal, recorded sessions, and automation, with no monitoring stack required. Already run Zabbix? It integrates there too, natively.
Eleven capabilities, each doing one job — so an incident in one never means trusting all of them.
Every SSH session recorded end-to-end and replayable — not just that someone logged in, but every command they ran.
Fine-grained roles decide who can view, connect to, or run jobs on which hosts — enforced on every request.
Organize servers into host groups and people into user groups, then grant access by group, not one at a time.
Encrypted vault, fail-fast config with no default secrets, redacted logs, clickjacking protection — the architecture, not an add-on.
Run Ansible-style playbooks or raw scripts across your fleet from reusable job templates, scoped to allowed hosts.
Block specific commands per host or group in the browser terminal — stop a risky command before it runs.
Ship audit and session logs to Elasticsearch or S3 from one Admin screen — no per-service log wrangling.
SSH credentials encrypted at rest, scrypt-derived keys, never logged or exposed in plaintext.
Already run Zabbix? A frontend module adds a SeyalRun menu and one-click terminal icons — one login, not two.
One aggregate HTTP endpoint reports health and metrics for every service — no sidecar, no Docker socket exposed.
Every feature is reachable over its REST API — issue scoped Personal Access Tokens to plug into your own tooling.
Your browser only ever talks to one address. Every step after that — checking who you are, unlocking a server's credential — happens behind closed doors, and nothing runs without its own security token.
Prebuilt images, no source checkout. Generates secrets, a self-signed cert, and seeds the superadmin account.
Configuration reference, architecture, security model, and the Zabbix module install walkthrough.