Pritunl Zero
Enterprise Zero Trust
Free and open source zero trust server providing BeyondCorp security for authenticated access to web applications and SSH

Supported Single Sign-On Providers
Provide Easy and Secure Access to Web Applications and SSH
Pritunl Zero creates an authentication layer in front of existing web applications. No modifications to the existing web application is required. For SSH servers Pritunl Zero will maintain a certificate authority and provide controlled SSH access with additional layers of authentication.

Network Policy Control
Control access based on permitted and blocked networks.

Mutli-Factor Authentication
Require multi-factor authentication from providers with secondary authentication support including Duo, OneLogin Protect and Okta Verify

WebAuthn Device Authentication
Authenticate users with hardware WebAuthn tokens including the YubiKey and Google Titan Security Key
Protect Internal Web Applications with Minimal User Impact
Add a nearly seamless layer of authentication to your existing internal web applications without impact usability or device support. Pritunl Zero works with all existing web browsers without requiring any additional software on the client.
Simple Authentication
When users access internal web applications they will be prompted to complete authentication and fulfill any configured policy requirements.


Automatic SSL Certificates
Automatically create SSL certificates from Lets Encrypt with support for HTTP validation on port 80 or DNS CNAME validation using AWS, Cloudflare or Oracle Cloud support DNS APIs. Wildcard certificates are supported when using DNS CNAME validation. Certificates will automatically renew allowing effortless managment of ceritificates for the internal web applications.
Endpoint Management
Pritunl Endpoint provides monitoring of Linux endpoints with log storage. Detailed charting for system activity and usage allows for a quick overview of infustrucutre health.

Create an Authenticated Visual Studio Code Web Server
View the tutorial to install and configure a Coder VSCode server to run a self hosted VSCode editor in the browser with authentication.

Enterprise Device Security and Access Control
Control user access with role based access controls and detailed auditing.



Open Source Zero Trust
Easily scalable open source zero trust with high availablity

Single Sign-On Authentication
Single sign-on support with Auth0, Azure Entra, Google Workspace, OneLogin, Okta and JumpCloud.

Multi-Factor Authentication
Multifactor secondary authentication from Duo, OneLogin Protect, Okta Verify and any WebAuthn hardware token including YubiKeys and Google Titan Tokens.

Open Source Code Base
All source code for Pritunl Zero is available on GitHub, allowing for transparency and customization

High Availability
All nodes run independently and will continue running in the event of other nodes failing. Additional nodes can be added and removed as needed for fast scaling without downtime.
Pricing Plan
Pritunl Zero is free to use with no limits on the number of servers or users. An optional subscription provides enterprise features including single sign-on and geo-IP data. The subscription can be activated from the admin web console at anytime.
Single Sign-On Authentication
Single sign-on authentication with Auth0, Azure Entra, Google Workspace, OneLogin, Okta and JumpCloud.
Automated Data Management
Geo-IP information with city and ISP data for user audit logs and location based access controls.
Unlimited Users and Servers
No additional costs for additional servers or users.
Compare Pritunl Zero
Pritunl Zero provides a free and open source alternative to many availabel zero trust systems