Po

Pomerium on Ubuntu 24.04 LTS

Azure Security

pomerium, an open source identity aware access proxy, serving TLS with unique secrets generated on first boot.

Base
Hardened build
minimal ports, security patches applied at build time
Access
Unique credentials
generated on first boot, readable only by root
Verified
Boots working
services pass a health gate before release
Support
24/7, 365 days
by email and live chat, 24 hour response SLA

Overview

Pomerium is an open source identity aware access proxy. It sits in front of your internal applications and authenticates every request against your own identity provider, then enforces per route authorization policy, so you grant access by identity and context rather than by network location.

Why the cloudimg image

cloudimg delivers Pomerium hardened, fully patched and preconfigured, terminating TLS on first boot with a per VM self signed certificate and a unique shared secret and cookie secret generated on first boot, so no secret ever ships in the image. You wire up your own OIDC provider, then gate any upstream. Paired with a step by step deploy guide and backed by 24/7 support.

Common uses

  • Identity aware access to internal web applications
  • A zero trust reverse proxy in front of your own upstreams
  • OIDC single sign on gateway for self hosted tools