European Leader In Privileged Access Management

Easy to use and easy to deploy, the WALLIX Bastion PAM solution delivers robust security and oversight over privileged access to critical IT infrastructure. Reduce the attack surface and meet regulatory compliance requirements with simplified Privileged Access Management.

WALLIX is named an “Overall Leader” in the KuppingerCole Analyst 2020 Leadership Compass for Privileged Access Management – Download the report to learn more!

Comprehensive Access Security Features

Defend your critical assets from cyber-attack with powerful and easy-to-use Privileged Session Management capabilities. Achieve cybersecurity compliance requirements and monitor privileged session activity, all while increasing IT admins’ productivity and enabling and easy control over privileged access.

The WALLIX Session Manager offers IT leaders a powerful solution to manage, control and audit access to network assets with strong security posture ensuring that only the right person has access to the right IT resources.

Securely store credentials in a controlled vault and protect passwords against theft and sharing thanks to high-end encryption. Eliminate the use of passwords written on sticky notes or stored in unsecured Excel files, or worse, saved in clear text scripts for all to discover. Leverage high-level password security controls as well as Application-to-Application Password management for tight control over privileged credentials.

The WALLIX Password Manager enables IT leaders to easily control and manage their passwords, secrets and credentials. It operates with the WALLIX vault or integrates with third-party vaults to protect and enhance existing investments.

Enable secure remote access for IT administrators and external providers to connect safely from anywhere with secure-by-design capabilities; empower your IT team to ensure that only the right person can access the right resource for the right purpose.

Eliminate the need to open an RDP, SSH, or Telnet connection thanks to the Access Manager’s HTML5 browser-based connectivity with session management. No additional plugins or fat clients needed on endpoints, and no untraceable VPN infrastructure to secure access to critical resources.

The WALLIX Access Manager offers advanced multi-Bastion Global Search capabilities for privileged session forensic analysis and can distinguish tenants spanning across several Bastion instances, for a global multi-tenant Privileged Access Management architecture.

Admin rights can introduce critical vulnerabilities to your vital assets. Ensure that the right privilege is granted to the right user at the right time, without compromising productivity.

Privilege Elevation and Delegation Management offers Least Privilege control over access rights to your most sensitive IT resources. Eliminate overprivileged users and minimize security risks without impeding your teams’ productivity.

Enable DevOps and Robotic Processes to automatically access critical IT resources in real time without vulnerable, hard-coded credentials left in scripts. The AAPM module is an easy-to-install software that works with Ansible, Terraform, and other similar tools to allow sealed access to target passwords stored in the WALLIX Bastion Vault.

The WALLIX Application-to-Application Password Manager enables DevOps to access critical resources without ever knowing the credentials. All secrets are safely stored and AAPM enables completely secure access for DevOps tools or robots for unrivaled security and control and unimpacted productivity.

Secure Remote Access

Remote work is increasing in organizations worldwide, creating a need to facilitate secure access to more and more remote users, and making traditional VPN solutions less and less relevant due to their cost and complexity.

Deliver secure remote access to IT admins and external providers via an HTML5-based secure connectivity solution accessible from any browser. Eliminate the need for RDP, SSH, or telnet connections making access to the WALLIX Bastion simple and feature-rich. Remote Sessions benefit from the same level of control, approval, tracking and monitoring as internal sessions, enabling IT supervisors to control, audit and analyze all privileged access from anywhere.

Learn more

Just-In-Time & Zero Standing Privileges

Just-in-Time (JIT) and Zero Standing Privileges policies are the ultimate way to protect IT assets and ensure that the right user has access to the right resources, for the right purpose and for the right timeframe. Grant privileges only as and when needed to reduce the attack surface, minimize insider threat, and implement a robust security policy to protect sensitive IT resources. Provide privileged access to systems only as needed based on the Principle of Least Privilege, no more, no less.

Learn more

Scalable PAM Made Easy

Experience scalable deployment for the best Total Cost of Ownership (TCO), both on-premise and in the cloud.

Deploying a PAM solution is not a one-off project. The WALLIX Bastion is a modular solution enabling organizations to deploy the solution according to macro-level needs, launching features one at a time to facilitate a long-term, sustainable approach to privilege access security. Show results and have the Bastion up and running quickly, and add additional components in a graduated process for ease of change management.

Benefit from significant savings in the short and long term. The WALLIX Bastion's flexibility and the small number of servers required to run the solution enable IT teams to gain significant savings in administration costs, maintenance costs and infrastructure costs, making the WALLIX Bastion PAM solution cost-effective at all phases.

Learn more

Robotic Process Automation (RPA)

Robotic Process Automation (RPA) is increasingly gaining importance in IT and OT organizations. More and more granularity is required to drive Privileged Access Management tools and automate their tasks. With the WALLIX Bastion REST API, users may access any of the feature of the Bastion as if they were accessing it from the usual user interface. Any feature available in the traditional GUI is made accessible via an API which gives the robot accessing the Bastion the same level of functionality as any human working on it, including access to secrets and credentials or access to multiple systems .

Secure the IT/OT Convergence

Powerful Secrets Management

Enforced credential complexity ensures critical systems’ credentials meet strict password criteria
Automated rotation of passwords routinely, after use to stop breaches with shared or hijacked passwords, by account or by domain
Automated restart of services after password rotation of service accounts
Store secrets in a highly secured vault
Eliminate generic Admin and Root passwords shared and used by anyone

Learn more

AAPM for DevOps & Automation

Secure application-to-application password management
Integrate within Ansible, Terraform, and other similar tools
Secure Robotic Process Automation and Machine-to-machine access security with seal-based AAPM
Eliminate hard-coded passwords in clear text scripts and configuration files for efficient, secure automation
Integrate with industrial systems to enable easy password check-out for connected industrial gateways

Learn more

The WALLIX Bastion

Flexible Licensing

Adaptable to any business model, the Bastion is available by:

Yearly Subscription with a 12 to 36 month maintenance subscription

Perpetual License with maintenance for 12 to 36 months

On-Demand based on monthly subscription + monthly overhead usage for a minimum 12-month contract, maintenance 12 to 36 months

Get in touch

Cloud Marketplace

The WALLIX Bastion is available on multiple cloud marketplaces for a variety of technical environments, including:

• Azure

• KVM/OpenStack
• Hyper-V
• VMware



  • WALLIX Bastion meets all the needs of organizations, from SMEs to large accounts:
    • The Bastion platform (the Bastion) offers the following PAM functionalities:
      • Access control
      • Password vault
      • Privileged Session Management
      • Password and SSH Key Management
    • Bastion options:
      • Access Manager (AM)
      • Application to application Password management (AAPM)
      • Universal Tunneling (UT)
      • Privilege Elevation and Delegation Management (PEDM, BestSafe)
      • Authenticator (MFA)
      • HA 3+ Clustering (HA with 3 or more nodes per cluster)
      • WALLIX Academy
      • WALLIX Professional Services


    Download the brochure


“We were looking for a solution which could simplify and secure access to our infrastructure for our users and third-party suppliers. We chose the WALLIX Bastion as it was easy to use and manage, as well as meeting all our security requirements."
"We continue to deploy Bastion to this day as it has been proven time and again that the solution is reliable, its integration is efficient and it meets all our traceability and automation criteria."
"By bringing our combined experience and expertise to the table — WALLIX in privileged account management and Schneider Electric in industrial system technologies —it is possible for us to unveil the i-PAM solution (Industrial Privileged Access Management), designed to control service providers’ access to industrial architectures. We are proud to say that we have become the go-to integrator offering this dependable solution in industrial environments."
"The WALLIX Bastion goes much further than VPN firewalls. It allows us to see everything our external service providers do on our information systems and avoids us having to provide them with the logins and passwords of our target resources, which are sometimes critical. As a result, we have complete peace of mind and confidence when we allow our more than sixty external service providers to work on our network. When everything is running smoothly, we can monitor everything done on the network by our service providers, which are not hospital employees,and we can respond more effectively, rapidly and appropriately in the event of an incident."

Request a demo of the WALLIX Bastion

Discover how you can secure your digital future with the Bastion Privileged Access Management solution

Request a Demo