Skip to main content
ngrok IAM helps you manage access to your account. Give each person or system their own credentials, rotate or revoke access when needed, and see every change tied to a specific identity in audit logs. You can also set up single sign-on (SSO) with your identity provider and manage multiple ngrok accounts from one user.

Concepts

Users

Manage human users who can log into the dashboard, start agents, create endpoints, and access the API.

Service Users

Create dedicated credentials for automated processes that interact with your ngrok account programmatically.

Role-based Access Control

Enforce least-privilege access by restricting what actions each user can take within your account.

Single Sign-On

Federate identity with your IdP and enable SSO authentication for dashboard access.

Account Domain Controls

Enforce organization-wide account usage by requiring users with your email domain to use your account.

Use cases

Site-to-site connectivity

Grant secure access to customer network resources like REST APIs and databases without exposing them to the public internet.

Secure SSH and RDP access

Enable technicians and IT admins to maintain remote devices and servers via SSH or RDP through edge gateways.

Remote IoT device access

Access smart factory IoT devices, telemetry sensors, and monitoring dashboards from remote networks.

Device gateway with SDK

Embed ngrok connectivity into Python applications to access APIs running on IoT devices.

Kubernetes customer networks

Connect from your Kubernetes cluster to customer on-premises systems like inventory databases and payment APIs.

What’s next?

  • Manage team access with Users and invitations.
  • Create credentials for automation with Service Users.
  • Federate identity and require IdP login with Single Sign-On.