Pricing

Open Source

Always free
For individuals, or smaller teams.
  • Identity based access
  • SSO support
  • Declarative authorization policy
  • Community support
  • Apache 2 License
Get Started

Enterprise (On-prem)

Contact us
For larger teams or those that need advanced access controls and governance capabilities.
  • Everything in Open Source, plus…
  • Management UI
  • Programmatic API
  • Session management
  • Self-service, and access controls
  • Deployment history & audit logs
  • Hierarchical authorization policy
  • Premium support
Contact Us

Zero (Managed)

Free in Beta
For teams that prefer a managed control plane solution while keeping data governance.
  • Everything in Open Source, plus…
  • Management UI
  • Declarative authorization policy
  • Hierarchical authorization policy
  • Managed control plane
  • Email support
Private Beta Signup
Identity based access
Open Source
Yes
Enterprise
Yes
Zero
Yes
SSO support
Open Source
Yes
Enterprise
Yes
Zero
Yes
Web-based, secure application access
Open Source
Yes
Enterprise
Yes
Zero
Yes
TCP-over-HTTP based, secure server access
Open Source
Yes
Enterprise
Yes
Zero
Yes
Management UI Centrally view and manage access through an admin console.
Open Source
Enterprise
Yes
Zero
Yes
Admin API For programmatic management.
Open Source
Enterprise
Yes
Zero
No
Service accounts
Open Source
Enterprise
Yes
Zero
Yes
User impersonation
Open Source
Enterprise
Yes
Zero
Yes
Team Management & Governance
Simple access control criteria Policies can use group, user, domain attributes.
Open Source
Yes
Enterprise
Yes
Zero
Yes
Comprehensive access control criteria Policies can use user, group, domain, date, time, duration, request context, device context (mTLS), multi-factor auth status and other attributes.
Open Source
Enterprise
Yes
Zero
Yes
Policy builder UI
Open Source
Enterprise
Yes
Zero
Yes
Dynamic authorization policy (using OPA’s policy language rego)
Open Source
Enterprise
Yes
Zero
Yes
Self-service support Application owners are able to self-manage their own apps and services
Open Source
Enterprise
Yes
Zero
Yes
In-console telemetry
Open Source
Enterprise
Yes
Zero
Yes
Reporting & Compliance
Access logs
Open Source
Yes
Enterprise
Yes
Zero
Yes
Audit logs
Open Source
Enterprise
Yes
Zero
Yes
Audit reports
Open Source
Enterprise
Yes
Zero
Yes
Deployment history
Open Source
Enterprise
Yes
Zero
Yes
Deployment events
Open Source
Enterprise
Yes
Zero
Yes
Traffic reports
Open Source
Enterprise
Yes
Zero
Yes
Support
Community docs, and chat
Open Source
Yes
Enterprise
Yes
Zero
Yes
Dedicated chat and email support
Open Source
Enterprise
Yes
Zero
Phone support
Open Source
Enterprise
Yes
Zero
Dedicated customer success manager
Open Source
Enterprise
Yes
Zero

Frequently Asked Questions

Need answers? We are here to help.

Pomerium is an identity-aware proxy that enables secure access to internal applications. Pomerium provides a standardized interface to add access control to applications regardless of whether the application itself has authorization or authentication baked-in. Pomerium gateways both internal and external requests, and can be used in situations where you’d typically reach for a VPN.

Pōmērium was the boundary of ancient Rome and means, literally, “beyond the wall” in Latin [Wikipedia, YouTube]. Just as with its ancient namesake, Pomerium aims to bring enterprise security beyond perimeter security.

You will be billed only for the number of active users who can log in using Pomerium.

We offer a 30-day money-back guarantee. No questions asked.

Yes! Pomerium Open Source is and always will be free. We’re confident you’ll love whichever plan you are on!

No problem. Contact a member of our team, we’ll be glad to help you. support@pomerium.com

Sign up to be notified of new features and product updates

Try Enterprise