Just-in-time Network Access: Demo and Q&ASign up now
Product
Solutions
Enterprise
Customers
Docs
Blog
Pricing
Download
Get started - it's free!
Login
WireGuard is a registered trademark of Jason A. Donenfeld.
Terms of ServicePrivacy Policy
© 2025 Tailscale Inc. All rights reserved. Tailscale is a registered trademark of Tailscale Inc.
Blog|productMarch 18, 2025

Tailscale just-in-time network access, now generally available

Green shapes on a dark green background
At Tailscale, security and simplicity go hand in hand. Organizations today face the challenge of managing access to critical resources without introducing unnecessary risk. Standing privileges—permanent elevated access granted to users—can increase a team’s attack surface, creating potential security vulnerabilities.

Just-in-time network access is now generally available for Tailscale Enterprise users, providing an API-first native solution to enhance security by granting temporary, time-bound elevated access to critical resources, without a need for third-party tools. With JIT access, organizations can ensure users receive only the permissions they need, for the exact duration required, reducing exposure to potential threats.

What is just-in-time access?

Just-in-time access is a security best practice that grants temporary, on-demand elevated access to users only when necessary. Instead of assigning long-standing permissions, access is provided for a predefined time period and then automatically revoked, ensuring minimal exposure.

Whether it’s contractors needing remote access, DevOps engineers troubleshooting, or third-party vendors maintaining systems, JIT access ensures they get only the permissions they need, for the exact time they need them—and not a second longer.

A screenshot from the Tailscale Slack Accessbot showing options for granting JIT access.
The Tailscale Slack Accessbot is built on the JIT network access API, and allows teams to request and grant network access from within a Slack workflow.

JIT access simplifies access management for IT and security teams, ensuring that users can quickly gain the permissions they need while maintaining strict control over sensitive systems. By eliminating standing privileges, organizations can significantly reduce the risk of unauthorized access due to credential compromise. JIT access helps organizations align with security frameworks such as SOC 2, HIPAA, and GDPR by enforcing the principle of least privilege.

Key features of Tailscale JIT network access

  • Time-bound permissions – Temporary access is granted for a specific task and expires automatically.
  • API-first automation Security and IT teams can automate JIT access requests and approvals using Tailscale’s robust API, enabling integration with custom workflows and compliance systems.
  • Approval workflows via Slack or Github Action – Users can request access through Slack or Github Action, with approvers granting access for a defined duration.
  • Comprehensive audit logging – Every access request and approval is logged, providing a clear audit trail for compliance and security teams.

Get started with JIT access today

Tailscale just-in-time access is now generally available for all Enterprise Plan customers. If access and permissions management gives you JITters, our documentation is here to help.

For organizations looking to enhance security while maintaining flexibility, Tailscale’s JIT access provides a seamless, integrated solution that minimizes risk and simplifies access management.

If you have any questions or would like to explore how JIT access can benefit your team, contact us today.

Share

Author

Tinku ThomasTinku Thomas

Contributors

Anton Tolchanov
Paul Scott
Kristoffer Dalby
James Sanderson
Remy Guercio
Cameron Stokes
Loading...

Try Tailscale for free

Get started
Schedule a demo
Contact sales
cta phone
mercury
instacrt
Retool
duolingo
Hugging Face