Skip to main content
Asset Management covers everything you onboard into Osto for protection. It maps to the Assets section in the dashboard sidebar: 
Assets
├─ Domains
│  ├─ Manage Domains       → see Managing Websites & Subdomains
│  └─ Manage Certificate   → see Managing SSL Certificates
├─ Endpoint Users          → see Managing Users & Groups
└─ Server Access
   ├─ Secure Server        → standalone hosts (install script per host)
   └─ Secure Gateway       → broker + child servers behind it (private IPs)

In this section

Two paths for server access

Osto offers two ways to put a server behind Zero Trust access:
  1. Standalone Secure Server — install Osto’s agent directly on each server. Best for a small number of hosts, or hosts on different networks. Linux and Windows supported.
  2. Secure Gateway with Child Servers — install the gateway agent once on a Linux host inside your network; then register child servers by their private IP. The gateway brokers connections to them — no per-server install needed. Best when many internal hosts share a network segment.
Both approaches are covered in Managing Secure Servers.

A typical onboarding order

  1. Domains first — add your root domain (or just a subdomain) and update DNS to point traffic through Osto. Inbound protection becomes active immediately.
  2. Certificates — upload a certificate so traffic between Osto and your origin stays encrypted.
  3. Endpoint Users — invite your team. They install the Osto agent and start receiving endpoint policies.
  4. Secure Servers — register the hosts you want Osto to broker access to (either standalone or behind a Gateway).
Once these are in, the rest of the platform (Scanner, Code Security, Posture Management, Compliance) has something to work with.