rivet

Autonomous IT support that actually resolves things. Handles access requests, device actions, and the stuff that clogs your queue. Then logs every decision for the auditors.

#it-support

devon hey can I get access to the production AWS console? need to debug a deployment issue

rivet Checking policy…

rivet ✓ You're in the on-call rotation this week. Provisioning read-only access to prod-aws via Okta. Expires in 4 hours.

rivet Done. You can access the console now. Session logged under REQ-2847.

How it works

Someone asks for something. Rivet checks if they're allowed, does the thing, and writes it down.

Request

Employee messages Slack, files a Jira ticket, or pings any connected channel. Rivet picks it up.

Policy check

Evaluates the request against your YAML policies. On-call? In the right group? Auto-approve or escalate to a human.

Execute

Provisions access via Okta, triggers device actions through Jamf, locks accounts in Azure AD. Whatever the policy says.

Audit

Every request, decision, and action logged with full trace. Who asked, what policy matched, what happened, when it expires.

Connects to the stuff you already run

First-party integrations. No middleware, no iPaaS, no "contact sales for the connector."

Slack

Jira

Okta

Jamf

CrowdStrike

Google Workspace

Azure AD

GitHub

PagerDuty

Zendesk

Policy as code

Define who can request what, when it's auto-approved, and when a human has to sign off. YAML config, version controlled, PR-reviewable.

rivet-policy.yaml

# who can request what policies: - name: on-call-prod-access resource: aws-console condition: requester.on_call == true access: read-only ttl: 4h approval: auto - name: prod-write-access resource: aws-console access: write approval: manager ttl: 2h # what to do when confidence is low escalation: channel: "#it-escalation" fallback: [email protected]

Full execution trace

Every decision is logged and reviewable. Hand this to your auditors, your CISO, or your future self at 2am wondering what happened.

execution trace

REQ-2847 · 2024-03-04 11:42:03 ├─ request: aws-console-access (production, read-only) ├─ requester: [email protected] ├─ policy: on-call-prod-access → auto-approve ├─ action: okta.grant_access(aws-console, read-only, 4h) ├─ result: ✓ provisioned └─ expires: 2024-03-04 15:42:03

Free while we figure out pricing.

Rivet is in beta. It's resolving real tickets at real companies, we just haven't started billing yet.

beta

/month, for now

Unlimited ticket resolution
All integrations included
Policy-as-code configuration
Full audit trail
Escalation workflows

Get early access