Securing AI
Bring AI usage into focus with Aperture by Tailscale
The unified AI governance solution that gives a clear picture of how you’re using AI and what it costs.
The unified AI governance solution that gives a clear picture of how you’re using AI and what it costs.
Everyone is adopting AI, but now it’s time to understand what you’re using it for, who is using it, and how it is being managed. Log every AI interaction and attribute it to an identity. Audit trails are available day one: know exactly who is calling which models, when, and how many tokens are used.
Declutter from rapid AI adoption’s collection of tools, providers, and credentials with no central inventory, no consistent access controls, and no single place to make changes. Aperture by Tailscale has an endpoint for each provider, centralized inventory, and access tied to identity instead of keys.
Aperture by Tailscale supports major agents like Claude Code, Codex, Gemini CLI and agent frameworks that support a custom base URL. Connect self-hosted OSS models and hosted models from OpenAI, Anthropic, and Google.
Close the governance gap with Aperture and Tailscale as the trust boundary
Every request is logged with the identity of the caller, the model called, the provider, the timestamp, and the token count.
Apply your policy to every AI call across your organization. Updates take effect immediately across all teams and environments. No redeployment required.
Authenticate with Tailscale’s network identity, not credentials you need to distribute and manually rotate that may leak.
With credentials for every provider in one place, adding a new provider is a configuration change, and revoking access is one policy update.
The same identity in a development environment gets the same policy in production. No more environment-specific credential management.
Access to AI is granted through policy. Define it once to control which users, teams, or automated systems can call which models, at what rate, and with what controls.
Define token and request rate limits per agent, per team, or across the organization.
Prevent a team from using a high-cost model in contexts where a lower-cost model would work. Add new providers only with procurement approval.
Enforce your organization's AI usage policy at every request. IT defines what is sanctioned. Aperture applies it automatically.
With Aperture, you only need a single API key per provider. The gateway uses Tailscale identities to identify connecting users and agents, meaning it’s no longer necessary to distribute keys to individual users.
Aperture works with any coding agent that allows the end user to replace the base URL of the API endpoint. It supports Claude Code, Codex, Gemini CLI, Roo Code, Cline, and others.
We do not have published pricing during the current Alpha and Beta period. Contact sales to learn more.
Aperture is available via self-serve now! You can sign up today.
We’re currently experimenting with multiple deployment options, and supporting Alpha and Beta customers one-on-one. Contact sales to learn more.
Yes, Aperture currently supports S3 export.
Aperture can be purchased for use separately from paid Tailscale plans.
Yes, as long as it’s possible to run Tailscale. Aperture and Tailscale work in common containerized environments, like GitHub Actions, without needing to expose either the agent or gateway to the public internet.
Currently, Aperture can extract MCP and local tool calls from popular agents. We are planning to add more fine-grained MCP control.
Yes, it’s possible to proxy self-hosted LLMs with Aperture without exposing the endpoints to the public internet.