NOBA is a public-beta command center for infrastructure operators: monitoring, integrations, remote agents, AI diagnostics, and self-healing workflows under active verification.
Free during open beta. Validate in a lab or controlled environment before any production cutover.
Looking for the community edition? →NOBA is looking for operators and design partners who can extend validation beyond the current real-system AD path coverage into larger fleets, messier directories, and compliance-evidence workflows.
AD paths have been exercised against real Samba AD, Windows Server 2025 AD, and Azure AD / Entra surfaces. The demo shows the operator flow with mock data before you connect real directories.
Review RBAC, SAML, WebAuthn, SCIM, audit evidence, vault controls, freeze windows, and current-state enterprise surfaces before deploying it into your own environment.
See fleet health, risk-tiered commands, remote access, security scans, and self-healing trust levels with mock data before you connect real infrastructure.
The website points to the same evaluation surfaces operators should review before connecting real infrastructure: architecture boundaries, release/update flow, the mock-data demo, and the remote lab validation topology.
Deployment boundaries, agent data flow, release artifacts, R2 manifest, updater behavior, and rollback handling.
The remote lab coverage already exercised, plus the customer-scale validation areas still worth testing.
Who the beta is for, how to evaluate safely, and which design-partner feedback is most useful.
The demo uses mock data and stays fully separate from live NOBA APIs. Use it to understand the operator flow before connecting real infrastructure.
Projects, directory pairs, reconciliation, pre-flight checks, machine safety, password status, and compliance-oriented evidence.
RBAC, SAML, WebAuthn, audit integrity, retention, vault controls, GDPR workflows, freezes, sessions, and API keys.
Agent deployment, fleet health, command risk tiers, security scans, self-healing trust levels, update, and removal workflows.
Real-time telemetry across every host, container, and service.
CPU, memory, disk, network, containers, VMs, DNS queries, temps, ZFS, UPS — streaming live via SSE. Anomaly detection flags unusual patterns automatically. Sparkline charts with zoom, pan, and multi-metric correlation. Not polled. Not cached. What's happening now.
The beta includes a wired remediation set plus a larger action registry that is still being verified. Use self-healing in observation, dry-run, notify, or approval-gated modes until each action is validated against your environment.
The optional AI assistant can use Claude, OpenAI, Ollama, or a compatible endpoint when configured. It works from the live context the app exposes and returns suggested actions that still require operator confirmation.
Zero-dependency Python agents bridge remote locations over encrypted WebSocket. 42 command types across 3 risk tiers. Remote desktop with Wayland, X11, and Windows support. Embedded terminal via xterm.js. File transfer up to 50 MB with SHA-256 verification. Self-update from the server. No VPNs. No port forwarding.
Per-agent security scoring, config audit, and posture ring.
SLA tracking, composite alerts, and predictive capacity planning with confidence intervals.
FIDO2 hardware key and biometric login surfaces for environments that configure passkeys.
Viewer, Operator, Admin. Every action gated by risk tier, every access logged.
Login, command, approval, and healing activity in a searchable operational log.
SAML 2.0, OIDC, LDAP, social login. Integrate with any identity provider.
Azure AD, Entra ID, on-prem LDAP. Role mapping, migration wizards, M&A acquisition merge.
Fernet-encrypted secret storage surface for credentials and operational secrets.
Security controls include HSTS/CSP headers, DOMPurify rendering boundaries, PBKDF2 password hashing, rate limiting, and lockout behavior.
NIS2-oriented compliance checklist and reporting surfaces for teams that need evidence during evaluation.
Component groups, 90-day uptime bars. No auth required. Share with customers.
Pushover, Gotify, Slack, Discord, Telegram, Email, Webhook, ntfy. Composite alert rules with escalation policies.
AD-to-AD consolidation with reconciliation, pre-flight checks, health scoring, drift detection, machine migration, LAPS backup, and rollback decision engine.
NIS2 and SOC2-oriented evidence views, migration records, and post-migration cleanup checklist tracking for evaluation.
curl -fsSL https://www.nobacmd.com/install.sh | bash
# grab your admin password
journalctl --user -u noba-web.service | grep password
Monitor agents, review alerts, and approve healing actions from your phone.
Download Android APKYou're on the list.
Your infrastructure. Your data. Your rules.