EdgeKinect Manager · Orchestration Plane

One pane of glass
for every Core node.

Centralize remote access, key management, definition sync, network services, and user identity across every Core node — no matter how many sites or regions you've rolled out.

0/0
nodes online
0
devices
0
UI to rule them
manager.edgekinect.io / fleet
Fleet · All Regions
6 online1 offline
core-01
North Plant
AB-CA
devices
142
last sync
2s
core-02
West Plant
TX-US
devices
87
last sync
4s
core-03
Compressor Yard
OK-US
devices
56
last sync
now
core-04
Wellhead-04
WY-US
devices
18
last sync
1s
core-05
Pump House B
CO-US
devices
24
last sync
6s
core-06
Refinery Annex
LA-US
devices
0
last sync
12m
core-07
South Substation
FL-US
devices
39
last sync
3s
core-08
Eastern Grid
PA-US
devices
71
last sync
5s
Definitions syncing — 1 node
4,218 keys managed
The four pillars of orchestration

Everything a multi-node deploymentactually needs.

Four tightly-scoped pillars — no surprise modules, no third-party dependencies for the basics. Pick one to explore.

Centralized Management

One window. Every node. Every site.

  • /01
    Multi-node dashboard
    Active vs inactive gateways, devices, assets, sites — at a glance.
  • /02
    Remote node tunneling
    Tunnel into any Core node directly. No separate VPN.
  • /03
    Unified web UI
    Manage every Core instance from a single browser tab.
The Console

One console for every Core node.

Location-aware, everywhere

Every device, gateway, asset and site on a live geo map — GPS positioning that works on your local network, no internet required.

edgekinect.com/geo-map
Location-aware, everywhere

One central key repository

Manage device EUIs, app EUIs and app keys in one place — add devices individually or bulk-import thousands via CSV.

edgekinect.com/devices
One central key repository

Define once, sync everywhere

Manage device, asset, gateway and site types centrally, then push the definitions to every Core node automatically.

edgekinect.com/entity-types
Define once, sync everywhere

Model your deployment

Describe sites as reusable node types — pump stations, transfer stations — and roll them out consistently across the fleet.

edgekinect.com/node-types
Model your deployment

Integrated broker & NTP

A built-in MQTT broker and NTP server run on Manager itself — field nodes sync time and transport without third-party services.

edgekinect.com/services
Integrated broker & NTP

Entities across every node

Track devices and assets with live coordinates and status, aggregated from all your Core nodes into one view.

edgekinect.com/entities
Entities across every node
Centralized Key Repository

Provision a thousand keys
in a single CSV.

Upload device keys, application keys, and EUIs in bulk. Manager validates, dedupes, and pushes them to every relevant Core node — definitions follow automatically.

  • Validates EUIs and key formats before commit
  • Dedupes against existing repository
  • Push to one node, a region, or the whole fleet
device-keys-batch.csv
0/6
EUI Name Status
70B3D5499...A12Pump-Sensor-01 pushing
70B3D5499...B83Pump-Sensor-02 queued
70B3D5499...C44Tank-Level-12 queued
70B3D5499...D71Comp-Temp-07 queued
70B3D5499...E55Valve-Pos-19 queued
70B3D5499...F39Flow-Meter-04 queued
Validated against existing key repository target: all 8 nodes
Remote Access · Identity

Reach any node, sign in without the operational tax.

Remote Node Tunneling

Hop into any node. No VPN spaghetti.

Manager holds the tunnel — click a node, the session opens. No VPN provisioning, no per-site jump host, no firewall dancing.

  • Encrypted channel · short-lived session token
  • No per-site jump host required
  • Auditable session log per operator
manager · tunnel → core-03
$ ekm tunnel open core-03
→ resolving node identity…
→ minting session token (ttl 30m)
→ opening encrypted channel…
tunnel established · core-03.compressor-yard
core-03 $ systemctl status edgekinect-core
active (running) · uptime 41d 6h
core-03 $ _
  1. 01
    Operator opens Manager
    Authenticates once with their Manager identity.
  2. 02
    Picks a Core node
    Selects any managed node from the dashboard.
  3. 03
    Manager mints session token
    Short-lived impersonation token signed for that node.
  4. 04
    Lands inside the Core UI
    Drops straight into the right tenant, no re-login.
Local fallback login stays active on every Core node — field crews keep working even if Manager is unreachable.
SSO · Impersonation

One identity. Every node, one click away.

Manager mints a short-lived session token for the chosen Core node. Operators land inside the right tenant — never re-typing credentials, never sharing accounts.

Platform Architecture

Where Manager fits inthe EdgeKinect stack.

Field devices feed Core. Core translates protocols and forwards to enterprise apps. Manager sits in the management plane — orchestrating every Core node from above.

Management Plane
EdgeKinect Manager
Single pane · key repo · NTP · MQTT broker · SSO
Data Plane · Core Nodes
Core · North
protocol bridge
Core · West
protocol bridge
Core · Compressor
protocol bridge
Core · Wellhead
protocol bridge
Field
LoRaWAN
Modbus / DNP3
Sensors
Enterprise Apps
Ignition
Esri
Historians

Figure 1 — EdgeKinect platform architecture overview

Installation & Hardware

Enterprise server or appliance only.

Manager isn't edge software — it lives in the data center, the colocation rack, or a dedicated appliance shipped to your ops site. Edge work is Core's job.

EdgeKinect Manager · Appliance
Bare metal, VM, or factory-imaged 1U
ARM / edge not supported
Form Factor
Enterprise server or appliance
Architecture
x86-64 (ARM not supported)
OS
Linux-based (modern LTS)
RAM
16 GB recommended
Storage
500 GB+ SSD recommended
Scaling
Vertical & horizontal
Deployment
Bare metal · VM · dedicated appliance
Recommended baseline — sized to fleet, region count, and retention. Sizing guide
Roadmap

Where Manager is heading next.

Centralized auth and compliance hooks are the next big slice — designed in the open with the operators who run the platform today.

Shipping

SSO impersonation

Per-node session minting from the Manager.

Shipping

CSV bulk key import

Upload thousands of keys / EUIs in one pass.

In design

RADIUS / TACACS+ auth

Centralized user management against existing IdPs.

In design

Password policy enforcement

Org-wide rotation, complexity, and MFA hooks.

Future

Compliance audit exports

Tamper-evident activity logs for every node.

Frequently asked

The questions ops teams ask first.

Core runs at the edge ingesting and translating data on-site. Manager sits above many Cores, providing the single-pane orchestration layer — remote access, key management, definition sync, integrated NTP/MQTT, and SSO across every node.
Ready to Deploy

Manage every Core node from one place.

Walk through a deployment briefing with our team — we'll size the appliance, map your existing nodes, and plan the cutover.