AccessFence

AccessFence is a web app plus lightweight desktop agent that continuously audits who actually needs VPN access and automatically tightens it. It connects to your VPN/IdP stack, watches real usage, and flags (or auto-removes) accounts, groups, and routes that haven’t been used or are risky (new geo, impossible travel, unusual hours). Instead of replacing your VPN, it hardens what you already run by enforcing time-bound access, just-in-time approvals, and least-privilege network segmentation policies. It ships with prebuilt playbooks for common setups (Okta/Azure AD + WireGuard/OpenVPN + common firewalls) and generates human-readable change plans and rollback steps so admins aren’t scared to apply them. This is not magic “zero trust” marketing—it's a pragmatic control layer that reduces over-permissioned VPN sprawl, which is where many real incidents start.