Keep each client's connections, credentials, docs, IPAM, diagnostics, and operational notes separated and easy to find — without juggling separate tools per engagement.
Spaces are isolation boundaries — not just labels. Each Space holds its own connections, credentials, documents, notes, IPAM, audit log, and Magellan context. Switch from Acme Client to Globex Lab and the workspace flips entirely: new saved RDPs, new vault entries, new docs, no risk of dragging one client's runbook into another's terminal session.
Add technicians as Members on a Shared Space. Define Groups (Engineers, Helpdesk, Auditors). Grant read / write / admin on any folder and let permissions cascade. Bulk command runner and Batch SSH let one technician roll a fix across the client's whole fleet without repeating it manually.
Credentials live in the Space's vault and resolve on connect. No copy-paste between tools, no client password reused across other engagements, no "who has the SSH key for the firewall" Slack thread. Pro envelope-encrypts your Personal credentials under a per-user CMK and syncs them cross-machine. Team and Enterprise add a customer-managed CMK per Shared Space — credentials shared into a Space are decryptable only by Space members, and Group-scoped credentials narrow access further.
Notes, runbooks, host inventories, network overviews, and IPAM (subnets + hosts) live in the same workspace as the SSH session you used to write them. Inline subnet calculator. IT Glue and Hudu importers bring across what you've already maintained. Version history (90 days on Team, unlimited on Enterprise).
30+ network diagnostics, multi-engine database inspector, HTTP / GraphQL / Realtime client, real terminal — all of it inside the active Space. When a client raises a ticket, you open their Space and every tool you need is already pointed at their environment.
Every credential access, document edit, command run, HTTP request, database query, and Magellan invocation logged with actor / action / target / timestamp. Team and Enterprise plans export audit history as CSV, filtered by actor / action / target — useful for client reports, security reviews, and contractual compliance. Enterprise adds cryptographic erasure on offboarding.
Team is $49/seat/month billed annually, with a 30-day free trial — and includes per-Space customer-managed KMS, Group-scoped credentials, and cryptographic erasure on client offboarding. Enterprise adds per-Space audit-log filtering, larger storage caps, and custom contracts.