Product SSH DevOps

SSH from your phone browser

About 4 min read

When something breaks off-hours, you often have your phone—not a laptop with keys and an SSH client already open. CertLocker now works well enough in a mobile browser that you can review state, open a scoped token, and land in a real shell without installing another app.

What you can do from a phone

  • Glance at the dashboard—certs, hosts, and renewal pressure in one place.
  • Browse tokens as readable cards instead of squinting at wide tables.
  • Open an in-browser terminal to a host your token allows—same session you would use at your desk.

This is still the CertLocker web app in Safari or Chrome on your phone. The point is practical: fewer steps between “I got paged” and “I am on the box,” without juggling a separate SSH terminal, copied hostnames, and key files on a small screen.

Dashboard on a narrow screen

The home view is where you sanity-check certificates and renewal windows before you drill into access. On mobile it loads the same widgets as desktop—charts and counts—once data is in, not an empty skeleton frame.

CertLocker dashboard on a Samsung phone with certificate and host widgets loaded

Open full-size screenshot

Real device capture—dashboard after widgets load, before you open a shell.

Find the right token

Tokens list as stacked cards on small viewports. You can see name, scope, and status without horizontal scrolling. Tap through to the token that covers the dev or prod hosts you need.

Tokens page on mobile showing scoped SSH tokens as cards

Open full-size screenshot

Pick the SSH scope (for example dev) that includes the host you need.

Hosts and the terminal button

Token detail shows the machines in scope. Each row exposes the same terminal action you use on a laptop—open the session in the browser, full-screen friendly on a phone, with host selection if you have more than one target.

Token detail on mobile listing dev hosts with terminal actions

Open full-size screenshot

Host rows stay tappable; the terminal control is on the same row as the hostname.

In-browser SSH—no second app

Tap Open terminal for the host (here, dev-01). CertLocker negotiates the session and renders the shell in the page. You are not pasting into Termius or JuiceSSH; you are using the access CertLocker already issued for that token. On a phone, use the Interrupt key in the bar above the terminal for Ctrl+C—mobile keyboards do not send it.

Live SSH session to dev-01 inside CertLocker on a phone browser

Open full-size screenshot

Connected shell to dev-01 in portrait—the same session you use at your desk.
Same SSH session in landscape on a phone

Open full-size screenshot

Rotate for more width—here running htop on dev-01 without a separate SSH app.

When this helps

On-call approvals, quick log greps, confirming a cert renewed, or showing a colleague that access is scoped and audited—all situations where opening a laptop is slower than unlocking your phone. You still need network reachability to the host and a valid token; CertLocker does not bypass your security model—it makes the approved path usable on mobile.

If you run a mixed estate, the same console also keeps improving cloud import and TLS checks on imported hosts—we covered that engineering work in Build Notes: May 2026 .

Try it on your infrastructure

Certificates, scoped SSH, audit, and delivery in one place—including when you only have your phone.

Related reading