Teleport provides connectivity, authentication, access controls and audit for infrastructure.

Here is why you might use Teleport:

• Set up SSO for all of your cloud infrastructure [1].
• Protect access to cloud and on-prem services using mTLS endpoints and short-lived certificates.
• Establish tunnels to access services behind NATs and firewalls.
• Provide an audit log with session recording and replay for various protocols.
• Unify Role-Based Access Control (RBAC) and enforce the principle of least privilege with access requests.

[1] The open source version supports only GitHub SSO.

Teleport works with SSH, Kubernetes, databases, RDP, and web services.

Architecture: https://goteleport.com/docs/architecture/ Getting Started: https://goteleport.com/docs/getting-started/

Sourced from Teleport's README.

Highlights

• Teleport (one click deploy)
• PostgreSQL Backed Storage
• Automatic Administrator User Creation

Usage

Deploy this template, acknowledge how to register for your Teleport cluster, and manage your new instance in your browser. Delete the Bootstrap service once you have access to Teleport. You can recreate it if you need to reset your administrator password.

License

Teleport is distributed in multiple forms with different licensing implications.

The Teleport API module (all code in the repository under /api) is available under the Apache 2.0 license.

The remainder of the source code in this repository is available under the GNU Affero General Public License. Users compiling Teleport from source must comply with the terms of this license.

Teleport Community Edition builds distributed on http://goteleport.com/download are available under a modified Apache 2.0 license.

Helpful Resources

• https://github.com/6ixfalls/railway-teleport
• https://github.com/gravitational/teleport https://goteleport.com/docs/reference/config/#reference-configurations