Version: Next

Teleport

Teleport is The open source access platform used by DevSecOps teams, used for Privileged Access Management Database Management Tools . The open source access platform used by DevSecOps teams for SSH, Kubernetes, databases, internal web applications and Windows.

GUI

Prepare

When referring to this document to use Teleport, please read and ensure the following points:

Login to Websoft9 Console and find or install Teleport:
- Go to My Apps listing applications
- Go to App Store installing target application
This application is installed by Websoft9 console.
The purpose of this application complies with the apache2 open source license agreement.
Configure the domain name or server security group opens external network ports for application access.

Getting Started

Follow Up Steps for Installation (Necessary)

After installing Teleport on the Websoft9 console, the following steps need to be completed to log in to the backend:

Ensure a domain is set for Teleport and HTTPS access is enabled (Required).
Modify the Teleport configuration file's public-addr configuration item to your real domain name (keeping port 443), and rebuild the application:
```
public_addr:
   - 'example.domain.com:443'
```
Run the following command in the Teleport container to create a super user and generate a registration link (URL):
```
tctl users add admin --roles=editor,auditor,access --logins=root,ubuntu,ec2-user
```
logins=root,ubuntu,ec2-user are required, otherwise you will not be able to connect to the managed Linux later on.
Run the registration link in a local browser to complete the password setup.

If the link is inaccessible or unsuccessful, it indicates that steps 1-2 have not been completed, or there is an issue.
Use the credentials to log in to the Teleport console.

Manage Resources

Connecting to Remote Linux

Log in to the Teleport console, select Resource > Enroll New Resource.
Select an operating system and generate a client installation link.
Log in to the remote Linux server, and copy the previous link for client installation.
After the client is successfully installed, return to the Teleport console. Teleport will automatically detect the client and prompt the user to follow the wizard to complete the next steps.

Configuration Options

Configuration file in the Teleport container (mounted to the src directory): /etc/config/teleport.yaml
Multilingual (x)
IP:Port access method (x): Not supported because self-generated certificates are not secure.
Two-factor authentication: Websoft9 has disabled two-factor authentication in the Teleport configuration file.

Administration

Troubleshooting

After filling in the password, registration still failed?

Ensure that the registration link is accessed through HTTPS.

Failed to connect to the server by IP:Port?

Details: When adding resources, running the installation command on the connected server may result in a curl failure.
Reason: The self-signed certificate has been identified as insecure, and the connection is not allowed.
Solution: Configure a domain name for Teleport and apply for a public certificate.

Prepare​

Getting Started​

Follow Up Steps for Installation (Necessary)​

Manage Resources​

Connecting to Remote Linux​

Configuration Options​

Administration​

Troubleshooting​

After filling in the password, registration still failed?​

Failed to connect to the server by IP:Port?​