The easiest, and most secure way to access and protect all of your infrastructure.
AGPL-3.0 License
Bot releases are hidden (Show)
Published by r0mant over 2 years ago
This release of Teleport contains multiple features, improvements and bug fixes.
tsh
configuration preferences. #10336
HTTP_PROXY
support to tsh. #10209
tsh
and tctl
show to include usage information on invalid command line invocation. #11174
tctl <resource> ls
output to make it consistent across all resources. #9519
tctl auth sign
. #10949
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by r0mant over 2 years ago
This release of Teleport contains multiple performance and stability improvements.
tsh
ignoring TELEPORT_HOME
environment variable. #11094
max_connections
allowance. #10879
ClusterConfig
backwards compatibility. #11145
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by r0mant over 2 years ago
This release of Teleport contains multiple improvements and bug fixes.
tsh aws ecr
returning 500 errors. #11108
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by r0mant over 2 years ago
Teleport 9.0 is a major release that brings:
Desktop Access adds support for clipboard sharing, session recording, and
per-session MFA.
Teleport Machine ID Preview extends identity-based access to machines. It's the
easiest way to issue, renew, and manage SSH and X.509 certificates for service
accounts, microservices, CI/CD automation and all other forms of
machine-to-machine access.
Database Access brings self-hosted Redis support, RDS MariaDB (10.6 and higher)
support, auto-discovery for Redshift clusters, and auto-IAM configuration
improvements to GA. Additionally, this release also brings Microsoft SQL Server
with AD authentication to Preview.
Moderated Sessions enables the creation of sessions where a moderator has to
be present. This feature can be selectively enabled for specific sessions via
RBAC and can be used in conjunction with per-session MFA.
Desktop Access now supports copying and pasting text between your local
workstation and a remote Windows Desktop. This feature requires a Chromium-based
browser and can be disabled via RBAC.
Desktop sessions are now recorded and stored alongside SSH sessions, and can be
viewed in Teleport's web interface. Desktop session recordings are fully
compatible with the RBAC for sessions feature introduced in Teleport 8.1.
Per-session MFA settings now apply to desktop sessions. This allows cluster
administrators to require an additional MFA "tap" prior to opening a desktop
session. This feature requires a WebAuthn device.
Machine ID allows the creation of machine / bot / service account users who can
automatically issue, renew, and manage SSH and X.509 certificates to facilitate
machine-to-machine access.
Machine ID is a service that programmatically issues and renews short-lived
certificates to any service account (e.g., a CI/CD server) by retrieving
credentials from the Teleport Auth Service. This enables fine-grained role-based
access controls and audit.
Some of the things you can do with Machine ID:
Machine ID getting started guide:
https://goteleport.com/docs/ver/9.0/machine-id/getting-started/.
You can now use Database Access to connect to a self-hosted Redis instance or
Redis cluster and view Redis commands in the Teleport audit log. We will be
adding support for AWS Elasticache in the coming weeks.
Self-hosted Redis guide:
https://goteleport.com/docs/ver/9.0/database-access/guides/redis/.
Teleport 9 includes a preview release of Microsoft SQL Server with Active
Directory authentication support for Database Access. Audit logging of query
activity is not included in the preview release and will be implemented in a
later 9.x release.
SQL Server guide:
https://goteleport.com/docs/ver/9.0/database-access/guides/sql-server-ad/.
Teleport 9 updates MariaDB support with auto-discovery and connection to AWS RDS
MariaDB databases using IAM authentication. The minimum MariaDB version that
supports IAM authentication is 10.6.
Updated RDS guide:
https://goteleport.com/docs/ver/9.0/database-access/guides/rds/.
In addition, Teleport 9 expands auto-discovery to support Redshift databases and
2 new commands which simplify the Database Access getting started experience:
"teleport db configure create", which generates Database Service configuration,
and "teleport db configure bootstrap", which configures IAM permissions for the
Database Service when running on AWS.
CLI commands reference:
https://goteleport.com/docs/ver/9.0/database-access/reference/cli/#teleport-db-configure-create
https://goteleport.com/docs/ver/9.0/database-access/reference/cli/#teleport-db-configure-bootstrap
With Moderated Sessions, Teleport administrators can define policies that allow
users to invite other users to participate in SSH or Kubernetes sessions as
observers, moderators or peers.
Moderated Sessions guide:
https://goteleport.com/docs/ver/9.0/access-controls/guides/moderated-sessions/.
CentOS 6 support was deprecated in Teleport 8 and has now been removed.
Desktop Access now authenticates to LDAP using X.509 client certificates.
Support for the password_file
configuration option has been removed.
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by r0mant over 2 years ago
Pre-releases are not production ready, use at your own risk!
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by r0mant over 2 years ago
Pre-releases are not production ready, use at your own risk!
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by r0mant over 2 years ago
Pre-releases are not production ready, use at your own risk!
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by r0mant over 2 years ago
This release of Teleport contains multiple improvements and fixes.
tctl
when using Teleport Cloud. #10749
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by r0mant over 2 years ago
This release of Teleport contains a security fix and multiple improvements and fixes.
An attacker in possession of a valid Trusted Cluster join token could inject a
malicious CA into a Teleport cluster that would allow them to bypass root
cluster authorization and potentially connect to any node within the root
cluster.
For customers using Trusted Clusters, we recommend upgrading to one of the
patched releases listed below then revoking and rotating all Trusted Cluster
tokens. As a best practice, make sure that Trusted Cluster tokens have short
time-to-live and ideally are removed after being used once.
teleport_audit_emit_event
and teleport_connected_resources
Prometheus metrics. #10462, #10461
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by r0mant over 2 years ago
This release of Teleport contains a security fix and multiple improvements and fixes.
An attacker in possession of a valid Trusted Cluster join token could inject a
malicious CA into a Teleport cluster that would allow them to bypass root
cluster authorization and potentially connect to any node within the root
cluster.
For customers using Trusted Clusters, we recommend upgrading to one of the
patched releases listed below then revoking and rotating all Trusted Cluster
tokens. As a best practice, make sure that Trusted Cluster tokens have short
time-to-live and ideally are removed after being used once.
cert.create
audit event. #10255
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by r0mant over 2 years ago
This release of Teleport contains a security fix and an improvement.
An attacker in possession of a valid Trusted Cluster join token could inject a
malicious CA into a Teleport cluster that would allow them to bypass root
cluster authorization and potentially connect to any node within the root
cluster.
For customers using Trusted Clusters, we recommend upgrading to one of the
patched releases listed below then revoking and rotating all Trusted Cluster
tokens. As a best practice, make sure that Trusted Cluster tokens have short
time-to-live and ideally are removed after being used once.
cert.create
audit event. #10226
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by r0mant over 2 years ago
This release of Teleport contains a security fix.
An attacker in possession of a valid Trusted Cluster join token could inject a
malicious CA into a Teleport cluster that would allow them to bypass root
cluster authorization and potentially connect to any node within the root
cluster.
For customers using Trusted Clusters, we recommend upgrading to one of the
patched releases listed below then revoking and rotating all Trusted Cluster
tokens. As a best practice, make sure that Trusted Cluster tokens have short
time-to-live and ideally are removed after being used once.
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by r0mant over 2 years ago
This release of Teleport contains a security fix.
An attacker in possession of a valid Trusted Cluster join token could inject a
malicious CA into a Teleport cluster that would allow them to bypass root
cluster authorization and potentially connect to any node within the root
cluster.
For customers using Trusted Clusters, we recommend upgrading to one of the
patched releases listed below then revoking and rotating all Trusted Cluster
tokens. As a best practice, make sure that Trusted Cluster tokens have short
time-to-live and ideally are removed after being used once.
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by xacrimon over 2 years ago
Pre-releases are not production ready, use at your own risk!
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by xacrimon over 2 years ago
Pre-releases are not production ready, use at your own risk!
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by r0mant over 2 years ago
Pre-releases are not production ready, use at your own risk!
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by russjones over 2 years ago
This release of Teleport contains new features, improvements, and fixes.
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by xacrimon over 2 years ago
Pre-releases are not production ready, use at your own risk!
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by xacrimon over 2 years ago
Pre-releases are not production ready, use at your own risk!
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by russjones over 2 years ago
This release of Teleport contains new features, improvements, and fixes.
cert.create
event. #9822
tsh ls
output to truncate labels. #9589
tctl --insecure
and TLS routing. #10297
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.