teleport
The easiest, and most secure way to access and protect all of your infrastructure.
AGPL-3.0 License
Bot releases are hidden (Show)
Published by russjones about 3 years ago
This release of Teleport contains an improvement and new feature.
Description
- Fixed issue that prevented preset editor role from creating SSO connectors in Web UI. #7667
- Fixed issue where OSS Web UI was enabled in Enterprise Docker images.
Download
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by russjones about 3 years ago
Teleport 7.0 is a major release of Teleport that contains new features, improvements, and bug fixes.
New Features
MongoDB
Added support for MongoDB to Teleport Database Access. #6600.
View the Database Access with MongoDB for more details.
Cloud SQL MySQL
Added support for GCP Cloud SQL MySQL to Teleport Database Access. #7302
View the Cloud SQL MySQL guide for more details.
AWS Console
Added support for AWS Console to Teleport Application Access. #7590
Teleport Application Access can now automatically sign users into the AWS Management Console using Identity federation. View AWS Management Console guide for more details.
Restricted Sessions
Added the ability to block network traffic (IPv4 and IPv6) on a per-SSH session basis. Implemented using BPF tooling which required kernel 5.8 or above. #7099
Enhanced Session Recording
Updated Enhanced Session Recording to no longer require the installation of external compilers like bcc-tools. Implemented using BPF tooling which required kernel 5.8 or above. #6027
Improvements
- Added the ability to terminate Database Access certificates when the certificate expires. #5476
- Added additional FedRAMP compliance controls, such as custom disconnect and MOTD messages. #6091 #7396
- Added the ability to export Audit Log and session recordings using the Teleport API. #6731 #7360
- Added the ability to partially configure a cluster. #5857 RFD #28
- Added the ability to disable port forwarding on a per-host basis. #6989
- Added ability to configure
tshhome directory. #7035 - Added ability to generate OpenSSH client configuration snippets using
tsh config. #7437 - Added default-port detection to
tsh#6374 - Improved performance of the Web UI for users with many roles. #7588
Fixes
- Fixed a memory leak that could affect etcd users. #7631
- Fixed an issue where
tsh logincould fail if the user had multiple public addresses defined on the proxy. #7368
Breaking Changes
Enhanced Session Recording
Enhanced Session Recording has been updated to use CO-RE BPF executables. This makes deployment much simpler, you no longer have to install bcc-tools, but comes with a higher minimum kernel version of 5.8 and above. #6027
Kubernetes Access
Kubernetes Access will no longer automatically register a cluster named after the Teleport cluster if the proxy is running within a Kubernetes cluster. Users wishing to retain this functionality now have to explicitly set kube_cluster_name. #6786
tsh
tsh login has been updated to no longer change the current Kubernetes context. While tsh login will write credentials to kubeconfig it will only update your context if tsh login --kube-cluster or tsh kube login <kubeCluster> is used. #6045
Download
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by russjones about 3 years ago
Warning
Pre-releases are not production ready, use at your own risk!
Download
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by russjones about 3 years ago
Warning
Pre-releases are not production ready, use at your own risk!
Download
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by russjones about 3 years ago
Warning
Pre-releases are not production ready, use at your own risk!
Download
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by russjones about 3 years ago
This release of Teleport contains an improvement and new feature.
Description
Download
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by russjones over 3 years ago
Warning
Pre-releases are not production ready, use at your own risk!
Download
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by russjones over 3 years ago
Warning
Pre-releases are not production ready, use at your own risk!
Download
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by russjones over 3 years ago
Warning
Pre-releases are not production ready, use at your own risk!
Download
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by russjones over 3 years ago
This release of Teleport contains multiple fixes.
Description
- Fixed issue that could cause
GetNodesto fail on large clusters. #7415 - Fixed issue that could cause long commands to hang. #7449
Download
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by russjones over 3 years ago
This release of Teleport contains new features, bug fixes, and multiple improvements.
Description
- Added ability to disable port forwarding on a per-node basis. #6989
- Updated
apiclient to support additional endpoints. #7220 - Improved performance of DynamoDB events filtering. #7231
Download
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by webvictim over 3 years ago
This release of Teleport contains new features, bug fixes, and multiple improvements.
Description
- Added support for
regexp.replacein role templates. #7152 - Added
RoleV4with stricter default allow labels.RoleV4is backward-compatible withRoleV3and is completely opt-in. #7132 #7118 - Updated OIDC connector to gracefully degrade UserInfo endpoint. #7333
- Improved Access Requests events to allow easier correlation between access requests and
session.startevents. #6863 - Fixed an issue that could cause upgrade from Teleport 5.x to 6.x to fail. #7310
- Fixed multiple issues with events subsystem. #7303 #7266
Download
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by webvictim over 3 years ago
This release of Teleport contains bug fixes and a new feature.
Description
- Set correct audit log instead of discard #6433
- Kubernetes: Handle a large number of trusted clusters in mTLS handshake #6668
- Add log formatting options to Teleport config file #6505
Download
Download the current and previous releases of Teleport at https://goteleport.com/teleport/download.
Published by russjones over 3 years ago
This release of Teleport contains multiple improvements.
- Improvements to speed up DynamoDB events migration. We now encourage all DynamoDB users to upgrade to Teleport 6.2. #7073 #7097
Download
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by r0mant over 3 years ago
This release of Teleport contains an improvement and several bug fixes.
Improvements
- Improved performance of DynamoDB events migration introduced in
v6.2.0. #7083
Fixes
- Fixed an issue with connecting to etcd in insecure mode. #7049
- Fixed an issue with running Teleport on systems without utmp/wtmp support such as alpine. #7059
- Fixed an issue with signing database certificates using
tctl auth signvia proxy. See #7071 for details. #7038
Download
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by russjones over 3 years ago
Teleport 6.2 contains new features, improvements, and bug fixes.
New Features
Added Amazon Redshift Support
Added support for Amazon Redshift to Teleport Database Access.#6479.
View the Database Access with Redshift on AWS Guide for more details.
Improvements
- Added pass-through header support for Teleport Application Access. #6601
- Added ability to propagate claim information from root to leaf clusters. #6540
- Added Proxy Protocol for MySQL Database Access. #6594
- Added prepared statement support for Postgres Database Access. #6303
- Added
GetSessionEventsRequestRPC endpoint for Audit Log pagination. RFD 19 #6731 - Changed DynamoDB indexing strategy for events. RFD 24 #6583
Fixes
- Fixed multiple per-session MFA issues. #6542 #6567 #6625 #6779 #6948
- Fixed etcd JWT renewal issue. #6905
- Fixed issue where
kubectl execsessions were not being recorded when the target pod was killed. #6068 - Fixed an issue that prevented Teleport from starting on ARMv7 systems. #6711.
- Fixed issue that caused Access Requests to inconsistently allow elevated Kuberentes access. #6492
- Fixed an issue that could cause
session.endevents not to be emitted. #6756 - Fixed an issue with PAM variable interpolation. #6558
Breaking Changes
Agent Forwarding
Teleport 6.2 brings a potentially backward incompatible change with tsh agent forwarding.
Prior to Teleport 6.2, tsh ssh -A would create an in-memory SSH agent from your ~/.tsh directory and forward that agent to the target host.
Starting in Teleport 6.2 tsh ssh -A by default now forwards your system SSH agent (available at $SSH_AUTH_SOCK). Users wishing to retain the prior behavior can use tsh ssh -o "ForwardAgent local".
For more details see RFD 22 and implementation in #6525.
DynamoDB Indexing Change
DynamoDB users should note that the events backend indexing strategy has changed and a data migration will be triggered after upgrade. For optimal performance perform this migration with only one auth server online. It may take some time and progress will be periodically written to the auth server log. During this migration, only events that have been migrated will appear in the Web UI. After completion, all events will be available.
Note that this migration may cause rate-limiting errors from AWS APIs and is slow on large deployments (1000+ existing audit events). Teleport 6.2.1 will include improved migration performance. If you run a large DynamoDB-based cluster, we advise you to wait for Teleport 6.2.1 before upgrading.
For more details see RFD 24 and implementation in #6583.
Download
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by awly over 3 years ago
Warning
Pre-releases are not production ready, use at your own risk!
Download
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by awly over 3 years ago
Warning
Pre-releases are not production ready, use at your own risk!
Download
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by awly over 3 years ago
Warning
Pre-releases are not production ready, use at your own risk!
Download
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by russjones over 3 years ago
This release of Teleport contains multiple bug fixes.
Description
- Added additional Prometheus Metrics. #6511
- Updated the TLS handshake timeout to 5 seconds to avoid timeout issues on large clusters. #6692
- Fixed issue that caused non-interactive SSH output to show up in logs. #6683
- Fixed two issues that could cause Teleport to panic upon startup. #6431 #5712
Download
Download the current and previous releases of Teleport at https://goteleport.com/teleport/download.