Skip to content
/ bastion-teleport-cluster-playbook Public

A playbook to set up Gravitational teleport auth and proxy cluster

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

linhkikuchi/bastion-teleport-cluster-playbook

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
roles
roles
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
bastion.hosts
bastion.hosts
 
 
bastion.yml
bastion.yml
 
 

Repository files navigation

Gravitational Teleport: a modern SSH system for managing privileged access across clusters of Linux servers, where multiple users can join the same session or re-play the session later

More info: https://gravitational.com/teleport

Playbook for setting up teleport auth and proxy servers

  • Teleport has 2 clusters running: operations and general.
  • Cluster general is connected to cluster operations as a trusted cluster
  • bastion-auth has 2 auth services running, operations on port 3025 and general on port 3026
  • bastion-proxy has 2 proxy service running, operations on port 443 & general on port 8443
  • bastion-proxy has LDAP set up
  • to run tctl on auth servers
tctl -c /etc/teleport/general.yaml users add banana```
- to restart the services on auth/proxy servers
```systemctl restart teleport-operations
systemctl restart teleport-general```
 

### To build bastion server, run
 ansible-playbook -i bastion.hosts bastion.yml -u root --vault-password-file ~/.vault_pass

About

A playbook to set up Gravitational teleport auth and proxy cluster

Topics

ansible-playbook teleport bastion-hosts

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages