Teleport
Use the Teleport integration to securely authenticate and access your SSH servers for automation.

Overview

Teleport is a Certificate Authority and an Access Plane for your infrastructure. With Teleport you can:
    Set up Single Sign-On and have one place to access your SSH servers, Kubernetes, Databases, and Web Apps.
With this integration you could access your SSH servers remotely by authenticating first into Teleport and then running SSH command with workflow automation.

Configure Teleport in Fylamynt

    Navigate to Settings > Integrations > Teleport.
    Click Add integration to create and configure a new integration instance.
Details needed to set up Teleport in Fylamynt:
Parameter
Description
Required
Proxy Hostname
Hostname proxy to access the Teleport server from outside
True
User Certificate
User certificate to grant access to Teleport server with role-based access control
True
Follow the steps listed below in your Teleport Account to complete the configuration in Fylamynt:
    As you can see in the Fylamynt configuration panel, you need to enter Proxy Hostname, User Certificate and Username for Teleport authentication.
    Enter the 'Proxy Hostname' and 'Username' that was created while setting up the Teleport server.
To generate user certificate please look at the following details:
    1.
    Create a file called 'fylamyntbot.yaml' on your local machine and copy & paste this into it:
    1
    kind: role
    2
    version: v3
    3
    metadata:
    4
    name: fylamyntbot
    5
    spec:
    6
    # SSH options used for user sessions
    7
    options:
    8
    # max_session_ttl defines the TTL (time to live) of SSH certificates
    9
    # issued to the users with this role.
    10
    max_session_ttl: 1200h
    11
    12
    # allow section declares a list of resource/verb combinations that are
    13
    # allowed for the users of this role. by default nothing is allowed.
    14
    allow:
    15
    logins:
    16
    - root
    17
    - ubuntu
    18
    - ec2-user
    19
    node_labels:
    20
    '*': '*'
    21
    ---
    22
    kind: user
    23
    version: v2
    24
    metadata:
    25
    name: fylamyntbot
    26
    spec:
    27
    roles: ['fylamyntbot']
    Copied!
      Download and edit fylamyntbot.yaml to your local machine.
      You likely want to change the 'login' and 'allow' sections of the role to match your environment.
      You can also change the name to whatever you want.
      If you want to use an existing Teleport user, skip to step 4.
      See the Teleport Resources Reference for more detailed information.
    2.
    Upload your fylamntbot.yaml to your Teleport proxy/auth server:
    1
    $ tsh scp --login=root fylamyntbot.yaml [email protected]:/home/youruser/resources
    2
    fylamyntbot.yaml (584)
    Copied!
    3.
    Create a new role & user (on your Teleport auth host):
    1
    $ tctl create -f fylamyntbot.yaml
    2
    role 'fylamyntbot' has been created
    3
    user "fylamyntbot" has been created
    Copied!
    4.
    Generate a new .pem certificate file for the fylamyntbot user. (on your Teleport auth host):
    1
    $ tctl --auth-server=ec2-52-26-37-93.us-west-2.compute.amazonaws.com:3025 auth sign --user=fylamyntbot --format=file --out=fylamyntbot.pem --overwrite --ttl=1000h
    2
    3
    The credentials have been written to fylamyntbot.pem
    Copied!
    5.
    Download the pem file lo your local machine:
    1
    $ tsh scp --login=youruser [email protected]:/home/youruser/resources/fylamyntbot.pem .
    2
    fylamyntbot.pem (7142)
    Copied!
    6.
    Open the pem file in an editor, select all, and copy the text.
    7.
    Paste the text into the "User Certificate" field in the Fylamynt integration panel.
    8.
    Click "Authorize" to complete the setup.
Last modified 1mo ago