Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[v15] Add introduction to Enrolling Teleport Resources #49279

Merged
merged 1 commit into from
Dec 2, 2024
Merged
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
23 changes: 23 additions & 0 deletions docs/pages/enroll-resources/enroll-resources.mdx
Original file line number Diff line number Diff line change
@@ -3,4 +3,27 @@ title: Enrolling Teleport Resources
description: Provides step-by-step instructions for enrolling servers, databases, and other infrastructure resources with your Teleport cluster.
---

You can use Teleport to protect infrastructure resources like servers,
databases, and Kubernetes clusters. Once an infrastructure resource is protected
by Teleport, you can restrict access to the resource using the Teleport
[role-based access controls
system](../admin-guides/access-controls/access-controls.mdx) and use Teleport
features like session recordings and audit events to understand how your users
interact with the resource.

To enroll a resource with Teleport, you deploy a Teleport Agent, an instance of
the `teleport` binary configured to run certain services, such as the Teleport
SSH Service and Teleport Database Service. You then configure the Agent to proxy
a resource by querying a service discovery API (Auto Discovery), using a
[dynamic Teleport
resource](../admin-guides/infrastructure-as-code/infrastructure-as-code.mdx), or
naming the resource in the Agent's configuration file. Read more about [Teleport
Agent architecture](../reference/architecture/agents.mdx).

You can also create a Teleport bot user and set up Machine ID to enable service
accounts to access Teleport-protected resources.

Read the following documentation for more information on enrolling
infrastructure resources with Teleport:

(!toc!)