Think Ahead Technologies demonstration environment for Teleport security software.
Read our article on this repository!
- Teleport license
- Cloud account credentials
- HashiCorp Terraform
- (Optional) Kubernetes and FluxCD
- GitHub Actions
There are two deployment styles, both of which create a cluster at https://teleport.thinkahead.dev/.
- Both approaches will store and share secrets via Scaleway Secret Manager
- Both will be set up for login with Azure Active Directory
- NB This required manual setup (see tutorial and resulting config file)
- Both will create a handful of 'target' resources accessible through Teleport once logged in
To deploy a demo environment running on Scaleway Computer instances, run the GitHub Actions deploy instances or destroy instances pipelines.
You will need to have created web certificates before running this. See certificates/ for more information.
To create a Scaleway Kapsule Kubernetes cluster and install Teleport on it, run the GitHub Actions deploy Kubernetes or destroy Kubernetes pipelines.
These will create a cluster with self-signed web certificates. These take some minutes to generate.
- Teleport Access Graph is partly supported: if available, using a PostgreSQL database set up on Microsoft Azure for the purpose
- You may need to run a few manual steps to set up the database for the TAG. If the final pipeline step fails, check the Terraform output for details of what to run.