Teleport GKE 자동 검색

Teleport에서 Google Kubernetes Engine 클러스터 자동 검색을 구성하는 방법

Teleport 검색 서비스는 Google Kubernetes Engine(GKE) 클러스터를 Teleport에 자동으로 등록할 수 있습니다. Teleport Kubernetes 검색을 통해 Teleport Kubernetes 서비스와 검색 서비스를 한 번 구성한 다음, 각 생성 후 Teleport에 등록하지 않고도 GKE 클러스터를 생성할 수 있습니다. 이 가이드에서는 GKE용 Teleport Kubernetes 검색을 시작하는 방법을 보여줍니다. 작동 방식 # Teleport cluster auto-discovery involves two components: The Teleport Discovery Service that watches for new clusters or changes to previously discovered clusters. It dynamically registers each discovered cluster as a kube_cluster resource in your Teleport cluster. It does not need connectivity to the clusters it discovers. The Teleport Kubernetes Service that monitors the dynamic kube_cluster resources registered by the Discovery Service. It proxies communications between users and the cluster. 사전 요구 사항 # A running Teleport cluster. If you want to get started with Teleport, sign up for a free trial or set up a demo environment . The tctl and tsh clients. Installing `tctl` and `tsh` clients Determine the version of your Teleport cluster. The tctl and tsh clients must be at most one major version behind your Teleport cluster version. Send a GET request to the Proxy Service at /v1/webapi/find and use a JSON query tool to obtain your cluster version. Replace with the web address of your Teleport Proxy Service: $ TELEPORT_DOMAIN= $ TELEPORT_VERSION="$(curl -s https://$TELEPORT_DOMAIN/v1/webapi/find | jq -r '.server_version')" Follow the instructions for your platform to install tctl and tsh clients: GKE 클러스터, IAM 역할 및 서비스