Amazon RDS 및 Aurora PostgreSQL/MySQL/MariaDB를 이용한 데이터베이스 접근

Amazon RDS 및 Aurora PostgreSQL, MySQL, MariaDB와 Teleport 데이터베이스 접근을 구성하는 방법.

Teleport can provide secure access to Amazon RDS or Aurora via the Teleport Database Service . This allows for fine-grained access control through Teleport's RBAC . In this guide, you will: Configure your Amazon RDS or Aurora database with IAM authentication. Add the database to your Teleport cluster. Connect to the database via Teleport. 작동 방식 # The Teleport Database Service uses IAM authentication to communicate with RDS. When a user connects to the database via Teleport, the Teleport Database Service obtains AWS credentials and authenticates to AWS as an IAM principal with permissions to access the database. Self-Hosted Cloud-Hosted 지원되는 버전 다음 제품은 IAM 인증을 지원하지 않아 Teleport와 호환되지 않습니다: - Aurora Serverless v1. - RDS MariaDB 버전 10.6 미만. IAM 인증을 지원하는 Aurora Serverless v2 로 Aurora Serverless v1을 업그레이드하는 것을 권장합니다. This guide shows how to register a single RDS with your Teleport cluster. For a more scalable approach, learn how to set up Database Auto-Discovery to automatically enroll all AWS databases in your infrastructure. 전제 조건 # A running Teleport cluster. If you want to get started with Teleport, sign up for a free trial or set up a demo environment . The tctl and tsh clients. Installing `tctl` and `tsh` clients Determine the version of your Teleport cluster. The tctl and tsh clients must be at most one major version behind your Teleport cluster version. Send a GET request to the Proxy Service at /v1/webapi/find and use a JSON query tool to obtain your cluster version. Replac