Amazon ElastiCache for Redis 및 Valkey를 통한 데이터베이스 액세스

IAM 인증을 사용하여 Amazon ElastiCache for Redis 및 Valkey에 대한 Teleport 데이터베이스 액세스를 구성하는 방법.

Teleport can provide secure access to Amazon ElastiCache via the Teleport Database Service . This allows for fine-grained access control through Teleport's RBAC . In this guide, you will: Configure your Amazon ElastiCache database with IAM authentication. Add the database to your Teleport cluster. Connect to the database via Teleport. 작동 방식 # The Teleport Database Service proxies traffic from users to Amazon ElastiCache for Redis and Valkey. Authentication between the Database Service and the Amazon ElastiCache database can take one of two forms: IAM authentication (preferred): The Teleport Database Service connects to the database using a short-lived AWS IAM authentication token. AWS IAM authentication is available for Amazon ElastiCache with engine version 7.0 or above. Managing users: The Teleport Database Service manages users in a access control list, rotates their passwords every 15 minutes, and saves these passwords in AWS Secrets Manager. The Database Service automatically sends an AUTH command with the saved password when connecting the client to the Amazon ElastiCache server. Self-Hosted Teleport Cloud This guide shows how to register a single Amazon Elasticache cluster with your Teleport cluster. For a more scalable approach, learn how to set up Database Auto-Discovery to automatically enroll all AWS databases in your infrastructure. 사전 요구 사항 # A running Teleport cluster. If you want to get started with Teleport, sign up for a free trial or set up a demo environmen