Cassandra 및 ScyllaDB로 데이터베이스 액세스

Teleport 데이터베이스 액세스를 Cassandra 및 ScyllaDB로 구성하는 방법.

Teleport can provide secure access to Cassandra or ScyllaDB via the Teleport Database Service . This allows for fine-grained access control through the Teleport RBAC system . The Teleport Database Service proxies traffic from database clients to self-hosted databases in your infrastructure. Teleport maintains a certificate authority (CA) for database clients. You configure your database to trust the Teleport database client CA, and the Teleport Database Service presents certificates signed by this CA when proxying user traffic. With this setup, there is no need to store long-lived credentials for self-hosted databases. Meanwhile, the Teleport Database Service verifies self-hosted databases by checking their TLS certificates against either the Teleport database CA or a custom CA used with the database. In this guide, you will: Configure your Cassandra or ScyllaDB database for Teleport access. Add the database to your Teleport cluster. Connect to the database via Teleport. 작동 방식 # The Teleport Database Service authenticates to your self-hosted Cassandra or ScyllaDB database using mutual TLS. Cassandra or ScyllaDB trusts the Teleport certificate authority for database clients, and presents a certificate signed by either the Teleport database CA or a custom CA. When a user initiates a database session, the Teleport Database Service presents a certificate signed by Teleport. The authenticated connection then proxies client traffic from the user. Self-Hosted Teleport Enterprise Clo