셀프 호스팅 MongoDB를 사용한 데이터베이스 접근

셀프 호스팅 MongoDB와 함께 Teleport 데이터베이스 접근을 구성하는 방법.

Teleport can provide secure access to MongoDB via the Teleport Database Service . This allows for fine-grained access control through the Teleport RBAC system . The Teleport Database Service proxies traffic from database clients to self-hosted databases in your infrastructure. Teleport maintains a certificate authority (CA) for database clients. You configure your database to trust the Teleport database client CA, and the Teleport Database Service presents certificates signed by this CA when proxying user traffic. With this setup, there is no need to store long-lived credentials for self-hosted databases. Meanwhile, the Teleport Database Service verifies self-hosted databases by checking their TLS certificates against either the Teleport database CA or a custom CA used with the database. In this guide, you will: Configure your MongoDB database for Teleport access. Add the database to your Teleport cluster. Connect to the database via Teleport. 작동 방식 # The Teleport Database Service authenticates to your self-hosted MongoDB database using mutual TLS. MongoDB trusts the Teleport certificate authority for database clients, and presents a certificate signed by either the Teleport database CA or a custom CA. When a user initiates a database session, the Teleport Database Service presents a certificate signed by Teleport. The authenticated connection then proxies client traffic from the user. Self-Hosted Teleport Enterprise Cloud 사전 조건 # A running Teleport cluster. If you want to ge