역할 리소스 참조

Teleport 역할 리소스의 필드 전체 목록을 제공합니다.

인터랙티브 및 비인터랙티브 사용자(봇)는 하나 이상의 역할을 맡습니다. 역할은 데이터베이스, SSH 서버, Kubernetes 클러스터, 웹 서비스 및 애플리케이션, Windows 데스크탑에 대한 접근을 제어합니다. kind: role version: v8 metadata: name: example description: This is an example role. spec: # options specify connection, in case if user has multiple non-default # conflicting options, teleport chooses the least permissive value. options: # max_session_ttl defines the TTL (time to live) of certificates # issued to the users with this role. max_session_ttl: 8h # forward_agent controls whether SSH agent forwarding is allowed forward_agent: true # ssh_port_forwarding controls which TCP port forwarding modes are allowed over SSH. This replaces # the deprecated port_forwarding field, which did not differentiate between remote and local # port forwarding modes. If you have any existing roles that allow forwarding by enabling the # legacy port_forwarding field then the forwarding controls configured in ssh_port_forwarding will be # ignored. ssh_port_forwarding: # configures remote port forwarding behavior remote: enabled: true # configures local port forwarding behavior local: enabled: true # ssh_file_copy controls whether file copying (SCP/SFTP) is allowed. # Defaults to true. ssh_file_copy: false # client_idle_timeout determines if SSH sessions to cluster nodes are # forcefully terminated after no activity from a client (idle client). # it overrides the global cluster setting. examples: '30m', '1h' or '1h30m' client_idle_timeout: never # Determines if the client