self-hosted/teleport
self-hosted/teleport
1
0
Fork 0
mirror of https://github.com/gravitational/teleport synced 2024-10-20 01:03:40 +00:00
Code Issues Packages Projects Releases Wiki Activity
teleport/assets/aws
History
teleport-post-release-automation[bot] ed169c142d
[auto] Update AMI IDs for 14.0.3 (#33362) 
Co-authored-by: GitHub <noreply@github.com>
2023-10-13 19:46:32 +00:00
..
cmd Creates Hardened AMI promotion tool (#26754) 2023-05-25 00:59:28 +00:00
files Add support for configuring TLS routing (#31237) 2023-09-11 21:03:27 +00:00
monitor-files Packer resources for hardened AMIs (#26126) 2023-05-22 08:39:19 +00:00
.gitignore Add AMI builds to Drone (#4144) 2020-08-10 09:51:26 -03:00
go.mod Bump the go group in /assets/aws with 3 updates (#33127) 2023-10-09 16:27:40 +00:00
go.sum Bump the go group in /assets/aws with 3 updates (#33127) 2023-10-09 16:27:40 +00:00
LICENSE Add AMI builds to Drone (#4144) 2020-08-10 09:51:26 -03:00
Makefile [auto] Update AMI IDs for 14.0.3 (#33362) 2023-10-13 19:46:32 +00:00
README.md Update AMI usage instructions (#25807) 2023-05-17 15:30:00 +00:00
single-ami.json Enforce use of IMDSv2 for AMI builds (#31983) 2023-09-22 19:25:13 +00:00
single-ami.pkr.hcl Enforce use of IMDSv2 for AMI builds (#31983) 2023-09-22 19:25:13 +00:00

README.md

Teleport AWS AMI creation.

Instructions for building Teleport AWS AMIs.

Development instructions

Prerequisites

AWS CLI and Packer are required to build Teleport AMIs.

Minimum versions:
awscli == 1.14
packer == v1.4.0

On macOS:

brew install awscli
brew install packer

On Linux:

apt install awscli
Follow instructions at: https://www.packer.io/docs/install/index.html

To build the OSS AMI

  1. Determine which AWS account you wish to build the AMI within.
  2. Ensure your local awscli profile is configured for this account, and you have adequate IAM roles to build AMIs (ec2, s3, vpc).
  3. Decide which region you'd like to build and distribute AMIs in. We'll use these in the next step.
  4. Set the following Makefile values:
Param Description
BUILD_VPC_ID With the region you selected in step 3, create or use an existing VPC. ex. vpc-xxxxxxxx.
BUILD_SUBNET_ID Within the VPC above, select a subnet. ex. subnet-xxxxxxxx
AWS_REGION Region you selected in step 3. ex. us-east-1
TELEPORT_VERSION Teleport version. See Teleport releases. ex. 4.2.10
INSTANCE_TYPE The instance type used for the build. ex. t2.micro
DESTINATION_REGIONS The regions the AMI will be replicated to. ex. us-east-1,us-east-2
  1. Run
make oss
  1. Once complete, your AMI should be available, in the regions you specified, with the name teleport-debug-ami-<type>-<version>. (e.g. teleport-debug-ami-oss-4.2.10)

Usage instructions

To see how to use your Teleport AMI to run a single-instance Teleport cluster, read our Getting Started Guide.

You can use your Teleport AMI to deploy EC2 instances running any Teleport service. To read how to join your instance to a Teleport cluster in order to protect resources in your infrastructure, see our Joining Services to a Cluster guides.

If you are hosting the Teleport Auth and Proxy Services yourself, read our guide to designing a high-availability architecture for your Teleport deployment.