Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

SSH getting started guide should explain it is using local user #44902

Closed
tenaciousdlg opened this issue Jul 31, 2024 · 1 comment · Fixed by #46320
Closed

SSH getting started guide should explain it is using local user #44902

tenaciousdlg opened this issue Jul 31, 2024 · 1 comment · Fixed by #46320
Labels
documentation ssh

Comments

@tenaciousdlg
Copy link
Contributor

Applies To

https://goteleport.com/docs/enroll-resources/server-access/getting-started/#access-the-web-ui

Details

In the linked section a Teleport local user is used and given permissions to login to the SSH server via the tctl users add myuser command. The section describes access as coming from the editor and access roles when it really comes from the --logins=root,ubuntu,ec2-user section of the command.

How will we know this is resolved?

The section to be updated per other Teleport docs to include local, SAML, OIDC, and Github users. It should also clarify that logins is what grants the local OS user access rather than the preset roles.

Related Issues
@zmb3
Copy link
Collaborator

zmb3 commented Aug 1, 2024

I'm not sure I understand what problem you want to be solved here (the issue mentions two seemingly-separate items).

The section describes access as coming from the editor and access roles when it really comes from the --logins=root,ubuntu,ec2-user section of the command.

It's not one or the other. Access comes from both sections of the command:

  • the access role allows the {{internal.logins}} trait
  • the users add command sets a few values for the newly-created user's logins trait

That said, this is a getting started guide, and SSH servers are typically the very first resource newcomers try to add. These semantics are not details that someone trying to enroll their first resource really needs to be troubled with.

The same goes for SSO. A getting started guide should demonstrate a concept as quickly as possible, and local users are a much easier way to get started than setting up SSO (there are a plethora of guides on how to configure SSO under the Manage Access section of the docs.

Does that seem fair or am I missing something?

ptgott added a commit that referenced this issue Sep 5, 2024
@ptgott
Mention SSO users in SSH getting started guide
da6f26e 
Closes #44902

Add a quick note to the Next Steps section that you can configure SSO in
order to avoid the impression that server access only works with local
users.
@ptgott ptgott mentioned this issue Sep 5, 2024
Merged
github-merge-queue bot pushed a commit that referenced this issue Sep 9, 2024
@ptgott
Mention SSO users in SSH getting started guide (#46320)
4b51b4b 
Closes #44902

Add a quick note to the Next Steps section that you can configure SSO in
order to avoid the impression that server access only works with local
users.
github-actions bot pushed a commit that referenced this issue Sep 9, 2024
@ptgott
Mention SSO users in SSH getting started guide
8bc09dd 
Closes #44902

Add a quick note to the Next Steps section that you can configure SSO in
order to avoid the impression that server access only works with local
users.
github-actions bot pushed a commit that referenced this issue Sep 9, 2024
@ptgott
Mention SSO users in SSH getting started guide
4107aca 
Closes #44902

Add a quick note to the Next Steps section that you can configure SSO in
order to avoid the impression that server access only works with local
users.
github-actions bot pushed a commit that referenced this issue Sep 9, 2024
@ptgott
Mention SSO users in SSH getting started guide
40ec295 
Closes #44902

Add a quick note to the Next Steps section that you can configure SSO in
order to avoid the impression that server access only works with local
users.
ptgott added a commit that referenced this issue Sep 10, 2024
@ptgott
Mention SSO users in SSH getting started guide
afedf0b 
Closes #44902

Add a quick note to the Next Steps section that you can configure SSO in
order to avoid the impression that server access only works with local
users.
ptgott added a commit that referenced this issue Sep 10, 2024
@ptgott
Mention SSO users in SSH getting started guide
3147b28 
Closes #44902

Add a quick note to the Next Steps section that you can configure SSO in
order to avoid the impression that server access only works with local
users.
ptgott added a commit that referenced this issue Sep 10, 2024
@ptgott
Mention SSO users in SSH getting started guide
abebcf5 
Closes #44902

Add a quick note to the Next Steps section that you can configure SSO in
order to avoid the impression that server access only works with local
users.
mvbrock pushed a commit that referenced this issue Sep 10, 2024
@ptgott @mvbrock
Mention SSO users in SSH getting started guide (#46320)
318bb10 
Closes #44902

Add a quick note to the Next Steps section that you can configure SSO in
order to avoid the impression that server access only works with local
users.
ptgott added a commit that referenced this issue Sep 11, 2024
@ptgott
Mention SSO users in SSH getting started guide
ea8ce04 
Closes #44902

Add a quick note to the Next Steps section that you can configure SSO in
order to avoid the impression that server access only works with local
users.
ptgott added a commit that referenced this issue Sep 11, 2024
@ptgott
Mention SSO users in SSH getting started guide
a0293cf 
Closes #44902

Add a quick note to the Next Steps section that you can configure SSO in
order to avoid the impression that server access only works with local
users.
ptgott added a commit that referenced this issue Sep 11, 2024
@ptgott
Mention SSO users in SSH getting started guide
c33c6d2 
Closes #44902

Add a quick note to the Next Steps section that you can configure SSO in
order to avoid the impression that server access only works with local
users.
github-merge-queue bot pushed a commit that referenced this issue Sep 11, 2024
@ptgott
Mention SSO users in SSH getting started guide (#46378)
5bd0031 
Closes #44902

Add a quick note to the Next Steps section that you can configure SSO in
order to avoid the impression that server access only works with local
users.
github-merge-queue bot pushed a commit that referenced this issue Sep 11, 2024
@ptgott
Mention SSO users in SSH getting started guide (#46379)
477fc6e 
Closes #44902

Add a quick note to the Next Steps section that you can configure SSO in
order to avoid the impression that server access only works with local
users.
github-merge-queue bot pushed a commit that referenced this issue Sep 11, 2024
@ptgott
Mention SSO users in SSH getting started guide (#46380)
514ad62 
Closes #44902

Add a quick note to the Next Steps section that you can configure SSO in
order to avoid the impression that server access only works with local
users.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
documentation ssh
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Mention SSO users in SSH getting started guide gravitational/teleport
2 participants
@zmb3 @tenaciousdlg