This is a simple Terraform to provision an all-in-one Teleport cluster (auth, node, proxy) on a single ec2 instance based on Teleport's pre-built AMI.
This was based off Gravitational's aws example here.
Note : this module is a work-in-progress.
Teleport AMIs are built so you only need to specify environment variables to bring a fully configured instance online. See data.tpl or our documentation to learn more about supported environment variables.
A series of systemd units bootstrap the instance, via several bash scripts.
While this may not be sufficient for all use cases, it's a great proof-of-concept that you can fork and customize to your liking. Check out our AWS AMI generation code if you're interested in adapting this to your requirements.
This Terraform example will configure the following AWS resources:
- Teleport all-in-one (auth, node, proxy) single cluster ec2 instance
- DynamoDB tables (cluster state, cluster events, ssl lock)
- S3 bucket (session recording storage)
- Route53
Arecord - Security Groups and IAM roles