diff --git a/docs/config.json b/docs/config.json index 04d8de69a41c1..fb81a85955b3d 100644 --- a/docs/config.json +++ b/docs/config.json @@ -579,74 +579,6 @@ } ] }, - { - "icon": "wand", - "title": "Auto-Enroll Resources", - "entries": [ - { - "title": "Introduction", - "slug": "/auto-discovery/" - }, - { - "title": "Servers", - "slug": "/auto-discovery/servers/", - "entries": [ - { - "title": "EC2 Instance Discovery", - "slug": "/auto-discovery/servers/ec2-discovery/" - }, - { - "title": "Azure Instance Discovery", - "slug": "/auto-discovery/servers/azure-discovery/" - }, - { - "title": "GCP Instance Discovery", - "slug": "/auto-discovery/servers/gcp-discovery/" - } - ] - }, - { - "title": "Kubernetes Clusters", - "slug": "/auto-discovery/kubernetes/", - "entries": [ - { - "title": "AWS", - "slug": "/auto-discovery/kubernetes/aws/" - }, - { - "title": "Azure", - "slug": "/auto-discovery/kubernetes/azure/" - }, - { - "title": "Google Cloud", - "slug": "/auto-discovery/kubernetes/google-cloud/" - } - ] - }, - { - "title": "Databases", - "slug": "/auto-discovery/databases/" - }, - { - "title": "Kubernetes Applications", - "slug": "/auto-discovery/kubernetes-applications/", - "entries": [ - { - "title": "Get Started", - "slug": "/auto-discovery/kubernetes-applications/get-started/" - }, - { - "title": "Architecture", - "slug": "/auto-discovery/kubernetes-applications/architecture/" - }, - { - "title": "Reference", - "slug": "/auto-discovery/kubernetes-applications/reference/" - } - ] - } - ] - }, { "icon": "window", "title": "Application Access", @@ -780,81 +712,6 @@ } ] }, - { - "icon": "server", - "title": "Server Access", - "entries": [ - { - "title": "Introduction", - "slug": "/server-access/introduction/" - }, - { - "title": "Getting Started", - "slug": "/server-access/getting-started/" - }, - { - "title": "Enrolling OpenSSH Servers", - "slug": "/server-access/openssh/", - "entries": [ - { - "title": "Agentless OpenSSH Integration", - "slug": "/server-access/openssh/openssh/" - }, - { - "title": "Agentless OpenSSH Integration (Manual Install)", - "slug": "/server-access/openssh/openssh-manual-install/" - } - ] - }, - { - "title": "Guides", - "slug": "/server-access/guides/", - "entries": [ - { - "title": "Using Teleport with PAM", - "slug": "/server-access/guides/ssh-pam/" - }, - { - "title": "Recording Proxy Mode", - "slug": "/server-access/guides/recording-proxy-mode/", - "forScopes": ["oss", "enterprise"] - }, - { - "title": "BPF Session Recording", - "slug": "/server-access/guides/bpf-session-recording/" - }, - { - "title": "Visual Studio Code", - "slug": "/server-access/guides/vscode/" - }, - { - "title": "JetBrains SFTP", - "slug": "/server-access/guides/jetbrains-sftp/" - }, - { - "title": "Host User Creation", - "slug": "/server-access/guides/host-user-creation/" - }, - { - "title": "Linux Auditing System", - "slug": "/server-access/guides/auditd/" - }, - { - "title": "Using Teleport with Ansible", - "slug": "/server-access/guides/ansible/" - } - ] - }, - { - "title": "Access Controls", - "slug": "/server-access/rbac/" - }, - { - "title": "Troubleshooting Server Access", - "slug": "/server-access/troubleshooting-server/" - } - ] - }, { "icon": "kubernetes", "title": "Kubernetes Access", @@ -1964,8 +1821,8 @@ "permanent": true }, { - "source": "/server-access/guides/openssh/", - "destination": "/server-access/openssh/", + "source": "/machine-id/guides/gitlab/", + "destination": "/machine-id/deployment/github-actions/", "permanent": true }, { @@ -2009,78 +1866,8 @@ "permanent": true }, { - "source": "/server-access/guides/restricted-session/", - "destination": "/server-access/guides/", - "permanent": true - }, - { - "source": "/database-access/guides/aws-discovery/", - "destination": "/auto-discovery/databases/", - "permanent": true - }, - { - "source": "/kubernetes-access/discovery/", - "destination": "/auto-discovery/kubernetes/", - "permanent": true - }, - { - "source": "/kubernetes-access/discovery/aws/", - "destination": "/auto-discovery/kubernetes/aws/", - "permanent": true - }, - { - "source": "/kubernetes-access/discovery/azure/", - "destination": "/auto-discovery/kubernetes/azure/", - "permanent": true - }, - { - "source": "/kubernetes-access/discovery/google-cloud/", - "destination": "/auto-discovery/kubernetes/google-cloud/", - "permanent": true - }, - { - "source": "/server-access/guides/azure-discovery/", - "destination": "/auto-discovery/servers/azure-discovery/", - "permanent": true - }, - { - "source": "/server-access/guides/ec2-discovery/", - "destination": "/auto-discovery/servers/ec2-discovery/", - "permanent": true - }, - { - "source": "/server-access/guides/gcp-discovery/", - "destination": "/auto-discovery/servers/gcp-discovery/", - "permanent": true - }, - { - "source": "/application-access/enroll-kubernetes-applications/", - "destination": "/auto-discovery/kubernetes-applications/", - "permanent": true - }, - { - "source": "/application-access/enroll-kubernetes-applications/architecture/", - "destination": "/auto-discovery/kubernetes-applications/architecture/", - "permanent": true - }, - { - "source": "/application-access/enroll-kubernetes-applications/get-started/", - "destination": "/auto-discovery/kubernetes-applications/get-started/", - "permanent": true - }, - { - "source": "/application-access/enroll-kubernetes-applications/reference/", - "destination": "/auto-discovery/kubernetes-applications/reference/", - "permanent": true - }, - { - "source": "/server-access/guides/openssh/openssh-manual-install/", - "destination": "/server-access/openssh/openssh-manual-install/", - "permanent": true - }, - { - "source": "/server-access/guides/openssh/openssh/", - "destination": "/server-access/openssh/openssh/", + "source": "/access-graph/", + "destination": "/access-controls/access-graph/", "permanent": true }, { diff --git a/docs/pages/admin-guides.mdx b/docs/pages/admin-guides.mdx index dd33639169354..cbc65bfde9dd1 100644 --- a/docs/pages/admin-guides.mdx +++ b/docs/pages/admin-guides.mdx @@ -5,8 +5,6 @@ description: "Step-by-step guides to performing common Teleport tasks" {/*TOPICS*/} -- [AWS OIDC Integration](admin-guides/awsoidc-integration.mdx): How to connect your AWS account with Teleport and provide access to AWS resources. - ## Common Operations Contains guides for performing common tasks on a Teleport cluster after the initial setup phase. ([more info](admin-guides/common-operations.mdx)) @@ -30,9 +28,10 @@ Use configuration files and dynamic resources to adjust access controls, enroll Guides for enrolling servers, databases, and other infrastructure resources with Teleport so you can set up secure access. ([more info](admin-guides/protect-resources.mdx)) -- [Configure Trusted Clusters](admin-guides/protect-resources/trustedclusters.mdx): Explains how you can configure a trust relationship and manage access between two Teleport clusters. +- [AWS OIDC Integration](admin-guides/protect-resources/awsoidc-integration.mdx): How to connect your AWS account with Teleport and provide access to AWS resources. +- [Protect Linux Servers with Teleport (section)](admin-guides/protect-resources/server-access.mdx): How to enroll Linux servers in your Teleport cluster to enable secure SSH access. - [Teleport Agents (section)](admin-guides/protect-resources/agents.mdx): How to use Teleport Agents, which enable users to connect to resources in your infrastructure. -- [Teleport Label Guides (section)](admin-guides/protect-resources/labels.mdx): Guides to using Teleport labels, which underpin the Teleport role-based access controls system. +- [Teleport Auto-Discovery (section)](admin-guides/protect-resources/auto-discovery.mdx): Learn how to use the Teleport Discovery Service, which automatically enrolls resources by query APIs ## Self-Hosting Teleport @@ -41,3 +40,10 @@ Guides to deploying and managing the Teleport Auth Service and Proxy Service. ([ - [Deploying a Self-Hosted Teleport Cluster (section)](admin-guides/self-hosting/deploy-a-cluster.mdx): Guides for deploying self-hosted Teleport clusters on various platforms and cloud providers. - [Manage a Self-Hosted Teleport Cluster (section)](admin-guides/self-hosting/management.mdx): Guides to completing common tasks on self-hosted Teleport clusters after the initial deployment. - [Running a Self-Hosted Teleport Demo Cluster (section)](admin-guides/self-hosting/demo-clusters.mdx): Guides to running small-scale, self-hosted Teleport clusters to test functionality. + +## Teleport Access Controls + +Guides to configuring the access that Teleport users have to infrastructure resources and cluster permissions. ([more info](admin-guides/rbac.mdx)) + +- [Configure Trusted Clusters](admin-guides/rbac/trustedclusters.mdx): Explains how you can configure a trust relationship and manage access between two Teleport clusters. +- [Teleport Label Guides (section)](admin-guides/rbac/labels.mdx): Guides to using Teleport labels, which underpin the Teleport role-based access controls system. diff --git a/docs/pages/admin-guides/protect-resources.mdx b/docs/pages/admin-guides/protect-resources.mdx index c17eb00f16a00..46a32eaeab184 100644 --- a/docs/pages/admin-guides/protect-resources.mdx +++ b/docs/pages/admin-guides/protect-resources.mdx @@ -5,7 +5,17 @@ description: Guides for enrolling servers, databases, and other infrastructure r {/*TOPICS*/} -- [Configure Trusted Clusters](protect-resources/trustedclusters.mdx): Explains how you can configure a trust relationship and manage access between two Teleport clusters. +- [AWS OIDC Integration](protect-resources/awsoidc-integration.mdx): How to connect your AWS account with Teleport and provide access to AWS resources. + +## Protect Linux Servers with Teleport + +How to enroll Linux servers in your Teleport cluster to enable secure SSH access. ([more info](protect-resources/server-access.mdx)) + +- [OpenSSH Guides (section)](protect-resources/server-access/openssh.mdx): Teleport Agentless OpenSSH integration guides. +- [Protect SSH Servers with Teleport (section)](protect-resources/server-access/guides.mdx): Guides to enrolling SSH servers in your Teleport cluster with the Teleport SSH Service. +- [Server Access Getting Started Guide](protect-resources/server-access/getting-started.mdx): Getting started with Teleport server access. +- [Teleport Server Access Features and Introduction](protect-resources/server-access/introduction.mdx): Teleport server access features and introduction. +- [Troubleshooting Server Access](protect-resources/server-access/troubleshooting-server.mdx): Describes common issues and solutions for access to servers. ## Teleport Agents @@ -15,10 +25,11 @@ How to use Teleport Agents, which enable users to connect to resources in your i - [Join Agents to your Teleport Cluster (section)](protect-resources/agents/join-services-to-your-cluster.mdx): Methods you can use to established trust between a newly deployed Teleport agent and your Teleport cluster so you can protect resources. - [Protect Infrastructure with Teleport](protect-resources/agents/introduction.mdx): Deploy Agents to enroll resources in your infrastructure with Teleport. You can run multiple Teleport services per Agent. -## Teleport Label Guides +## Teleport Auto-Discovery -Guides to using Teleport labels, which underpin the Teleport role-based access controls system. ([more info](protect-resources/labels.mdx)) +Learn how to use the Teleport Discovery Service, which automatically enrolls resources by query APIs ([more info](protect-resources/auto-discovery.mdx)) -- [Add Labels to Resources](protect-resources/labels/labels.mdx): How to assign static and command-based dynamic labels to Teleport resources. -- [EC2 Tags as Teleport Node Labels](protect-resources/labels/ec2-tags.mdx): How to set up Teleport Node labels based on EC2 tags -- [GCP Tags and Labels as Teleport Agent Labels](protect-resources/labels/gcp-tags.mdx): How to set up Teleport agent labels based on GCP tags and labels +- [AWS Database Auto-Discovery](protect-resources/auto-discovery/databases.mdx): How to configure Teleport to discover AWS-hosted databases. +- [Automatically Enroll Kubernetes Clusters (section)](protect-resources/auto-discovery/kubernetes.mdx): Register Kubernetes clusters with your Teleport cluster by polling service discovery endpoints. +- [Enroll Kubernetes Services as Teleport Applications (section)](protect-resources/auto-discovery/kubernetes-applications.mdx): Teleport can automatically detect applications running in your Kubernetes clusters and register them with Teleport for secure access. +- [Server Auto-Discovery (section)](protect-resources/auto-discovery/servers.mdx): You can set up the Teleport Discovery Service to automatically enroll servers in your infrastructure. diff --git a/docs/pages/auto-discovery.mdx b/docs/pages/admin-guides/protect-resources/auto-discovery.mdx similarity index 100% rename from docs/pages/auto-discovery.mdx rename to docs/pages/admin-guides/protect-resources/auto-discovery.mdx diff --git a/docs/pages/auto-discovery/databases.mdx b/docs/pages/admin-guides/protect-resources/auto-discovery/databases.mdx similarity index 100% rename from docs/pages/auto-discovery/databases.mdx rename to docs/pages/admin-guides/protect-resources/auto-discovery/databases.mdx diff --git a/docs/pages/auto-discovery/kubernetes-applications.mdx b/docs/pages/admin-guides/protect-resources/auto-discovery/kubernetes-applications.mdx similarity index 100% rename from docs/pages/auto-discovery/kubernetes-applications.mdx rename to docs/pages/admin-guides/protect-resources/auto-discovery/kubernetes-applications.mdx diff --git a/docs/pages/auto-discovery/kubernetes-applications/architecture.mdx b/docs/pages/admin-guides/protect-resources/auto-discovery/kubernetes-applications/architecture.mdx similarity index 100% rename from docs/pages/auto-discovery/kubernetes-applications/architecture.mdx rename to docs/pages/admin-guides/protect-resources/auto-discovery/kubernetes-applications/architecture.mdx diff --git a/docs/pages/auto-discovery/kubernetes-applications/get-started.mdx b/docs/pages/admin-guides/protect-resources/auto-discovery/kubernetes-applications/get-started.mdx similarity index 100% rename from docs/pages/auto-discovery/kubernetes-applications/get-started.mdx rename to docs/pages/admin-guides/protect-resources/auto-discovery/kubernetes-applications/get-started.mdx diff --git a/docs/pages/auto-discovery/kubernetes-applications/reference.mdx b/docs/pages/admin-guides/protect-resources/auto-discovery/kubernetes-applications/reference.mdx similarity index 100% rename from docs/pages/auto-discovery/kubernetes-applications/reference.mdx rename to docs/pages/admin-guides/protect-resources/auto-discovery/kubernetes-applications/reference.mdx diff --git a/docs/pages/auto-discovery/kubernetes.mdx b/docs/pages/admin-guides/protect-resources/auto-discovery/kubernetes.mdx similarity index 100% rename from docs/pages/auto-discovery/kubernetes.mdx rename to docs/pages/admin-guides/protect-resources/auto-discovery/kubernetes.mdx diff --git a/docs/pages/auto-discovery/kubernetes/aws.mdx b/docs/pages/admin-guides/protect-resources/auto-discovery/kubernetes/aws.mdx similarity index 100% rename from docs/pages/auto-discovery/kubernetes/aws.mdx rename to docs/pages/admin-guides/protect-resources/auto-discovery/kubernetes/aws.mdx diff --git a/docs/pages/auto-discovery/kubernetes/azure.mdx b/docs/pages/admin-guides/protect-resources/auto-discovery/kubernetes/azure.mdx similarity index 100% rename from docs/pages/auto-discovery/kubernetes/azure.mdx rename to docs/pages/admin-guides/protect-resources/auto-discovery/kubernetes/azure.mdx diff --git a/docs/pages/auto-discovery/kubernetes/google-cloud.mdx b/docs/pages/admin-guides/protect-resources/auto-discovery/kubernetes/google-cloud.mdx similarity index 100% rename from docs/pages/auto-discovery/kubernetes/google-cloud.mdx rename to docs/pages/admin-guides/protect-resources/auto-discovery/kubernetes/google-cloud.mdx diff --git a/docs/pages/auto-discovery/kubernetes/overview.mdx b/docs/pages/admin-guides/protect-resources/auto-discovery/kubernetes/overview.mdx similarity index 100% rename from docs/pages/auto-discovery/kubernetes/overview.mdx rename to docs/pages/admin-guides/protect-resources/auto-discovery/kubernetes/overview.mdx diff --git a/docs/pages/auto-discovery/servers.mdx b/docs/pages/admin-guides/protect-resources/auto-discovery/servers.mdx similarity index 100% rename from docs/pages/auto-discovery/servers.mdx rename to docs/pages/admin-guides/protect-resources/auto-discovery/servers.mdx diff --git a/docs/pages/auto-discovery/servers/azure-discovery.mdx b/docs/pages/admin-guides/protect-resources/auto-discovery/servers/azure-discovery.mdx similarity index 100% rename from docs/pages/auto-discovery/servers/azure-discovery.mdx rename to docs/pages/admin-guides/protect-resources/auto-discovery/servers/azure-discovery.mdx diff --git a/docs/pages/auto-discovery/servers/ec2-discovery.mdx b/docs/pages/admin-guides/protect-resources/auto-discovery/servers/ec2-discovery.mdx similarity index 100% rename from docs/pages/auto-discovery/servers/ec2-discovery.mdx rename to docs/pages/admin-guides/protect-resources/auto-discovery/servers/ec2-discovery.mdx diff --git a/docs/pages/auto-discovery/servers/gcp-discovery.mdx b/docs/pages/admin-guides/protect-resources/auto-discovery/servers/gcp-discovery.mdx similarity index 100% rename from docs/pages/auto-discovery/servers/gcp-discovery.mdx rename to docs/pages/admin-guides/protect-resources/auto-discovery/servers/gcp-discovery.mdx diff --git a/docs/pages/admin-guides/awsoidc-integration.mdx b/docs/pages/admin-guides/protect-resources/awsoidc-integration.mdx similarity index 100% rename from docs/pages/admin-guides/awsoidc-integration.mdx rename to docs/pages/admin-guides/protect-resources/awsoidc-integration.mdx diff --git a/docs/pages/server-access.mdx b/docs/pages/admin-guides/protect-resources/server-access.mdx similarity index 95% rename from docs/pages/server-access.mdx rename to docs/pages/admin-guides/protect-resources/server-access.mdx index dae64fbc91637..dd18460b3aadf 100644 --- a/docs/pages/server-access.mdx +++ b/docs/pages/admin-guides/protect-resources/server-access.mdx @@ -5,7 +5,6 @@ description: How to enroll Linux servers in your Teleport cluster to enable secu {/*TOPICS*/} -- [Access Controls for Servers](server-access/rbac.mdx): Role-based access control (RBAC) for Teleport server access. - [Server Access Getting Started Guide](server-access/getting-started.mdx): Getting started with Teleport server access. - [Teleport Server Access Features and Introduction](server-access/introduction.mdx): Teleport server access features and introduction. - [Troubleshooting Server Access](server-access/troubleshooting-server.mdx): Describes common issues and solutions for access to servers. diff --git a/docs/pages/server-access/getting-started.mdx b/docs/pages/admin-guides/protect-resources/server-access/getting-started.mdx similarity index 100% rename from docs/pages/server-access/getting-started.mdx rename to docs/pages/admin-guides/protect-resources/server-access/getting-started.mdx diff --git a/docs/pages/server-access/guides.mdx b/docs/pages/admin-guides/protect-resources/server-access/guides.mdx similarity index 100% rename from docs/pages/server-access/guides.mdx rename to docs/pages/admin-guides/protect-resources/server-access/guides.mdx diff --git a/docs/pages/server-access/guides/ansible.mdx b/docs/pages/admin-guides/protect-resources/server-access/guides/ansible.mdx similarity index 100% rename from docs/pages/server-access/guides/ansible.mdx rename to docs/pages/admin-guides/protect-resources/server-access/guides/ansible.mdx diff --git a/docs/pages/server-access/guides/auditd.mdx b/docs/pages/admin-guides/protect-resources/server-access/guides/auditd.mdx similarity index 100% rename from docs/pages/server-access/guides/auditd.mdx rename to docs/pages/admin-guides/protect-resources/server-access/guides/auditd.mdx diff --git a/docs/pages/server-access/guides/bpf-session-recording.mdx b/docs/pages/admin-guides/protect-resources/server-access/guides/bpf-session-recording.mdx similarity index 100% rename from docs/pages/server-access/guides/bpf-session-recording.mdx rename to docs/pages/admin-guides/protect-resources/server-access/guides/bpf-session-recording.mdx diff --git a/docs/pages/server-access/guides/host-user-creation.mdx b/docs/pages/admin-guides/protect-resources/server-access/guides/host-user-creation.mdx similarity index 100% rename from docs/pages/server-access/guides/host-user-creation.mdx rename to docs/pages/admin-guides/protect-resources/server-access/guides/host-user-creation.mdx diff --git a/docs/pages/server-access/guides/jetbrains-sftp.mdx b/docs/pages/admin-guides/protect-resources/server-access/guides/jetbrains-sftp.mdx similarity index 100% rename from docs/pages/server-access/guides/jetbrains-sftp.mdx rename to docs/pages/admin-guides/protect-resources/server-access/guides/jetbrains-sftp.mdx diff --git a/docs/pages/server-access/guides/recording-proxy-mode.mdx b/docs/pages/admin-guides/protect-resources/server-access/guides/recording-proxy-mode.mdx similarity index 100% rename from docs/pages/server-access/guides/recording-proxy-mode.mdx rename to docs/pages/admin-guides/protect-resources/server-access/guides/recording-proxy-mode.mdx diff --git a/docs/pages/server-access/guides/ssh-pam.mdx b/docs/pages/admin-guides/protect-resources/server-access/guides/ssh-pam.mdx similarity index 100% rename from docs/pages/server-access/guides/ssh-pam.mdx rename to docs/pages/admin-guides/protect-resources/server-access/guides/ssh-pam.mdx diff --git a/docs/pages/server-access/guides/vscode.mdx b/docs/pages/admin-guides/protect-resources/server-access/guides/vscode.mdx similarity index 100% rename from docs/pages/server-access/guides/vscode.mdx rename to docs/pages/admin-guides/protect-resources/server-access/guides/vscode.mdx diff --git a/docs/pages/server-access/introduction.mdx b/docs/pages/admin-guides/protect-resources/server-access/introduction.mdx similarity index 100% rename from docs/pages/server-access/introduction.mdx rename to docs/pages/admin-guides/protect-resources/server-access/introduction.mdx diff --git a/docs/pages/server-access/openssh.mdx b/docs/pages/admin-guides/protect-resources/server-access/openssh.mdx similarity index 100% rename from docs/pages/server-access/openssh.mdx rename to docs/pages/admin-guides/protect-resources/server-access/openssh.mdx diff --git a/docs/pages/server-access/openssh/openssh-manual-install.mdx b/docs/pages/admin-guides/protect-resources/server-access/openssh/openssh-manual-install.mdx similarity index 100% rename from docs/pages/server-access/openssh/openssh-manual-install.mdx rename to docs/pages/admin-guides/protect-resources/server-access/openssh/openssh-manual-install.mdx diff --git a/docs/pages/server-access/openssh/openssh.mdx b/docs/pages/admin-guides/protect-resources/server-access/openssh/openssh.mdx similarity index 100% rename from docs/pages/server-access/openssh/openssh.mdx rename to docs/pages/admin-guides/protect-resources/server-access/openssh/openssh.mdx diff --git a/docs/pages/server-access/troubleshooting-server.mdx b/docs/pages/admin-guides/protect-resources/server-access/troubleshooting-server.mdx similarity index 100% rename from docs/pages/server-access/troubleshooting-server.mdx rename to docs/pages/admin-guides/protect-resources/server-access/troubleshooting-server.mdx diff --git a/docs/pages/admin-guides/rbac.mdx b/docs/pages/admin-guides/rbac.mdx new file mode 100644 index 0000000000000..32481fe182fdc --- /dev/null +++ b/docs/pages/admin-guides/rbac.mdx @@ -0,0 +1,16 @@ +--- +title: Teleport Access Controls +description: Guides to configuring the access that Teleport users have to infrastructure resources and cluster permissions. +--- + +{/*TOPICS*/} + +- [Configure Trusted Clusters](rbac/trustedclusters.mdx): Explains how you can configure a trust relationship and manage access between two Teleport clusters. + +## Teleport Label Guides + +Guides to using Teleport labels, which underpin the Teleport role-based access controls system. ([more info](rbac/labels.mdx)) + +- [Add Labels to Resources](rbac/labels/labels.mdx): How to assign static and command-based dynamic labels to Teleport resources. +- [EC2 Tags as Teleport Node Labels](rbac/labels/ec2-tags.mdx): How to set up Teleport Node labels based on EC2 tags +- [GCP Tags and Labels as Teleport Agent Labels](rbac/labels/gcp-tags.mdx): How to set up Teleport agent labels based on GCP tags and labels diff --git a/docs/pages/admin-guides/protect-resources/labels.mdx b/docs/pages/admin-guides/rbac/labels.mdx similarity index 100% rename from docs/pages/admin-guides/protect-resources/labels.mdx rename to docs/pages/admin-guides/rbac/labels.mdx diff --git a/docs/pages/admin-guides/protect-resources/labels/ec2-tags.mdx b/docs/pages/admin-guides/rbac/labels/ec2-tags.mdx similarity index 100% rename from docs/pages/admin-guides/protect-resources/labels/ec2-tags.mdx rename to docs/pages/admin-guides/rbac/labels/ec2-tags.mdx diff --git a/docs/pages/admin-guides/protect-resources/labels/gcp-tags.mdx b/docs/pages/admin-guides/rbac/labels/gcp-tags.mdx similarity index 100% rename from docs/pages/admin-guides/protect-resources/labels/gcp-tags.mdx rename to docs/pages/admin-guides/rbac/labels/gcp-tags.mdx diff --git a/docs/pages/admin-guides/protect-resources/labels/labels.mdx b/docs/pages/admin-guides/rbac/labels/labels.mdx similarity index 100% rename from docs/pages/admin-guides/protect-resources/labels/labels.mdx rename to docs/pages/admin-guides/rbac/labels/labels.mdx diff --git a/docs/pages/admin-guides/protect-resources/trustedclusters.mdx b/docs/pages/admin-guides/rbac/trustedclusters.mdx similarity index 100% rename from docs/pages/admin-guides/protect-resources/trustedclusters.mdx rename to docs/pages/admin-guides/rbac/trustedclusters.mdx diff --git a/docs/pages/reference.mdx b/docs/pages/reference.mdx index dff2579d845f6..e0889eefbb530 100644 --- a/docs/pages/reference.mdx +++ b/docs/pages/reference.mdx @@ -17,6 +17,12 @@ References for concepts and tools available for operating Teleport. ([more info] - [Teleport Signals Reference](reference/operations/signals.mdx): Signals you can send to a running teleport process. - [User Types](reference/operations/user-types.mdx): Describes the different types of Teleport users and their properties. +## Teleport Access Controls References + +Available options for configuring access to Teleport privileges and infrastructure resources. ([more info](reference/rbac.mdx)) + +- [Access Controls for Servers](reference/rbac/server-rbac.mdx): Role-based access control (RBAC) for Teleport server access. + ## Teleport Architecture Guides Guides to the inner workings of components within a Teleport cluster. ([more info](reference/architecture.mdx)) diff --git a/docs/pages/reference/rbac.mdx b/docs/pages/reference/rbac.mdx new file mode 100644 index 0000000000000..471300b42865e --- /dev/null +++ b/docs/pages/reference/rbac.mdx @@ -0,0 +1,8 @@ +--- +title: Teleport Access Controls References +description: Available options for configuring access to Teleport privileges and infrastructure resources. +--- + +{/*TOPICS*/} + +- [Access Controls for Servers](rbac/server-rbac.mdx): Role-based access control (RBAC) for Teleport server access. diff --git a/docs/pages/server-access/rbac.mdx b/docs/pages/reference/rbac/server-rbac.mdx similarity index 100% rename from docs/pages/server-access/rbac.mdx rename to docs/pages/reference/rbac/server-rbac.mdx diff --git a/package.json b/package.json index 33539c304ad70..c16489d6315df 100644 --- a/package.json +++ b/package.json @@ -2,7 +2,7 @@ "name": "teleport-ui", "version": "1.0.0", "scripts": { - "all-topics": "node docs/gen-topic-pages/index.js --in docs/pages/admin-guides,docs/pages/database-access,docs/pages/access-controls,docs/pages/desktop-access,docs/pages/kubernetes-access,docs/pages/connect-your-client,docs/pages/auto-discovery,docs/pages/choose-an-edition,docs/pages/server-access,docs/pages/machine-id,docs/pages/reference,docs/pages/application-access", + "all-topics": "node docs/gen-topic-pages/index.js --in docs/pages/admin-guides,docs/pages/database-access,docs/pages/access-controls,docs/pages/desktop-access,docs/pages/kubernetes-access,docs/pages/connect-your-client,docs/pages/choose-an-edition,docs/pages/machine-id,docs/pages/reference,docs/pages/application-access", "build-ui": "yarn build-ui-oss && yarn build-ui-e", "build-ui-oss": "yarn workspace @gravitational/teleport build", "build-ui-e": "yarn workspace @gravitational/teleport.e build",