Teleport has a strong RBAC system that allows to grant access to specific resources.
In order to setup your environment, You need to do some preperations:
- Define what are the Groups in your organization
- Define which access each group needs, For example:
Developers group needs access to Grafana and server Superset - Decide how to label each server / resource, and assign the labels to each resource
- Deinfe the policy that grants the access to the resources
kind: role
version: v5
metadata:
name: Developers
description: Developers Team Role
spec:
allow:
logins: ['admin']
node_labels:
'type': 'Grafana'
'type': 'Superset'