Teleport

Protect SSH access to your droplets, web access to 1-click droplet apps, web access to 1-click Kubernetes apps, and database access to self-hosted MySQL, PostgreSQL, MongoDB with Teleport Community Edition.

Software Included

Package Version License
Teleport 14

Creating an App using the Control Panel

Click the Deploy to DigitalOcean button to create a Droplet based on this 1-Click App. If you aren’t logged in, this link will prompt you to log in with your DigitalOcean account.

Deploy to DO

Creating an App using the API

In addition to creating a Droplet from the Teleport 1-Click App using the control panel, you can also use the DigitalOcean API. As an example, to create a 4GB Teleport Droplet in the SFO2 region, you can use the following curl command. You need to either save your API access token) to an environment variable or substitute it in the command below.

curl -X POST -H 'Content-Type: application/json' \
         -H 'Authorization: Bearer '$TOKEN'' -d \
        '{"name":"choose_a_name","region":"sfo2","size":"s-2vcpu-4gb","image": "devrel-teleport-20-04"}' \
        "https://api.digitalocean.com/v2/droplets"

Getting Started After Deploying Teleport

After you create Teleport One-Click Droplet, to finish Teleport configuration, you will need:

  • A cluster name - A Fully Qualified Domain Name (FQDN) whose DNS A record points to this droplet IP.
  • An email address - To retrieve a TLS certificate from LetsEncrypt.
  • An initial username - User who can authenticate with Teleport or manage Teleport.
  • A two-factor authenticator app (e.g., Google Authenticator).

Once you are ready with the above prerequisites,

  • SSH to your droplet - ssh root@your_droplet_public_ipv4.
  • Enter cluster name, email address, and Teleport username when prompted by the startup wizard.
  • The startup wizard will automatically configure a Teleport cluster for you based on your input.

A registration link will be printed on the terminal to complete the initial user registration process.

The WebUI will be available at https://{cluster name}:443

In addition to the package installation, the Teleport One-Click Droplet also:

  • Requests a LetsEncrypt TLS certificate for your Fully Qualified Domain Name (FQDN)
  • Runs through an initial configuration wizard on the first login

If you want to try Teleport without spinning up a server, check out our live demo track for Teleport Server Access.

For a detailed tutorial, check out getting started with Teleport on DigitalOcean.

If this is the first time you are trying Teleport, we highly recommend reading our guide on how Teleport works first.