kaffa/obsidian
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

relay4wd SSH 포트 2222 반영, APISIX 포트22 장애 기록, Teleport passwordless WebAuthn 추가

Browse Source
This commit is contained in:
kappa
2026-03-27 09:32:50 +09:00
parent f7f958e83e
commit 15da06855c
2 changed files with 8 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
infra/teleport.md
View File

@@ -1,6 +1,6 @@
---
title: Teleport (접근 관리)
updated: 2026-03-26
updated: 2026-03-27
tags: [infra, teleport, k3s, security]
---
@@ -48,8 +48,10 @@ teleport.inouter.com (52.79.45.166)
|------|-----|
| 인증 방식 | local (패스워드 + MFA) |
| MFA | OTP + WebAuthn (secondFactors) |
| Passwordless | 활성화 (`authentication.passwordless: true`, `webauthn.rp_id: teleport.inouter.com`) |
| MFA 비활성화 | 불가 — 한번 등록하면 `off`로 변경 시 auth 기동 실패 |
| CLI 로그인 | `tsh login --proxy=teleport.inouter.com --user=admin --auth=local` (OTP 입력) |
| CLI 로그인 (패스워드) | `tsh login --proxy=teleport.inouter.com --user=admin --auth=local` (OTP 입력) |
| CLI 로그인 (패스키) | `tsh login --proxy=teleport.inouter.com --auth=passwordless` (FIDO2 키 필요) |
| Touch ID | brew tsh에서 미지원, Teleport Connect 앱에서만 가능 |
| admin logins | teleport, root (`tctl users update admin --set-logins=teleport,root`) |