{"id":21213989,"url":"https://github.com/cruxstack/terraform-aws-teleport-cluster","last_synced_at":"2026-05-21T10:07:03.324Z","repository":{"id":182170609,"uuid":"668060259","full_name":"cruxstack/terraform-aws-teleport-cluster","owner":"cruxstack","description":"Terraform module to deploy Teleport, a zero-trust solution from Gravitational, to AWS in high-availability architecture","archived":false,"fork":false,"pushed_at":"2024-07-01T18:32:49.000Z","size":48,"stargazers_count":2,"open_issues_count":0,"forks_count":0,"subscribers_count":1,"default_branch":"main","last_synced_at":"2025-03-11T08:59:34.242Z","etag":null,"topics":["aws","aws-ec2","aws-ec2-intances","cloudposse","cluster","database-access","high-availability","infrastructure","sweetops","teleport","terraform","terraform-module","tls","x509","zero-trust","zero-trust-network-access","zero-trust-proxy","zero-trust-security"],"latest_commit_sha":null,"homepage":"https://registry.terraform.io/modules/cruxstack/teleport-cluster/aws/latest","language":"HCL","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/cruxstack.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null}},"created_at":"2023-07-18T23:55:50.000Z","updated_at":"2024-07-01T18:32:42.000Z","dependencies_parsed_at":"2024-01-22T20:55:58.689Z","dependency_job_id":"507bbc8a-2290-4180-94e3-3f71ce4a92dc","html_url":"https://github.com/cruxstack/terraform-aws-teleport-cluster","commit_stats":null,"previous_names":["sgtoj/terraform-aws-teleport-cluster","cruxstack/terraform-aws-teleport-cluster"],"tags_count":20,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cruxstack%2Fterraform-aws-teleport-cluster","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cruxstack%2Fterraform-aws-teleport-cluster/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cruxstack%2Fterraform-aws-teleport-cluster/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cruxstack%2Fterraform-aws-teleport-cluster/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/cruxstack","download_url":"https://codeload.github.com/cruxstack/terraform-aws-teleport-cluster/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":243663580,"owners_count":20327306,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["aws","aws-ec2","aws-ec2-intances","cloudposse","cluster","database-access","high-availability","infrastructure","sweetops","teleport","terraform","terraform-module","tls","x509","zero-trust","zero-trust-network-access","zero-trust-proxy","zero-trust-security"],"created_at":"2024-11-20T21:25:25.596Z","updated_at":"2026-05-21T10:06:58.301Z","avatar_url":"https://github.com/cruxstack.png","language":"HCL","funding_links":[],"categories":[],"sub_categories":[],"readme":"# Terraform Module: Teleport Cluster\n\nThis Terraform module deploys a Teleport cluster in high availability (HA)\nconfiguration. [Teleport](https://github.com/gravitational/teleport) is a modern\nzero-trust solution by Gravitational. This module has been tested with Teleport\nversion v10 and v14.\n\n### Features\n\n- **High Availability**: Deploys Teleport in a highly available configuration to\n ensure uninterrupted access.\n- **Managed Upgrades**: Supports controlled upgrades to new versions of\n Teleport.\n- **Secure**: Uses AWS Key Management Service (KMS) to secure sensitive data.\n- **Scalable**: Can handle growth in your user base and infrastructure without a\n corresponding increase in complexity.\n- **Integrated**: Works well with your existing infrastructure by following\n CloudPosse's context and labeling patterns.\n- **Automation** to create teleport connection to resources on-demand via\n included submodules.\n\n## Usage\n\nDeploy it using the block below. For the first time deployments, it make take 10\nminutes before the web portal is available.\n\n```hcl\nmodule \"teleport_cluster\" {\n source = \"cruxstack/teleport-cluster/aws\"\n version = \"x.x.x\"\n\n teleport_letsencrypt_email = \"letencrypt@example.com\"\n teleport_runtime_version = \"14.3.3\"\n teleport_setup_mode = false\n dns_parent_zone_id = \"Z0000000000000000000\"\n dns_parent_zone_name = \"demo.example.com\"\n vpc_id = \"vpc-00000000000000\"\n vpc_subnet_ids = [\"subnet-00000000000000\", \"subnet-11111111111111111\", \"subnet-22222222222222222\"]\n vpc_public_subnet_ids = [\"subnet-33333333333333\", \"subnet-44444444444444444\", \"subnet-55555555555555555\"]\n}\n```\n\n## Inputs\n\nIn addition to the variables documented below, this module includes several\nother optional variables (e.g., `name`, `tags`, etc.) provided by the\n`cloudposse/label/null` module. Please refer to its [documentation](https://registry.terraform.io/modules/cloudposse/label/null/latest)\nfor more details on these variables.\n\n| Name | Description | Type | Default | Required |\n|------------------------------|-------------------------------------------------------------------------------------------------------------------|----------------|---------|:--------:|\n| `teleport_runtime_version` | The runtime version of Teleport. | `string` | n/a | yes |\n| `teleport_letsencrypt_email` | The email address to use for Let's Encrypt. | `string` | n/a | yes |\n| `teleport_setup_mode` | Toggle Teleport setup mode. | `bool` | `true` | no |\n| `teleport_experimental_mode` | Toggle Teleport experimental mode. | `bool` | `false` | no |\n| `instance_config` | Configuration for the instances. Each type (`auth`, `node`, `proxy`) contains an object with `count` and `sizes`. | `object` | `{}` | no |\n| `artifacts_bucket_name` | The name of the S3 bucket for artifacts. | `string` | `\"\"` | no |\n| `logs_bucket_name` | The name of the S3 bucket for logs. | `string` | `\"\"` | no |\n| `dns_parent_zone_id` | The ID of the parent DNS zone. | `string` | n/a | yes |\n| `dns_parent_zone_name` | The name of the parent DNS zone. | `string` | n/a | yes |\n| `vpc_id` | The ID of the VPC to deploy resources into. | `string` | n/a | yes |\n| `vpc_private_subnet_ids` | The IDs of the private subnets in the VPC to deploy resources into. | `list(string)` | n/a | yes |\n| `vpc_public_subnet_ids` | The IDs of the public subnets in the VPC to deploy resources into. | `list(string)` | n/a | yes |\n| `aws_region_name` | The name of the AWS region. | `string` | `\"\"` | no |\n| `aws_account_id` | The ID of the AWS account. | `string` | `\"\"` | no |\n| `aws_kv_namespace` | The namespace or prefix for AWS SSM parameters and similar resources. | `string` | `\"\"` | no |\n\n### Outputs\n\n| Name | Description |\n|-------------------------|------------------------------------------------------------------|\n| `teleport_dns_name` | The DNS name of the Teleport service. |\n| `teleport_auth_config` | The configuration details for the Teleport auth service. |\n| `teleport_node_config` | The configuration details for the Teleport node service. |\n| `teleport_proxy_config` | The configuration details for the Teleport proxy service. |\n| `security_group_id` | The ID of the security group created for the Teleport service. |\n| `security_group_name` | The name of the security group created for the Teleport service. |\n\n## Contributing\n\nWe welcome contributions to this project. For information on setting up a\ndevelopment environment and how to make a contribution, see [CONTRIBUTING](./CONTRIBUTING.md)\ndocumentation.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fcruxstack%2Fterraform-aws-teleport-cluster","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fcruxstack%2Fterraform-aws-teleport-cluster","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fcruxstack%2Fterraform-aws-teleport-cluster/lists"}