New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Machine ID FIPS support #23563
Machine ID FIPS support #23563
Conversation
Investigation into our existing FIPS releases reveals that |
TODO:
|
Can confirm RSA 2048 is used for all private key generation in tbot for impersonated and bot identity. |
Set up FIPS teleport enterprise cluster on AWS and tested:
Enterprise auth server was running build from same version as tbot. Default Teleport config with only change being fips enabled and ACME enabled. |
f266d69
to
5f1933b
Compare
5f1933b
to
7e0309b
Compare
Is that supposed to be included in this PR? I don't see that |
It's easy to miss - it literally just required passing the boolean into the registration parameters https://github.com/gravitational/teleport/pull/23563/files#diff-ada93b8988e691f20b53943cf8d5cb35f29c1502d7639766f6f4b43dcd3eb6c8R476 |
@strideynet See the table below for backport results.
|
* Machine ID `tbot` FIPS support * Add GoDoc for bot CLI
Closes #22448
Goals: