Skip to content

Commit

Permalink
teleport: Add explicit WebAuthn config, not just U2F.
Browse files Browse the repository at this point in the history 
WebAuthn is the default, replacing U2F, in Teleport 10 and above[1].
While Teleport can derive a WebAuthn configuration from a U2F
configuration[2], it's useful to be explicit.

[1]: https://goteleport.com/docs/access-controls/guides/webauthn/
[2]: https://goteleport.com/docs/access-controls/guides/webauthn/#u2f
  • Loading branch information
@alexmv @timabbott
alexmv authored and timabbott committed Jul 18, 2022
1 parent 7d8be67 commit 7ae3708
Showing 1 changed file with 2 additions and 5 deletions.
7 changes: 2 additions & 5 deletions puppet/zulip_ops/files/teleport_server.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -12,11 +12,8 @@ auth_service:
second_factor: on
u2f:
app_id: https://teleport.zulipchat.net
facets:
- https://teleport.zulipchat.net:443
- https://teleport.zulipchat.net
- teleport.zulipchat.net:443
- teleport.zulipchat.net
webauthn:
rp_id: teleport.zulipchat.net

proxy_service:
enabled: "yes"
Expand Down

0 comments on commit 7ae3708

Please sign in to comment.