Description
- Restore ability to disable multi-factor authentication for local users. #49692
- Bumping one of our dependencies to a more secure version to address CVE-2024-53259. #49662
- Add ability to configure resource labels in
teleport-cluster
's operator sub-chart. #49647 - Fixed proxy peering listener not using the exact address specified in
peer_listen_addr
. #49589 - Teleport Connect now shows whether it is being used on a trusted device or if enrollment is required for full access. #49577
- Kubernetes in-cluster joining now also accepts tokens whose audience is the Teleport cluster name (before it only allowed the default Kubernetes audience). Kubernetes JWKS joining is unchanged and still requires tokens with the cluster name in the audience. #49556
- Session recording playback in the web UI is now searchable. #49506
- Fixed an incorrect warning indicating that tsh v17.0.2 was incompatible with cluster v17.0.1, despite full compatibility. #49491
- Increase CockroachDB setup timeout from 5 to 30 seconds. This mitigates the Auth Service not being able to configure TTL on slow CockroachDB event backends. #49469
- Fixed a potential panic in login rule and SAML IdP expression parser. #49429
- Support for long-running kube exec/port-forward, respect client_idle_timeout config. #49421
- Fixed a permissions error with Postgres database user auto-provisioning that occurs when the database admin is not a superuser and the database is upgraded to Postgres v16 or higher. #49390
Enterprise:
- Jamf Service sync audit events are attributed to "Jamf Service".
- Users can now see a list of their enrolled devices on their Account page.
- Add support for Entra ID groups being members of other groups using Nested Access Lists.
- Added support for requiring reason for Access Requests (with a new role.spec.allow.request.reason.mode setting).
Download
Download the current and previous releases of Teleport at https://goteleport.com/download.
Plugins
Download the current release of Teleport plugins from the links below.
- Slack Linux amd64 | Linux arm64
- Mattermost Linux amd64 | Linux arm64
- Discord Linux amd64 | Linux arm64
- Terraform Provider Linux amd64 | Linux arm64 | macOS amd64 | macOS arm64 | macOS universal
- Event Handler Linux amd64 | Linux arm64 | macOS amd64
- PagerDuty Linux amd64 | Linux arm64
- Jira Linux amd64 | Linux arm64
- Email Linux amd64 | Linux arm64
- Microsoft Teams Linux amd64 | Linux arm64