-
The specific use-case is: I want to define a role for a helpdesk team to support Developers on their virtual machines, who of course have their personal name as login, hence the allowed logins can not be defined explicitely. the role I came up with so far:
what I certainly want is:
which understandably leads to the error message
what I hope for is that there is some other kind of variable like this As a matter of fact, it would be absolutely sufficient if we'd be able to provide a
|
Beta Was this translation helpful? Give feedback.
Replies: 1 comment 4 replies
-
Unfortunately, Teleport's RBAC checks require that you enumerate all individual logins that you might want to use. This is essentially a security feature to avoid inadvertently granting more access than intended. |
Beta Was this translation helpful? Give feedback.
Unfortunately, Teleport's RBAC checks require that you enumerate all individual logins that you might want to use. This is essentially a security feature to avoid inadvertently granting more access than intended.