search

gravitational / teleport

The easiest, and most secure way to access and protect all of your infrastructure.
https://goteleport.com
GNU Affero General Public License v3.0
17.68k stars 1.77k forks source link

Allow multiple users per-device #43128

Open codingllama opened 5 months ago

codingllama commented 5 months ago

What would you like Teleport to do?

Allow a device to have multiple, "concurrent" owners.

Optionally allow cluster administrators to choose the device ownership "mode" (single or multi).

What problem does this solve?

While single-ownership is a reasonable assumption, multi-owner devices are sometimes useful in practice.

The single-owner assumption was introduced by #29606.

If a workaround exists, please include it.

No proper workaround exists - one would have to re-enroll the device every time ownership changes.

codingllama commented 2 weeks ago

A heads-up for future self, https://github.com/gravitational/teleport.e/pull/5326 assumes a single-owner in the trusted devices page.