Onboard Teleport into Foundations

Teleport is part of teamFoundations services to provide RBAC for users to safely connect to infrastructure.

The service currently is running in the original PoC VMs for both staging and production (teleport.gprd.gitlab.net:3080).

A Kubernetes deployment was created at https://ops.gitlab.net/gitlab-com/gl-infra/teleport-server, it has its own GCP project + K8S clusters. The service hasn't been migrated yet.

Goals

• Assess if moving the service to existing ops clusters makes sense to reduce complexity and lower maintenance burden
• What resources require a separate GCP project ?
• Review certificates and agent connection