Teleport Kubernetes access

With the move of the Teleport service to Kubernetes, it is now easier to provide access to Kubernetes clusters for users.

This would enable us to create and use read-only roles by default, improving our security stance (auditing) and potentially being a barrier to operator mistakes.

• Install Teleport agent in all Kubernetes clusters
• Add basic roles for SRE
• Review/discuss licensing costs
• Expand roles to be read-write and read-only