Skip to main content
Version: 18.x

Teleport Identity Security Integrations

Report an issue with this page

Teleport can integrate with identity providers (IdPs) like Okta and AWS OIDC which can then be used with Identity Security, providing a comprehensive, interactive view of how users, roles, and resources are interconnected, enabling administrators to better understand and control access policies.

Read the following guides for information on using Teleport Identity Security to visualize role-based access controls from third-party services:

  • AWS: Describes how to import and visualize AWS accounts access patterns using Identity Security.
  • Azure: Describes how to import and visualize Azure subscription access patterns using Identity Security.
  • GitHub: Describes how to import and correlate GitHub Audit Logs and Access Paths using Identity Security.
  • GitLab: Describes how to synchronize GitLab access patterns using Identity Security.
  • Microsoft Entra ID: Describes how to import and visualize Entra ID policies using Identity Security and Graph Explorer.
  • NetIQ: Describes how to synchronize OpenTex NetIQ access patterns using Identity Security.
  • SSH Keys: Describes how to enable SSH Key Scanning using Identity Security to identity access patterns that use long-lived SSH keys.
  • Teleport Audit Logs: Describes how to import and correlate Teleport Audit Logs using Identity Security.

Viewing available integrations

The Integrations page shows integrations that can be enabled or are already enabled in Access Graph.

Resources imported into Teleport through Teleport-enabled integrations are automatically imported into Identity Security without any additional configuration.

To access the interface, your user must have a role that allows list and read verbs on the access_graph resource, e.g.:

kind: role
version: v7
metadata:
  name: my-role
spec:
  allow:
    rules:
    - resources:
      - access_graph
      verbs:
      - list
      - read

The preset editor role has the required permissions by default.

Set up a new integration

On the left sidebar, click Identity Security. Click the connection icon labeled Integrations: Connection view Select the "Set up new integration" button.

Teleport can also import and grant access to resources from Okta organizations, such as user profiles, groups and applications. You can view connection data in Access Graph. Enroll the Teleport Okta integration in your cluster.