Description
- Fixed Teleport instances running the Auth Service sometimes not becoming ready during initialization. #62194
- Fixed an Auth Service bug causing the event handler to miss up to 1 event every 5 minutes when storing audit events in S3. #62150
- Fixed bug where event handler dies on malformed session events. #62141
- Updated event handler to ingest missing session recordings at twice the
concurrencyinstead of only 10 sessions at a time. #62141 - Changed "tsh --mfa-mode=cross-platform" to favor security keys on current Windows versions. #62134
- Fixed "the client connection is closing" error happening under certain conditions in Teleport Connect when connecting to resources with per-session MFA enabled. #62127
- Improved detail of error messages for
identityservice intbot. #62120 - Teleport Connect now supports expanding
~/home-directory paths in the configuration file. #62104 - Added support for --format flag for
tsh request search. #62099 - Fixed bug where event handler
typesfilter is ignored for Teleport clients using Athena storage backend. #62082 - Fixed intermittent issues with VNet on Windows when other NRPT rules from GPOs are present under
HKLM:\SOFTWARE\Policies\Microsoft\Windows NT\DNSClient\DnsPolicyConfig. #62052 - Added Terraform provider support for teleport_integration resources. #62040
- DiscoveryConfig resources can now be managed via the Teleport Terraform Provider. #62034
- Reduced memory consumption of the Application service. #62014
- Added support for listing application session recordings in
tsh recording lsand the Web UI. #62010 - Fixed a Web UI issue where the copy button for the session ID did not work for non-interactive session recordings. #62010
- Prevented stuck
teleport-clusterHelm chart rollouts in small Kubernetes clusters. Removed resource requests from configuration check hooks. #62003 - Fixed static keypair creation in
tbot keypair createwhen the--static-key-pathflag is used. #61947 - Re-enabled MySQL database health checks. MySQL health checks will now authenticate to the database as a user, rather than TCP dialing and closing the connection, to prevent MySQL from automatically blocking the Teleport database service instance host. The health check user name default is "teleport-healthchecker". #61942
- Added support for templating
secret_labels, and the{{.Labels}}template variable, to tbot'skubernetes/argo-cdoutput. #61876
Enterprise:
- Updated AWS Identity Center integration sign-in start URL format to support AWS GovCloud accounts.
- Fix a potential race where Okta assignments may never be cleaned up if the Okta integration is down while the assignment expires.
- Created a dedicated Access Automations feature page within the Web UI.
- Entra ID directory reconciler now overwrites user accounts created by the referenced SAML Auth Connector.
Download
Download the current and previous releases of Teleport at https://goteleport.com/download.
Plugins
Download the current release of Teleport plugins from the links below.
- Slack Linux amd64 | Linux arm64
- Mattermost Linux amd64 | Linux arm64
- Discord Linux amd64 | Linux arm64
- Terraform Provider Linux amd64 | Linux arm64 | macOS amd64 | macOS arm64 | macOS universal
- Event Handler Linux amd64 | Linux arm64 | macOS amd64
- PagerDuty Linux amd64 | Linux arm64
- Jira Linux amd64 | Linux arm64
- Email Linux amd64 | Linux arm64
- Microsoft Teams Linux amd64 | Linux arm64