tsh
TSH: Teleport Authentication Gateway Client
Subcommands
| Name | Description |
|---|---|
version | Print the version |
ssh | Run shell or execute a command on a remote SSH node |
aws | Access AWS API |
apps | View and control proxied applications |
proxy | Run local TLS proxy allowing connecting to Teleport in single-port mode |
db | View and control proxied databases |
join | Join the active SSH session |
play | Replay the recorded SSH session |
scp | Secure file copy |
ls | List remote SSH nodes |
clusters | List available Teleport clusters |
login | Log in to a cluster and retrieve the session certificate |
logout | Delete a cluster certificate |
status | Display the list of proxy servers and retrieved certificates |
env | Print commands to set Teleport session environment variables |
request | Manage access requests |
kube | Manage available kubernetes clusters |
mfa | Manage multi-factor authentication (MFA) devices |
config | Print OpenSSH configuration details |
Options
| Name | Description |
|---|---|
-l, --login | Remote host login |
--proxy <Teleport proxy address> | SSH proxy address |
--user <user> | SSH proxy user |
--ttl <time> | Minutes to live for a SSH session |
-i, --identity <file> | Identity file |
--cert-format <arg> | SSH certificate format |
--insecure | Do not verify server's certificate and host name. Use only in test environments |
--auth <arg> | Specify the name of authentication connector to use |
--skip-version-check | Skip version checking between server and client |
-d, --debug | Verbose logging to stdout |
-k, --add-keys-to-agent | Controls how keys are handled. Valid values are [auto no yes only] |
--enable-escape-sequences | Enable support for SSH escape sequences. Type '~?' during an SSH session to list supported sequences. Default is enabled |
--bind-addr | Override host:port used when opening a browser for cluster logins |
-J, --jumphost | SSH jumphost |