PagerDuty and Teleport: System access and role escalation when you need it

by Mandi Walls September 15, 2021 | 4 min read

You may know that PagerDuty has over 600 integrations that add a wide variety of functionality to the core platform and workflows. Some integrations provide upstream data sources like metrics and monitoring. Some are for downstream capabilities like reporting. And some interesting integrations help you in the moment when you are responding to an incident.

Teleport provides secure access to applications, cloud infrastructure, databases, and Kubernetes environments without getting in your way. We wanted to showcase Teleport on our Twitch channels, PDCommunity and PagerDuty, to give PagerDuty users an idea of how powerful integrations can be. If you missed us on Twitch, we posted the recording to our YouTube channel.

We’ll be hosting more integration partners in the future, so make sure you follow our channels!

Responding to incidents when you don’t have permanent access

Access to many production environments is constrained for average users. The ability to log in to systems, whether for diagnostics or remediation, might be strictly limited to prevent accidents from happening or to meet critical compliance requirements.

These restrictions are great when systems and services are up and running well. But when something happens that needs some investigation – when you have an incident in PagerDuty – limitations can get in your way and slow you down.

That’s when you need some tooling to help you get where you need to go. Fast.

PagerDuty and Teleport go well together

Teleport gives your teams a mechanism for keeping your compliance officers happy, limiting access to infrastructure that is running well, and escalating access when things go wrong. Your teams don’t need to have direct access to systems and services running in production all the time, but they might need access when responding to an alert.

The Teleport integration with PagerDuty allows your team members to request access to permitted systems and have that request automatically granted when that team member is on call and has a live incident. Teleport queries the PagerDuty API to verify that the requestor is, in fact, on-call and has an unresolved incident. No waiting for the helpdesk. No asking around or escalating to someone else who has access already. Just click the button in Teleport. Teleport talks to PagerDuty and access is granted. Hook up Teleport and your SSO provider to give all of your teams the access they need exactly when they need it.

Best of all, that access is temporary. Credentials are automatically limited in scope and duration, so there are no logins sitting around after the incident is resolved.

Other features Teleport provides

As if privileges-on-request wasn’t enough, Teleport has another really killer feature your team, and your compliance auditor, will love.

Think about how you’d want to document activities. Teleport provides a log that can be exported, detailing all of the actions taken, who they were taken by, and where they were performed. But it goes a step further and provides a video recording of the screens as well. Imagine putting that tool to use for your postmortems or retrospectives. Don’t remember exactly what commands were run? No problem. Let’s go to tape!

See for yourself!

You can check out our stream recording on YouTube and follow us on Twitch to see all our integration streams!

Set your team up for success when responding to incidents. Get your PagerDuty account set up today and take a look at our integrations page.

Then get started with Teleport. Give your engineers access to SSH servers, Kubernetes clusters, web applications, and database servers while keeping your security and compliance team happy.

You can visit both PagerDuty and Teleport at upcoming events like KubeCon North America, SRECon, and AWS re:Invent, so stop by our live or virtual booths and say hello!