diff --git a/docs/pages/management/operations/enroll-agent-into-automatic-updates.mdx b/docs/pages/management/operations/enroll-agent-into-automatic-updates.mdx index 98a4af1a3ab18..57c4d03fa6fb0 100644 --- a/docs/pages/management/operations/enroll-agent-into-automatic-updates.mdx +++ b/docs/pages/management/operations/enroll-agent-into-automatic-updates.mdx @@ -36,7 +36,7 @@ updates. -- A Teleport agent, either: +- A Teleport Enterprise agent, either: - started via systemd on a distribution using the `apt` or `yum` package managers - deployed with the `teleport-kube-agent` Helm chart - automatic update infrastructure set up. For Self-Hosted users this means you @@ -44,7 +44,7 @@ updates. know your version server URL and release channel -- A Teleport agent, either: +- A Teleport Enterprise agent, either: - started via systemd on a distribution using the `apt` or `yum` package managers - deployed with the `teleport-kube-agent` Helm chart - as a Teleport Cloud user, you must check if your Could Tenant is enrolled @@ -57,10 +57,17 @@ updates. +Confirm you have the Teleport Enterprise edition installed. + +```code +$ teleport version +Teleport Enterprise v(=teleport.version=) go(=teleport.golang=) +``` + Create the upgrade configuration directory: ```code -$ mkdir -p /etc/teleport-upgrade.d/ +$ sudo mkdir -p /etc/teleport-upgrade.d/ ``` If you changed the agent user to run as non-root, create @@ -68,29 +75,33 @@ If you changed the agent user to run as non-root, create Else, you can skip this step: ```code -$ touch /etc/teleport-upgrade.d/schedule -$ chown /etc/teleport-upgrade.d/schedule +$ sudo touch /etc/teleport-upgrade.d/schedule +$ sudo chown /etc/teleport-upgrade.d/schedule ``` Configure the updater to connect to your custom version server and subscribe to the right release channel: ```code -$ echo / > /etc/teleport-upgrade.d/endpoint +$ echo / | sudo tee /etc/teleport-upgrade.d/endpoint ``` + +Make sure not to include `https://` as a prefix to the server address. + + Install the `teleport-ent-updater` package (note: your teleport agent will be restarted during install): ```code -$ apt install teleport-ent-updater +$ sudo apt install teleport-ent-updater # or -$ yum install teleport-ent-updater +$ sudo yum install teleport-ent-updater ``` Finally, verify that the updater can see your version endpoint: ```code -$ teleport-upgrade dry-run +$ sudo teleport-upgrade dry-run ``` You should see one of the following messages, depending on the target version @@ -111,6 +122,9 @@ not be exported yet. +Confirm you are using the Teleport Enterprise image. The `enterprise` value setting +should have been set to `true` for the Helm chart installation. + Add the following chart values to your existing agent `values.yaml`: ```yaml @@ -143,6 +157,13 @@ $ kubectl logs -updater +Confirm you have the Teleport Enterprise edition installed. + +```code +$ teleport version +Teleport Enterprise v(=teleport.version=) go(=teleport.golang=) +``` + If you changed the agent user to run as non-root, create `/etc/teleport-upgrade.d/schedule` and grant ownership to your Teleport user. Else, you can skip this step: @@ -184,6 +205,9 @@ not be exported yet. +Confirm you are using the Teleport Enterprise image. The `enterprise` value setting +should have been set to `true` for the Helm chart installation. + Add the following chart values to your existing agent `values.yaml`: ```yaml