diff --git a/docs/config.json b/docs/config.json
index 59eec5a5f699f..e4a56767724df 100644
--- a/docs/config.json
+++ b/docs/config.json
@@ -1839,6 +1839,10 @@
"title": "Linux Server",
"slug": "/machine-id/deployment/linux/"
},
+ {
+ "title": "Linux Server (TPM)",
+ "slug": "/machine-id/deployment/linux-tpm/"
+ },
{
"title": "Kubernetes",
"slug": "/machine-id/deployment/kubernetes/"
diff --git a/docs/cspell.json b/docs/cspell.json
index e93348c6f38bc..a92c9fbb9b22b 100644
--- a/docs/cspell.json
+++ b/docs/cspell.json
@@ -37,6 +37,7 @@
"CTAP",
"CXXXXXXXXX",
"Callouts",
+ "cryptoprocessor",
"Cgajq",
"DBSIZE",
"DEBU",
@@ -697,6 +698,7 @@
"pidof",
"pkill",
"pkinit",
+ "PKIX",
"plugindata",
"portforward",
"postgresqlselfhosted",
diff --git a/docs/pages/includes/provision-token/tpm-spec.mdx b/docs/pages/includes/provision-token/tpm-spec.mdx
new file mode 100644
index 0000000000000..5ba8a6b021061
--- /dev/null
+++ b/docs/pages/includes/provision-token/tpm-spec.mdx
@@ -0,0 +1,51 @@
+```yaml
+kind: token
+version: v2
+metadata:
+ # name identifies the token. When configuring a bot or node to join using this
+ # token, this name should be specified.
+ name: tpm-token
+spec:
+ # For Machine ID and TPM joining, roles will always be "Bot" and
+ # join_method will always be "tpm".
+ roles: [Bot]
+ join_method: tpm
+
+ # bot_name specifies the name of the bot that this token will grant access to
+ # when it is used.
+ bot_name: tpm-demo
+
+ # tpm specifies the TPM join method specific configuration for this token.
+ tpm:
+ # ekcert_allowed_cas is a list of CA certificates that will be used to
+ # validate TPM EKCerts. These should be PEM wrapped.
+ #
+ # When specified, joining TPMs must present an EKCert signed by one of the
+ # specified CAs. TPMs that do not present an EKCert will be not permitted to
+ # join.
+ #
+ # When unspecified, TPMs will be allowed to join with either an EKCert or an
+ # EKPubHash.
+ ekcert_allowed_cas:
+ - |
+ -----BEGIN CERTIFICATE-----
+ ... CA Certificate Data ...
+ -----END CERTIFICATE-----
+ # allow is a list of Rules, the presented TPM must match one allow rule to
+ # be permitted to join using this token.
+ allow:
+ # description is a human-readable description of the rule. It has no
+ # bearing on whether a TPM is allowed to join, but can be used to
+ # associate a rule with a specific host (e.g the asset tag of the server
+ # in which the TPM resides).
+ - description: "example-build-server-100"
+ # ek_public_hash is the SHA256 hash of the EKPub marshaled in PKIX format
+ # and encoded in hexadecimal. This value will also be checked when a TPM
+ # has submitted an EKCert, and the public key in the EKCert will be used
+ # for this check.
+ ek_public_hash: "d4b4example6fabfc568d74f2example6c35a05337d7af9a6example6c891aa6"
+ # ek_certificate_serial is the serial number of the EKCert in hexadecimal
+ # with colon separated nibbles. This value will not be checked when a TPM
+ # does not have an EKCert configured.
+ ek_certificate_serial: "01:23:45:67:89:ex:am:pl:e0:23:45:67:89:ab:cd:ef"
+```
\ No newline at end of file
diff --git a/docs/pages/includes/tpm-joining-background.mdx b/docs/pages/includes/tpm-joining-background.mdx
new file mode 100644
index 0000000000000..1291a403b3b94
--- /dev/null
+++ b/docs/pages/includes/tpm-joining-background.mdx
@@ -0,0 +1,30 @@
+The `tpm` join method is a secure way for Bots and Agents to authenticate with
+the Teleport Auth Service without using any shared secrets. Instead of using a
+hared secret, the unique identity of the host's Trusted Platform Module (TPM)
+and public key cryptography is used to authenticate the host.
+
+In environments where there is no other form of identity available to machines,
+e.g on-prem, this is the most secure method for joining. It avoids the need to
+distribute a shared secret as is needed for the `token` join method.
+
+A Trusted Platform Module (TPM) is a secure, physical cryptoprocessor that is
+installed on a host. TPMs can store cryptographic material and perform a number
+of cryptographic operations, without exposing the cryptographic material to the
+operating system. Each TPM has a unique key pair burned-in known as the
+Endorsement Key (EK).
+
+Some TPMs also contain an X.509 certificate for this key pair that is signed by
+the manufacturer's CA. This is known as the EK Certificate (EKCert). This
+certificate can be used by the TPM to prove to a third-party (who trusts the
+manufacturer's CA) that the TPM is genuine and abides by the TPM specification.
+
+When using the `tpm` join method, you must first query the TPM's public key and
+then create a join token that explicitly allows this public key. Even if the
+host operating system is reinstalled, the EK public key will not change, meaning
+that the TPM will still be usable to join your Teleport cluster. If you have a
+large number of hosts, it may make sense to use automation tooling such as
+ansible to query the TPMs across your fleet and then generate join tokens.
+
+
+The `tpm` join method is currently not compatible with FIPS 140-2.
+
\ No newline at end of file
diff --git a/docs/pages/machine-id/deployment.mdx b/docs/pages/machine-id/deployment.mdx
index a9acf98671cf2..f1724bd92970e 100644
--- a/docs/pages/machine-id/deployment.mdx
+++ b/docs/pages/machine-id/deployment.mdx
@@ -52,23 +52,24 @@ and [Architecture](./architecture.mdx) to plan your deployment.
Read the following guides for how to deploy Machine ID on your cloud platform or
on-prem infrastructure.
-|Platform|Installation method|Join method|
-|---|---|---|
-|[Linux](./deployment/linux.mdx)|Package manager or TAR archive|Static join token|
-|[GCP](./deployment/gcp.mdx)|Package manager, TAR archive, or Kubernetes pod|Identity document signed by GCP|
-|[AWS](./deployment/aws.mdx)|Package manager, TAR archive, or Kubernetes pod|Identity document signed by AWS|
-|[Azure](./deployment/azure.mdx)|Package manager or TAR archive|Identity document signed by Azure|
-|[Kubernetes](./deployment/kubernetes.mdx)|Kubernetes pod|Identity document signed by your Kubernetes cluster|
+| Platform | Installation method | Join method |
+|-------------------------------------------|-------------------------------------------------|-----------------------------------------------------|
+| [Linux](./deployment/linux.mdx) | Package manager or TAR archive | Static join token |
+| [Linux (TPM)](./deployment/linux-tpm.mdx) | Package manager or TAR archive | Attestation from TPM 2.0 |
+| [GCP](./deployment/gcp.mdx) | Package manager, TAR archive, or Kubernetes pod | Identity document signed by GCP |
+| [AWS](./deployment/aws.mdx) | Package manager, TAR archive, or Kubernetes pod | Identity document signed by AWS |
+| [Azure](./deployment/azure.mdx) | Package manager or TAR archive | Identity document signed by Azure |
+| [Kubernetes](./deployment/kubernetes.mdx) | Kubernetes pod | Identity document signed by your Kubernetes cluster |
### CI/CD
Read the following guides for how to deploy Machine ID on a continuous
integration and continuous deployment platform
-|Platform|Installation method|Join method|
-|---|---|---|
-|[CircleCI](./deployment/circleci.mdx)|TAR archive|CircleCI-signed identity document|
-|[GitLab](./deployment/gitlab.mdx)|TAR archive|GitLab-signed identity document|
-|[GitHub Actions](./deployment/github-actions.mdx)|Teleport job available through the GitHub Actions marketplace|GitHub-signed identity document.|
-|[Jenkins](./deployment/jenkins.mdx)|Package manager or TAR archive|Static join token|
-|[Spacelift](./deployment/spacelift.mdx)|Docker Image|Spacelift-signed identity document|
+| Platform | Installation method | Join method |
+|---------------------------------------------------|---------------------------------------------------------------|------------------------------------|
+| [CircleCI](./deployment/circleci.mdx) | TAR archive | CircleCI-signed identity document |
+| [GitLab](./deployment/gitlab.mdx) | TAR archive | GitLab-signed identity document |
+| [GitHub Actions](./deployment/github-actions.mdx) | Teleport job available through the GitHub Actions marketplace | GitHub-signed identity document. |
+| [Jenkins](./deployment/jenkins.mdx) | Package manager or TAR archive | Static join token |
+| [Spacelift](./deployment/spacelift.mdx) | Docker Image | Spacelift-signed identity document |
diff --git a/docs/pages/machine-id/deployment/linux-tpm.mdx b/docs/pages/machine-id/deployment/linux-tpm.mdx
new file mode 100644
index 0000000000000..82db23016d99b
--- /dev/null
+++ b/docs/pages/machine-id/deployment/linux-tpm.mdx
@@ -0,0 +1,208 @@
+---
+title: Deploying Machine ID on Linux (TPM)
+description: How to install and configure Machine ID on a Linux host and use a TPM 2.0 for authentication
+---
+
+This page explains how to deploy Machine ID on a Linux host, and use the
+secure identify of the onboard TPM 2.0 chip for authenticating with the
+Teleport cluster.
+
+The `tpm` join method requires a valid Teleport Enterprise license to be
+installed on the cluster's Auth Service.
+
+## How it works
+
+(!docs/pages/includes/tpm-joining-background.mdx!)
+
+## Prerequisites
+
+(!docs/pages/includes/edition-prereqs-tabs.mdx!)
+
+- (!docs/pages/includes/tctl.mdx!)
+- A Linux host that you wish to install Machine ID onto, with a TPM2.0
+ installed.
+- A Linux user on that host that you wish Machine ID to run as. In the guide,
+we will use `teleport` for this.
+
+## Step 1/5. Install `tbot`
+
+**This step is completed on the Linux host.**
+
+First, `tbot` needs to be installed on the VM that you wish to use Machine ID
+on.
+
+Download the appropriate Teleport package for your platform:
+
+(!docs/pages/includes/install-linux.mdx!)
+
+### Granting `tbot` access to the TPM device
+
+If the user that will run `tbot` is not `root`, you will also need to configure
+Linux to allow the user to access the TPM device.
+
+The simplest way to solve this is to check if your distro ships with the `tss`
+group and assign it the user. If that is not possible, or you are looking
+for a different solution, we recommend creating udev rules similar to the ones
+shipped by the [TPM2 Software Stack](
+https://github.com/tpm2-software/tpm2-tss/blob/ede63dd1ac1f0a46029d457304edcac2162bfab8/dist/tpm-udev.rules#L4).
+
+## Step 2/5. Create a Bot
+
+(!docs/pages/includes/machine-id/create-a-bot.mdx!)
+
+## Step 3/5. Create a `tpm` join token
+
+With the Bot created, we now need to create a token. The token will be used by
+`tbot` to authenticate as the Bot to the Teleport cluster.
+
+### Determining the EKPub Hash or EKCert Serial for your TPM
+
+First, you need to determine the characteristics of the TPM on the host that
+you wish to use Machine ID on. These characteristics will then be used within
+the allow rules of the join token to grant access to this specific host.
+
+On the machine, run `tbot tpm identify`:
+
+```code
+$ tbot tpm identify
+TPM Information
+EKPub Hash: 6c5aada1c5abee6d869369a0example2fd2beb41c850d3f0227f029c4fffc4ba
+EKCert Detected: true
+EKCert Serial: 5e:cd:5f:8e
+```
+
+Take the long hexadecimal string after `EKPub Hash` and assign it to
+. This uniquely identifies this TPM and will be
+used in the join token.
+
+### Obtaining the manufacturer CA
+
+If in the previous step, `EKCert Detected` was `false`, then you can disregard
+this section.
+
+If in the previous step, `EKCert Detected` was `true`, then it is recommended
+to obtain the manufacturer's CA certificate. This will allow the TPM to be
+validated as legitimately manufactured as part of the join process.
+
+Instructions for obtaining the EKCert CA will vary from TPM to TPM. Consult
+your TPM's documentation for more information or contact your supplier.
+
+### Creating the join token
+
+Create a file named `bot-token.yaml`:
+
+```yaml
+kind: token
+version: v2
+metadata:
+ # name identifies the token. Try to ensure that this is descriptive.
+ name:
+spec:
+ # For Machine ID and TPM joining, roles will always be "Bot" and
+ # join_method will always be "tpm".
+ roles: [Bot]
+ join_method: tpm
+
+ # bot_name specifies the name of the bot that this token will grant access to
+ # when it is used.
+ bot_name:
+
+ # tpm specifies the TPM join method specific configuration for this token.
+ tpm:
+ # ekcert_allowed_cas is a list of CA certificates that will be used to
+ # validate TPM EKCerts. These should be PEM wrapped.
+ #
+ # When specified, joining TPMs must present an EKCert signed by one of the
+ # specified CAs. TPMs that do not present an EKCert will be not permitted to
+ # join.
+ ekcert_allowed_cas:
+ - |
+ -----BEGIN CERTIFICATE-----
+ ... CA Certificate Data ...
+ -----END CERTIFICATE-----
+ # allow is a list of Rules, the presented TPM must match one allow rule to
+ # be permitted to join using this token.
+ allow:
+ # description is a human-readable description of the rule. It has no
+ # bearing on whether a TPM is allowed to join, but can be used to
+ # associate a rule with a specific host (e.g the asset tag of the server
+ # in which the TPM resides).
+ - description: "example-server-100"
+ # ek_public_hash is the SHA256 hash of the EKPub marshaled in PKIX format
+ # and encoded in hexadecimal. This value will also be checked when a TPM
+ # has submitted an EKCert, and the public key in the EKCert will be used
+ # for this check.
+ ek_public_hash: ""
+```
+
+If your TPM includes an EKCert and you have obtained the manufacturer's CA,
+replace the `ekcert_allowed_cas` section with the PEM wrapped CA certificate.
+Otherwise, remove this section.
+
+If you have multiple hosts that you wish to authenticate as the same Bot, you
+can add additional rules the `allow` list, one for each host.
+
+Apply this to your Teleport cluster using `tctl`:
+
+```code
+$ tctl create -f bot-token.yaml
+```
+
+## Step 4/5. Configure `tbot`
+
+Create `/etc/tbot.yaml`:
+
+```yaml
+version: v2
+proxy_server: example.teleport.sh:443
+onboarding:
+ join_method: tpm
+ token:
+storage:
+ type: directory
+ path: /var/lib/teleport/bot
+# outputs will be filled in during the completion of an access guide.
+outputs: []
+```
+
+Replace:
+
+- `example.teleport.sh:443` with the address of your Teleport Proxy.
+
+### Prepare the storage directory
+
+The `tbot` service requires a way to store its state, such as internal
+credentials, across restarts. This is known as the storage destination.
+
+For this example, we will use the directory `/var/lib/teleport/bot`.
+
+As this directory will store the bots sensitive credentials, it is important
+to protect it. To do this, you will configure the directory to only be
+accessible to the Linux user which `tbot` will run as.
+
+Execute the following, replacing `teleport` with the Linux user that you will
+run `tbot` as:
+
+```code
+# Make the bot directory and assign ownership to teleport user
+$ sudo mkdir -p /var/lib/teleport/bot
+$ sudo chown teleport:teleport /var/lib/teleport/bot
+```
+
+### Create a systemd service
+
+(!docs/pages/includes/machine-id/daemon.mdx!)
+
+## Step 5/5. Configure outputs
+
+(!docs/pages/includes/machine-id/configure-outputs.mdx!)
+
+## Next steps
+
+- Follow the [access guides](../access-guides.mdx) to finish configuring `tbot` for
+your environment.
+- Read the [TPM joining reference](../../reference/join-methods.mdx#trusted-platform-module-tpm)
+to learn more about `tpm`joining.
+- Read the [configuration reference](../reference/configuration.mdx) to explore
+all the available configuration options.
+- [More information about `TELEPORT_ANONYMOUS_TELEMETRY`.](../reference/telemetry.mdx)
\ No newline at end of file
diff --git a/docs/pages/reference/cli/tbot.mdx b/docs/pages/reference/cli/tbot.mdx
index 3c0314a32fc8b..104b60e460b2e 100644
--- a/docs/pages/reference/cli/tbot.mdx
+++ b/docs/pages/reference/cli/tbot.mdx
@@ -17,6 +17,7 @@ The primary commands for `tbot` are as follows:
| `tbot init` | Initialize a certificate destination directory for writes from a separate bot user, configuring either file or POSIX ACL permissions. |
| `tbot db` | Connects to databases using native clients and queries database information. Functions as a wrapper for `tsh`, and requires `tsh` installation. |
| `tbot proxy` | Allows for access to Teleport resources on a cluster using TLS Routing. Functions as a wrapper for `tsh`, and requires `tsh` installation. |
+| `tbot tpm identify` | Output identifying information related to the TPM (Trusted Platform Module) detected on the system. |
## tbot db
@@ -189,6 +190,7 @@ using database proxies.
| `--renewal-interval` | Interval at which short-lived certificates are renewed; must be less than the certificate TTL. |
| `--join-method` | Method to use to join the cluster. Can be `token` or `iam`. |
| `--oneshot` | If set, quit after the first renewal. |
+
## tbot start
Starts the Machine ID client `tbot`, fetching and writing certificates to disk at a set interval.
@@ -241,3 +243,13 @@ $ tbot start \
+## tbot tpm identify
+
+Output identifying information related to the TPM (Trusted Platform Module)
+detected on the system.
+
+### Flags
+
+| Flag | Description |
+|----------------------|------------------------------------|
+| `-d/--debug` | Enable verbose logging to stderr. |
\ No newline at end of file
diff --git a/docs/pages/reference/join-methods.mdx b/docs/pages/reference/join-methods.mdx
index 5399b05d814a7..003c5ca065d28 100644
--- a/docs/pages/reference/join-methods.mdx
+++ b/docs/pages/reference/join-methods.mdx
@@ -121,6 +121,7 @@ Delegated join methods are:
- [`circleci`](#circleci-circleci)
- [`gitlab`](#gitlab-gitlab)
- [`kubernetes`](#kubernetes-kubernetes)
+- [`tpm`](#trusted-platform-module-tpm)
### Renewable vs non-renewable
@@ -152,6 +153,7 @@ Non-renewable join methods are:
- [`circleci`](#circleci-circleci)
- [`gitlab`](#gitlab-gitlab)
- [`kubernetes`](#kubernetes-kubernetes)
+- [`tpm`](#trusted-platform-module-tpm)
## Token resource reference
@@ -413,3 +415,13 @@ to contain the new Kubernetes singing keys (update the
- [Deploying Machine ID on Kubernetes](../machine-id/deployment/kubernetes.mdx)
+
+### Trusted Platform Module: `tpm`
+
+(!docs/pages/includes/tpm-joining-background.mdx!)
+
+(!docs/pages/includes/provision-token/tpm-spec.mdx!)
+
+
+- [Deploying Machine ID on Linux: TPM](../machine-id/deployment/linux-tpm.mdx)
+
\ No newline at end of file