Jumpserver跳板机本地部署(Centos7系统)

最新推荐文章于 2023-10-27 12:00:56 发布
最新推荐文章于 2023-10-27 12:00:56 发布
阅读量670 收藏 5
点赞数
分类专栏: 架构、集群 文章标签: jumpserver
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/little_baixb/article/details/109198711
版权

Centos7部署Jumpserver

关闭防火墙和SELinux
Centos7系统

#jumpserver是国人用Python开发的,所以要设置中文
[xiaobai@jumpserver] localedef -c -f UTF-8 -i zh_CN zh_CN.UTF-8
[xiaobai@jumpserver] export LC_ALL=zh_CN.UTF-8
[xiaobai@jumpserver] echo 'LANG="zh_CN.UTF-8"' > /etc/locale.conf

#安装依赖包
[xiaobai@jumpserver] yum -y install wget vim lrzsz xz gcc git epel-release python-pip python-devel mysql-devel automake autoconf sqlite-devel zlib-devel openssl-devel sshpass readline-devel

#更换阿里源安装Python
[xiaobai@jumpserver] wget -O /etc/yum.repos.d/epel.repo http://mirrors.aliyun.com/repo/epel-7.repo
[xiaobai@jumpserver] yum -y install python36 python36-devel

#建立Python虚拟环境
[xiaobai@jumpserver] cd /opt
[xiaobai@jumpserver opt] python3.6 -m venv py3
[xiaobai@jumpserver opt] source /opt/py3/bin/activate
#以后运行 Jumpserver 都要先运行以上 source 命令

#下载git命令拉取项目,安装依赖
(py3)[xiaobai@jumpserver opt] git clone --depth=1 https://github.com/jumpserver/jumpserver.git
(py3)[xiaobai@jumpserver opt] cd jumpserver/requirements/
(py3)[xiaobai@jumpserver requirements] yum -y install $(cat rpm_requirements.txt)

#安装Python库
(py3)[xiaobai@jumpserver requirements] pip install --upgrade pip setuptools
(py3)[xiaobai@jumpserver requirements] pip install -r requirements.txt
#如果感觉网速慢就换下面的命令,使用阿里源
(py3)[xiaobai@jumpserver requirements] pip install --upgrade pip setuptools -i https://mirrors.aliyun.com/pypi/simple/
(py3)[xiaobai@jumpserver requirements] pip install -r requirements.txt -i https://mirrors.aliyun.com/pypi/simple/

安装完成后界面
在这里插入图片描述

#安装Redis,用来做Jumpserver的缓存
(py3)[xiaobai@jumpserver requirements] cd
(py3)[xiaobai@jumpserver] yum -y install redis
(py3)[xiaobai@jumpserver] systemctl enable redis
(py3)[xiaobai@jumpserver] systemctl start redis

#安装Mysql,并且配置jumpserver的数据库
(py3)[xiaobai@jumpserver] yum -y install mariadb mariadb-devel mariadb-server
(py3)[xiaobai@jumpserver] systemctl enable mariadb
(py3)[xiaobai@jumpserver] systemctl start mariadb
(py3)[xiaobai@jumpserver] mysql -uroot
MariaDB[(none)]> create database jumpserver default charset 'utf8';
MariaDB[(none)]> grant all on jumpserver.* to 'jumpserveradm'@'127.0.0.1' identified by 'XiaoBai@123!';
MariaDB[(none)]> flush privileges;
MariaDB[(none)]> \q

#修改Jumpserver的配置文件
(py3)[xiaobai@jumpserver] cd /opt/jumpserver/
(py3)[xiaobai@jumpserver jumpserver] cp config_example.yml config.yml
#生成一个随机的key
(py3)[xiaobai@jumpserver jumpserver] SECRET_KEY=`cat /dev/urandom | tr -dc A-Za-z0-9 | head -c 50`
(py3)[xiaobai@jumpserver jumpserver] echo "SECRET_KEY=$SECRET_KEY" >> ~/.bashrc
(py3)[xiaobai@jumpserver jumpserver] BOOTSTRAP_TOKEN=`cat /dev/urandom | tr -dc A-Za-z0-9 | head -c 16`
(py3)[xiaobai@jumpserver jumpserver] echo "BOOTSTRAP_TOKEN=$BOOTSTRAP_TOKEN" >> ~/.bashrc
(py3)[xiaobai@jumpserver jumpserver] sed -i "s/SECRET_KEY:/SECRET_KEY: $SECRET_KEY/g" /opt/jumpserver/config.yml
(py3)[xiaobai@jumpserver jumpserver] sed -i "s/BOOTSTRAP_TOKEN:/BOOTSTRAP_TOKEN: $BOOTSTRAP_TOKEN/g" /opt/jumpserver/config.yml
(py3)[xiaobai@jumpserver jumpserver] sed -i "s/# DEBUG: true/DEBUG: false/g" /opt/jumpserver/config.yml
(py3)[xiaobai@jumpserver jumpserver] sed -i "s/# LOG_LEVEL: DEBUG/LOG_LEVEL: ERROR/g" /opt/jumpserver/config.yml
(py3)[xiaobai@jumpserver jumpserver] sed -i "s/# SESSION_EXPIRE_AT_BROWSER_CLOSE: false/SESSION_EXPIRE_AT_BROWSER_CLOSE: true/g" /opt/jumpserver/config.yml
(py3)[xiaobai@jumpserver jumpserver] vim config.yml
DB_ENGINE: mysql
DB_HOST: 127.0.0.1
DB_PORT: 3306
DB_USER: jumpserveradm
DB_PASSWORD: XiaoBai@123!
DB_NAME: jumpserver

#启动jumpserver,-d为后台运行
(py3)[xiaobai@jumpserver jumpserver] ./jms start -d
gunicorn is running: 45857
flower is running: 45868
daphne is running: 45872
celery_ansible is running: 45873
celery_default is running: 45875
celery_node_tree is running: 45879
check_asset_perm_expired is running: 45883
beat is running: 45892

#Centos可以配置systemctl启动
(py3)[xiaobai@jumpserver jumpserver] wget -O /usr/lib/systemd/system/jms.service https://demo.jumpserver.org/download/shell/centos/jms.service
(py3)[xiaobai@jumpserver jumpserver] chmod 755 /usr/lib/systemd/system/jms.service
(py3)[xiaobai@jumpserver jumpserver] systemctl enable jms

部署Koko

(py3)[xiaobai@jumpserver jumpserver] cd /opt
(py3)[xiaobai@jumpserver opt] wget https://github.com/jumpserver/koko/releases/download/v2.4.0/koko-v2.4.0-linux-amd64.tar.gz
(py3)[xiaobai@jumpserver opt] tar xzvf koko-v2.4.0-linux-amd64.tar.gz
(py3)[xiaobai@jumpserver opt] mv koko-v2.4.0-linux-amd64 koko
(py3)[xiaobai@jumpserver opt] rm -rf koko-v2.4.0-linux-amd64.tar.gz
(py3)[xiaobai@jumpserver opt] chown -R root:root koko
(py3)[xiaobai@jumpserver opt] cd koko/
(py3)[xiaobai@jumpserver koko] mv kubectl /usr/local/bin/
(py3)[xiaobai@jumpserver koko] wget https://download.jumpserver.org/public/kubectl.tar.gz
(py3)[xiaobai@jumpserver koko] tar xzvf kubectl.tar.gz
(py3)[xiaobai@jumpserver koko] rm -rf kubectl.tar.gz
(py3)[xiaobai@jumpserver koko] chmod 755 kubectl
(py3)[xiaobai@jumpserver koko] mv kubectl /usr/local/bin/rawkubectl
(py3)[xiaobai@jumpserver koko] cp config_example.yml config.yml
(py3)[xiaobai@jumpserver koko] vim config.yml
#BOOTSTRAP_TOKEN要和/opt/jumpserver/config.yml里的BOOTSTRAP_TOKEN保证一致
BOOTSTRAP_TOKEN: wttyDYSu2yiNbvv6

#启动koko,-d为后台运行
(py3)[xiaobai@jumpserver koko] ./koko

部署Guacamole

(py3)[xiaobai@jumpserver koko] cd /opt
(py3)[xiaobai@jumpserver opt] mkdir /opt/docker-guacamole 
(py3)[xiaobai@jumpserver opt] wget https://github.com/jumpserver/docker-guacamole/archive/master.tar.gz
(py3)[xiaobai@jumpserver opt] tar xzvf master.tar.gz -C /opt/docker-guacamole --strip-components 1
(py3)[xiaobai@jumpserver opt] rm -rf master.tar.gz
(py3)[xiaobai@jumpserver opt] cd docker-guacamole/
(py3)[xiaobai@jumpserver docker-guacamole] wget http://download.jumpserver.org/public/guacamole-server-1.2.0.tar.gz
(py3)[xiaobai@jumpserver docker-guacamole] tar xzvf guacamole-server-1.2.0.tar.gz
(py3)[xiaobai@jumpserver docker-guacamole] wget http://download.jumpserver.org/public/ssh-forward.tar.gz
(py3)[xiaobai@jumpserver docker-guacamole] tar xzvf ssh-forward.tar.gz -C /bin/
(py3)[xiaobai@jumpserver docker-guacamole] chmod +x /bin/ssh-forward
(py3)[xiaobai@jumpserver docker-guacamole] cd /opt/docker-guacamole/guacamole-server-1.2.0

#下载依赖
(py3)[xiaobai@jumpserver guacamole-server-1.2.0] yum install uuid uuid-devel
(py3)[xiaobai@jumpserver guacamole-server-1.2.0] yum install cairo-devel
#cairo要单独多下几次就能成功,uuid要去官网下载安装包,我这里下载的zlib-1.2.10.tar.gz

UUID下载地址

(py3)[xiaobai@jumpserver guacamole-server-1.2.0] tar xzvf zlib-1.2.10.tar.gz
(py3)[xiaobai@jumpserver guacamole-server-1.2.0] cd zlib-1.2.10/
(py3)[xiaobai@jumpserver zlib-1.2.10] ./configure
(py3)[xiaobai@jumpserver zlib-1.2.10] make && make install
(py3)[xiaobai@jumpserver zlib-1.2.10] cd ..
(py3)[xiaobai@jumpserver guacamole-server-1.2.0] yum install uuid uuid-devel
(py3)[xiaobai@jumpserver guacamole-server-1.2.0] ./configure --with-init-dir=/etc/init.d

在这里插入图片描述
编译成功

(py3)[xiaobai@jumpserver guacamole-server-1.2.0] make && make install
(py3)[xiaobai@jumpserver guacamole-server-1.2.0] cd
(py3)[xiaobai@jumpserver] mkdir -p /opt/java
(py3)[xiaobai@jumpserver] tar xzvf ~/jdk-8u111-linux-x64.tar.gz -C /opt/java/
(py3)[xiaobai@jumpserver] vim ~/.bash_profile
export JAVA_HOME=/opt/java/jdk1.8.0_111
export CLASSPATH=.:$JAVA_HOME/lib/tools.jar:$JAVA_HOME/lib/dt.jar
export PATH=$PATH:$JAVA_HOME/bin

(py3)[xiaobai@jumpserver] source ~/.bash_profile
(py3)[xiaobai@jumpserver] mkdir -p /config/guacamole /config/guacamole/extensions /config/guacamole/record /config/guacamole/drive
(py3)[xiaobai@jumpserver] chown daemon:daemon /config/guacamole/record /config/guacamole/drive 
(py3)[xiaobai@jumpserver] cd /config
(py3)[xiaobai@jumpserver config] wget https://mirrors.tuna.tsinghua.edu.cn/apache/tomcat/tomcat-9/v9.0.39/bin/apache-tomcat-9.0.39.tar.gz
#下载到本地的速度会快很多
(py3)[xiaobai@jumpserver config] tar xzvf apache-tomcat-9.0.39.tar.gz
(py3)[xiaobai@jumpserver config] mv apache-tomcat-9.0.39 tomcat9
(py3)[xiaobai@jumpserver config] rm -rf /config/tomcat9/webapps/*
(py3)[xiaobai@jumpserver config] rm -rf apache-tomcat-9.0.39.tar.gz
(py3)[xiaobai@jumpserver config] sed -i 's/Connector port="8080"/Connector port="8081"/g' /config/tomcat9/conf/server.xml
(py3)[xiaobai@jumpserver config] echo "java.util.logging.ConsoleHandler.encoding = UTF-8" >> /config/tomcat9/conf/logging.properties
(py3)[xiaobai@jumpserver config] wget http://download.jumpserver.org/release/v2.4.0/guacamole-client-v2.4.0.tar.gz
(py3)[xiaobai@jumpserver config] tar xzvf guacamole-client-v2.4.0.tar.gz
(py3)[xiaobai@jumpserver config] rm -rf guacamole-client-v2.4.0.tar.gz
(py3)[xiaobai@jumpserver config] cp guacamole-client-v2.4.0/guacamole-1.2.0.war /config/tomcat9/webapps/ROOT.war
(py3)[xiaobai@jumpserver config] cp guacamole-client-v2.4.0/guacamole-auth-jumpserver-1.2.0.jar /config/guacamole/extensions/
(py3)[xiaobai@jumpserver config] mv /opt/docker-guacamole/guacamole.properties /config/guacamole/
(py3)[xiaobai@jumpserver config] rm -rf /opt/docker-guacamole

#配置Guacamole环境
(py3)[xiaobai@jumpserver config] export JUMPSERVER_SERVER=http://127.0.0.1:8080
(py3)[xiaobai@jumpserver config] echo "export JUMPSERVER_SERVER=http://127.0.0.1:8080" >> ~/.bashrc
(py3)[xiaobai@jumpserver config] echo $BOOTSTRAP_TOKEN
wttyDYSu2yiNbvv6
(py3)[xiaobai@jumpserver config] export BOOTSTRAP_TOKEN=wttyDYSu2yiNbvv6
(py3)[xiaobai@jumpserver config] echo "export BOOTSTRAP_TOKEN=wttyDYSu2yiNbvv6" >> ~/.bashrc
(py3)[xiaobai@jumpserver config] export JUMPSERVER_KEY_DIR=/config/guacamole/data/keys
(py3)[xiaobai@jumpserver config] echo "export JUMPSERVER_KEY_DIR=/config/guacamole/data/keys" >> ~/.bashrc
(py3)[xiaobai@jumpserver config] export GUACAMOLE_HOME=/config/guacamole
(py3)[xiaobai@jumpserver config] echo "export GUACAMOLE_HOME=/config/guacamole" >> ~/.bashrc
(py3)[xiaobai@jumpserver config] export GUACAMOLE_LOG_LEVEL=ERROR
(py3)[xiaobai@jumpserver config] echo "export GUACAMOLE_LOG_LEVEL=ERROR" >> ~/.bashrc
(py3)[xiaobai@jumpserver config] export JUMPSERVER_ENABLE_DRIVE=true
(py3)[xiaobai@jumpserver config] echo "export JUMPSERVER_ENABLE_DRIVE=true" >> ~/.bashrc
(py3)[xiaobai@jumpserver config] /etc/init.d/guacd start
Starting guacd: guacd[55270]: INFO:	Guacamole proxy daemon (guacd) version 1.2.0 started
SUCCESS

(py3)[xiaobai@jumpserver config] sh /config/tomcat9/bin/startup.sh
Using CATALINA_BASE:   /config/tomcat9
Using CATALINA_HOME:   /config/tomcat9
Using CATALINA_TMPDIR: /config/tomcat9/temp
Using JRE_HOME:        /opt/java/jdk1.8.0_111
Using CLASSPATH:       /config/tomcat9/bin/bootstrap.jar:/config/tomcat9/bin/tomcat-juli.jar
Using CATALINA_OPTS:   
Tomcat started.

部署Lina

(py3)[xiaobai@jumpserver config] cd /opt
(py3)[xiaobai@jumpserver opt] wget https://github.com/jumpserver/lina/releases/download/v2.4.0/lina-v2.4.0.tar.gz
(py3)[xiaobai@jumpserver opt] tar xzvf lina-v2.4.0.tar.gz
(py3)[xiaobai@jumpserver opt] mv lina-v2.4.0 lina
(py3)[xiaobai@jumpserver opt] yum -y install nginx   #提前将nginx下载下来
(py3)[xiaobai@jumpserver opt] chown -R nginx:nginx lina
(py3)[xiaobai@jumpserver opt] rm -rf lina-v2.4.0.tar.gz

部署Luna

(py3)[xiaobai@jumpserver opt] wget https://github.com/jumpserver/luna/releases/download/v2.4.0/luna-v2.4.0.tar.gz
(py3)[xiaobai@jumpserver opt] tar xzvf luna-v2.4.0.tar.gz
(py3)[xiaobai@jumpserver opt] mv luna-v2.4.0 luna
(py3)[xiaobai@jumpserver opt] chown -R nginx:nginx luna
(py3)[xiaobai@jumpserver opt] rm -rf luna-v2.4.0.tar.gz
(py3)[xiaobai@jumpserver opt] ll
total 8
drwxr-xr-x.  3 root  root    26 Oct 21 15:58 java
drwxr-xr-x. 11 root  root  4096 Oct 21 13:31 jumpserver
drwxr-xr-x.  6 root  root   142 Oct 21 13:49 koko
drwxr-xr-x.  3 nginx nginx   57 Oct 15 16:08 lina
drwxr-xr-x.  5 nginx nginx 4096 Oct 15 16:08 luna
drwxr-xr-x.  7 root  root   133 Oct 21 12:58 py3

部署Nginx

(py3)[xiaobai@jumpserver opt] vim /etc/nginx/default.d/jumpserver.conf
client_max_body_size 500M;    #录像及文件上传大小限制		

location /ui/ {
    try_files $uri / /index.html;
    alias /opt/lina/;
}

location /luna/ {
    try_files $uri / /index.html;
    alias /opt/luna/;     #luna 路径, 如果修改安装目录, 此处需要修改
}

location /media/ {
    add_header Content-Encoding gzip;
    root /opt/jumpserver/data/;     #录像位置, 如果修改安装目录, 此处需要修改
}

location /static/ {
    root /opt/jumpserver/data/;     #静态资源, 如果修改安装目录, 此处需要修改
}

location /koko/ {
    proxy_pass       http://localhost:5000;
    proxy_buffering off;
    proxy_http_version 1.1;
    proxy_set_header Upgrade $http_upgrade;
    proxy_set_header Connection "upgrade";
    proxy_set_header X-Real-IP $remote_addr;
    proxy_set_header Host $host;
    proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
    access_log off;
}

location /guacamole/ {
    proxy_pass       http://localhost:8081/;
    proxy_buffering off;
    proxy_http_version 1.1;
    proxy_set_header Upgrade $http_upgrade;
    proxy_set_header Connection $http_connection;
    proxy_set_header X-Real-IP $remote_addr;
    proxy_set_header Host $host;
    proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
    access_log off;
}

location /ws/ {
    proxy_set_header X-Real-IP $remote_addr;
    proxy_set_header Host $host;
    proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
    proxy_pass http://localhost:8070;
    proxy_http_version 1.1;
    proxy_buffering off;
    proxy_set_header Upgrade $http_upgrade;
    proxy_set_header Connection "upgrade";
}

location /api/ {
    proxy_pass http://localhost:8080;
    proxy_set_header X-Real-IP $remote_addr;
    proxy_set_header Host $host;
    proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
}

location /core/ {
    proxy_pass http://localhost:8080;
    proxy_set_header X-Real-IP $remote_addr;
    proxy_set_header Host $host;
    proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
}

location / {
    rewrite ^/(.*)$ /ui/$1 last;
}

(py3)[xiaobai@jumpserver opt] nginx -t
(py3)[xiaobai@jumpserver opt] systemctl start nginx
#如果已经启动了不想重启执行下面命令
(py3)[xiaobai@jumpserver opt] nginx -s reload

==访问ip+80端口就可以看到
在这里插入图片描述
初始用户密码都为admin,第一次登录会让你修改密码
在这里插入图片描述

文章总览分类目录 @小白

一只little白
关注
  • 0
    点赞
  • 5
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
专栏目录
centos-7.6安装Jumpserver
qq_48644092的博客
10-19 193
1、环境配置 关闭防火墙和selinux #systemctl stop firewalld #systemctl disable firewalld #setenforce 0 用到的相关软件:#yum install -y wget sqlite-devel xz gcc automake zlib-devel openssl-devel epel-release git #wget https://www.python.org/ftp/python/3.6.1/Python-3.6.1.tar.x
开源跳板机jumpserver安装包
04-09
开源跳板机jumpserver安装包
CentOS7搭建Jumpserver
weixin_44909608的博客
03-02 311
$ yum update -y # 防火墙 与 selinux 设置说明, 如果已经关闭了 防火墙 和 Selinux 的用户请跳过设置 $ systemctl start firewalld $ firewall-cmd --zone=public --add-port=80/tcp --permanent # nginx 端口 $ firewall-cmd --zone=public --add-port=2222/tcp --permanent # 用户SSH登录端口 ...
centos7.x搭建jumpserver
Cheney_My的博客
10-30 248
准备Python环境和Python虚拟环境 安装依赖包 yum -y install wget sqlite-devel xz gcc automake zlib-devel openssl-devel epel-release git 编译安装 wget https://www.python.org/ftp/python/3.6.1/Python-3.6.1.tar.xz tar xvf Python-3.6.1.tar.xz && cd Python-3.6.1 ./configure
Centos7搭建JumpServer
weixin_45284946的博客
09-10 2277
一、访问JumpServer 安装文档 ###默认会安装到 /opt/jumpserver-installer-v2.13.2 目录 curl -sSL https://github.com/jumpserver/jumpserver/releases/download/v2.13.2/quick_start.sh | bash cd /opt/jumpserver-installer-v2.13.2 如果网络不好的情况情况下不建议使用一键部署,可以先下载tar包,然后进行编译安装 二、手动
Jumpserver 跳板机(堡垒机)系统 v1.3.3
10-11
Jumpserver 是一款由python编写开源的跳板机(堡垒机)系统,实现了跳板机应有的功能。基于ssh协议来管理,客户端无需安装agent。 支持常见系统: 1、redhat centos 2、debian 3、suse ubuntu 4、freeb
Jumpserver 跳板机(堡垒机)系统 v1.5.0
09-30
Jumpserver 是一款由python编写开源的跳板机(堡垒机)系统,实现了跳板机应有的功能。基于ssh协议来管理,客户端无需安装agent。 支持常见系统:1、redhat centos2、debian3、suse ubuntu4、freebsd5、
Jumpserver 跳板机系统 v2.2.3
11-04
为您提供Jumpserver 跳板机系统下载,Jumpserver 是一款由python编写开源的跳板机(堡垒机)系统,实现了跳板机应有的功能。基于ssh协议来管理,客户端无需安装agent。 支持常见系统:1、redhat centos2、debian3、suse...
Centos7.5部署堡垒机JumpServer.docx
11-12
完整记录了centos7.5环境下部署开源堡垒机Jumpserver、linux终端koko、windows组件Guacamole的部署过程,包括每一条命令和必要说明!能够帮助大家快速建立起一个堡垒机服务!
Centos7部署本地局域网yum源
05-25
Centos7 部署本地局域网 yum 源 本地 yum 源仓库是公司部署大量服务器时的必要配置,因为阿里云镜像源必须要连接外网才可以使用,占用出口带宽,且有些特殊的镜像源架设在国外,使用起来很不稳定。因此,部署本地 ...
jumpserver堡垒机安装及应用
weixin_46381668的博客
04-09 699
jumpserver简介 跳板机概述: 跳板机就是一台服务器,开发或运维人员在维护过程中首先要统一登录到这台服务器,然后再登录到目标设备进行维护和操作。 跳板机缺点:没有实现对运维人员操作行为的控制和审计,使用跳板机的过程中还是会出现误操作、违规操作导致的事故,一旦出现操作事故很难快速定位到原因和责任人; jumpserver概述 Jumpserver 是全球首款完全开源的堡垒机,使用 GNU G...
openEuler 22.03 LTS 环境使用 Docker Compose 一键部署 JumpServer (all-in-one 模式)
最新发布
ChaITSimpleLove的博客
10-27 676
本案例主要介绍在 openEuler 22.03 LTS 环境,如何使用 Docker Compose 一键部署 JumpServer (all-in-one 模式),感兴趣的小伙伴可以动手实践哦。
基于docker-compose部署jumpserver
qq_38461724的博客
07-08 447
基于docker-compose部署jumpserver 组件说明 Jumpserver 为管理后台, 管理员可以通过 Web 页面进行资产管理、用户管理、资产授权等操作, 用户可以通过 Web 页面进行资产登录, 文件管理等操作 koko 为 SSH Server 和 Web Terminal Server 。用户可以使用自己的账户通过 SSH 或者 Web Terminal 访问 SSH 协议和 Telnet 协议资产 Luna 为 Web Terminal Server 前端页面, 用户使用 We
docker-compose编排部署程序(3)& jumpserver(1)Docker-compose部署jumpserver堡垒机
muzlei的博客
08-11 578
参考文档:Docker-compose部署jumpserver堡垒机 环境部署 本篇文档涉及docker-compose文档和docker镜像的原作者信息,本文档仅作为整理使用 本文使用的docker-compse.yml为吴小白编写,镜像也是吴小白提供的 作者吴小白的github地址:https://github.com/wojiushixiaobai 作者吴小白的dockerhub地...
Jumpserver堡垒机部署(完整过程)
S314118142的博客
09-01 7165
堡垒机是从跳板机的概念演变过来的,跳板及没有实现对运维人员操作行为的控制和审计,使用跳板机过程中还是会有误操作、违规操作导致的此操作事故、一旦出现操作事故很难快速定位原因和责任人。人们逐渐认识到跳板机的不足,进而需要更新、更好的安全技术理念来实现运维操作管理。需要一种能满足角色管理与授权审批、信息资源访问控制、操作记录和审计、系统变更和维护控制要求,并生成一些统计报表配合管理规范来不断提升IT内控的合规性产品 ### 2.1堡垒机的作用 1.核心系统运维和安全审计管理 2.过滤和拦截非法请求访问,恶意攻击
Jumpserver部署笔记
且听风呤tmj的博客
04-25 5129
组件介绍 核心架构 标题
jumpserver 堡垒机环境搭建(图文详解)
热门推荐
my_bai的博客
03-15 5万+
Jumpserver 是一款由Python编写开源的跳板机(堡垒机)系统,实现了跳板机应有的功能。基于ssh协议来管理,客户端无需安装agent。 特点: 完全开源,GPL授权  Python编写,容易再次开发  实现了跳板机基本功能,认证、授权、审计  集成了Ansible,批量命令等  支持WebTerminal  Bootstrap编写,界面美观  自动收集硬件信息
CentOS 7 搭建Jumpserver跳板机(堡垒机)
weixin_33840661的博客
09-19 463
跳板机概述:跳板机就是一台服务器,开发戒运维人员在维护过程中首先要统一登录到这台服务器,然后再登录到目标 设备迚行维护和操作跳板机缺点:没有实现对运维人员操作行为的控制和审计,使用跳板机的过程中还是会出现误操作、远规 操作导致的事故,一旦出现操作事故很难快速定位到原因和责任人;堡垒机概述:堡垒机,即在一个特定的网络环境下,为了保障网络和数据丌受来自外部和内部用户的***和破...
jumpserver通过网域管理实现本地连接阿里云vpc服务器
爷来辣的博客
11-02 3503
目标是通过公司内部的jumpserver 连接阿里云的一台拥有经典网络地址的服务器,再连接vpc上的服务器。 创建网域列表 创建网域阿里云 并且点击之后创建网关 这里选你可以作为跳板机的虚拟机ip和密码或者秘钥 在网域里 添加需要通过跳板机 网关再访问的vpc机子 更新资产信息...
jumpserver安装部署centos7
06-28
1. 在CentOS 7上安装Docker和Docker Compose; 2. 下载Jumpserver的Docker-compose配置文件,并按照说明进行修改; 3. 运行Docker-compose命令启动Jumpserver服务; 4. 访问Jumpserver的Web页面并进行配置。 ...

“相关推荐”对你有帮助么?

  • 非常没帮助
  • 没帮助
  • 一般
  • 有帮助
  • 非常有帮助
提交
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值