【centos6.5】最后用户验证秘钥后登录xshell失败,有时间再研究。
- 开始部署jumpserver服务器端
下载jympserver源码包
[root@jump ~]# ls
jumpserver.master
jumpserver.rpm
[root@jump ~]# ping www.baidu.com
PING www.a.shifen.com (182.61.200.6) 56(84) bytes of data.
64 bytes from 182.61.200.6: icmp_seq=1 ttl=128 time=7.08 ms
64 bytes from 182.61.200.6: icmp_seq=2 ttl=128 time=7.50 ms
^C
--- www.a.shifen.com ping statistics ---
2 packets transmitted, 2 received, 0% packet loss, time 1656ms
rtt min/avg/max/mdev = 7.080/7.291/7.502/0.211 ms
- 建立阿里云公网源yum仓库
[root@jump ~]# wget -O /etc/yum.repos.d/CentOS-Base.repo http://mirrors.aliyun.com/repo/Centos-6.repo
--2019-05-31 14:32:20-- http://mirrors.aliyun.com/repo/Centos-6.repo
正在解析主机 mirrors.aliyun.com... 219.238.20.83, 219.238.20.85, 219.238.20.100, ...
正在连接 mirrors.aliyun.com|219.238.20.83|:80... 已连接。
已发出 HTTP 请求,正在等待回应... 200 OK
长度:2523 (2.5K) [application/octet-stream]
正在保存至: “/etc/yum.repos.d/CentOS-Base.repo”
100%[====================>] 2,523 --.-K/s in 0s
2019-05-31 14:32:20 (406 MB/s) - 已保存 “/etc/yum.repos.d/CentOS-Base.repo” [2523/2523])
[root@jump ~]# cd /etc/yum.repos.d/
[root@jump yum.repos.d]# ls
a CentOS-Base.repo yum.repo
[root@jump yum.repos.d]# ls
a CentOS-Base.repo epel.repo epel-testing.repo
[root@jump yum.repos.d]# rm -rf C* e*
[root@jump yum.repos.d]# ls
a yum.repo
[root@jump yum.repos.d]# yum -y clean all
Loaded plugins: fastestmirror, refresh-packagekit, security
Cleaning repos: base centosplus contrib extras updates
Cleaning up Everything
Cleaning up list of fastest mirrors
[root@jump yum.repos.d]# yum makecache
Loaded plugins: fastestmirror, refresh-packagekit, security
Determining fastest mirrors
* base: mirrors.aliyun.com
* centosplus: mirrors.aliyun.com
* contrib: mirrors.aliyun.com
* extras: mirrors.aliyun.com
* updates: mirrors.aliyun.com
base | 3.7 kB 00:00
base/group_gz | 242 kB 00:00
base/filelists_db | 6.4 MB 00:01
base/primary_db | 4.7 MB 00:01
base/other_db | 2.8 MB 00:00
centosplus | 3.4 kB 00:00
centosplus/filelists_db | 978 kB 00:00
centosplus/prestodelta | 18 kB 00:00
centosplus/primary_db | 2.3 MB 00:00
centosplus/other_db | 70 kB 00:00
contrib | 2.9 kB 00:00
contrib/filelists_db | 586 B 00:00
contrib/primary_db | 1.2 kB 00:00
contrib/other_db | 568 B 00:00
extras | 3.4 kB 00:00
extras/filelists_db | 24 kB 00:00
extras/prestodelta | 2.2 kB 00:00
extras/primary_db | 29 kB 00:00
extras/other_db | 14 kB 00:00
updates | 3.4 kB 00:00
updates/filelists_db | 3.0 MB 00:00
updates/prestodelta | 153 kB 00:00
updates/primary_db | 4.2 MB 00:01
updates/other_db | 212 kB 00:00
Metadata Cache Created
- 运行jumpserver自带的自动安装脚本
[root@jump ~]# cd jumpserver.master/
[root@jump jumpserver.master]# ls
jumpserver-master.tar.gz
[root@jump jumpserver.master]# tar xf jumpserver-master.tar.gz
[root@jump jumpserver.master]# cd jumpserver-master
jumpserver-master/ jumpserver-master.tar.gz
[root@jump jumpserver.master]# cd jumpserver-master
[root@jump jumpserver-master]# ls
connect.py jlog logs
docker-compose.yaml jperm manage.py
Dockerfile jumpserver README.md
docs jumpserver.conf run_server.py
init.sh juser service.sh
install keys static
jasset LICENSE templates
[root@jump jumpserver-master]# pwd
/root/jumpserver.master/jumpserver-master
[root@jump jumpserver-master]# cd in
init.sh install/
[root@jump jumpserver-master]# cd install/
[root@jump install]# ls
developer_doc.txt initial_data.yaml requirements.txt
docker install.py
functions next.py
[root@jump install]# python install.py
Complete!
开始安装依赖pip包
sh: pip: command not found
sh: pip: command not found
安装JumpServer 依赖的python库失败!
[root@jump install]# cd /root/jumpserver.rpm/
[root@jump jumpserver.rpm]# ls
autoconf-2.63-5.1.el6.noarch.rpm
automake-1.11.1-4.el6.noarch.rpm
cpp-4.4.7-18.el6.x86_64.rpm
e2fsprogs-1.41.12-23.el6.x86_64.rpm
e2fsprogs-libs-1.41.12-23.el6.x86_64.rpm
elfutils-0.164-2.el6.x86_64.rpm
epel-release-6-8.noarch.rpm
gcc-4.4.7-18.el6.x86_64.rpm
gcc-c++-4.4.7-18.el6.x86_64.rpm
gdb-7.2-92.el6.x86_64.rpm
git-1.7.1-8.el6.x86_64.rpm
keyutils-libs-devel-1.4-5.el6.x86_64.rpm
krb5-devel-1.10.3-65.el6.x86_64.rpm
krb5-libs-1.10.3-65.el6.x86_64.rpm
libcom_err-1.41.12-23.el6.x86_64.rpm
libcom_err-devel-1.41.12-23.el6.x86_64.rpm
libgcc-4.4.7-18.el6.x86_64.rpm
libgomp-4.4.7-18.el6.x86_64.rpm
libkadm5-1.10.3-65.el6.x86_64.rpm
libselinux-devel-2.0.94-7.el6.x86_64.rpm
libsepol-devel-2.0.41-4.el6.x86_64.rpm
libss-1.41.12-23.el6.x86_64.rpm
libstdc++-4.4.7-18.el6.x86_64.rpm
libstdc++-devel-4.4.7-18.el6.x86_64.rpm
lrzsz-0.12.20-27.1.el6.x86_64.rpm
mysql-5.1.73-8.el6_8.x86_64.rpm
mysql-devel-5.1.73-8.el6_8.x86_64.rpm
mysql-libs-5.1.73-8.el6_8.x86_64.rpm
mysql-server-5.1.73-8.el6_8.x86_64.rpm
ncurses-devel-5.7-4.20090207.el6.x86_64.rpm
openssl-1.0.1e-57.el6.x86_64.rpm
openssl-devel-1.0.1e-57.el6.x86_64.rpm
patch-2.6-6.el6.x86_64.rpm
perl-DBD-MySQL-4.013-3.el6.x86_64.rpm
perl-DBI-1.609-4.el6.x86_64.rpm
perl-Error-0.17015-4.el6.noarch.rpm
perl-Git-1.7.1-8.el6.noarch.rpm
python-2.6.6-66.el6_8.x86_64.rpm
python-devel-2.6.6-66.el6_8.x86_64.rpm
python-libs-2.6.6-66.el6_8.x86_64.rpm
python-pip-7.1.0-1.el6.noarch.rpm
python-setuptools-0.6.10-3.el6.noarch.rpm
readline-devel-6.0-4.el6.x86_64.rpm
redhat-rpm-config-9.0.3-51.el6.centos.noarch.rpm
rpm-build-4.8.0-55.el6.x86_64.rpm
rsync-3.0.6-12.el6.x86_64.rpm
sshpass-1.06-1.el6.x86_64.rpm
unzip-6.0-5.el6.x86_64.rpm
vim-common-7.4.629-5.el6_8.1.x86_64.rpm
vim-enhanced-7.4.629-5.el6_8.1.x86_64.rpm
xz-4.999.9-0.5.beta.20091007git.el6.x86_64.rpm
xz-lzma-compat-4.999.9-0.5.beta.20091007git.el6.x86_64.rpm
zlib-devel-1.2.3-29.el6.x86_64.rpm
[root@jump jumpserver.rpm]# yum -y install createrepo
[root@jump jumpserver.rpm]# createrepo ./
Spawning worker 0 with 53 pkgs
Workers Finished
Gathering worker results
Saving Primary metadata
Saving file lists metadata
Saving other metadata
Generating sqlite DBs
Sqlite DBs complete
[root@jump jumpserver.rpm]# ls
repodata
[root@jump jumpserver.rpm]# pwd
/root/jumpserver.rpm
[root@jump jumpserver.rpm]# vim /etc/yum.repos.d/yum.repo
[yum]
name=yum
baseurl=file:///media/cdrom
file:///root/jumpserver.rpm
enables=1
gpgcheck=0
~
[root@jump jumpserver.rpm]# yum -y clean all
[root@jump jumpserver.rpm]# yum makecache
[root@jump jumpserver.rpm]# cd /root/jumpserver.master/jumpserver-master/install/
[root@jump install]# pwd
/root/jumpserver.master/jumpserver-master/install
[root@jump ~]# yum -y install *pip*
[root@localhost ~]# wget http://sourceforge.net/projects/sshpass/files/sshpass/1.05/sshpass-1.05.tar.gz --no-check-certificate
[root@jump ~]# wget http://sourceforge.net/projects/sshpass/files/latest/download -O sshpass.tar.gz --no-check-certificate【不安全的方式下载安装】
--2019-05-31 20:04:34-- http://sourceforge.net/projects/sshpass/files/latest/download
Resolving sourceforge.net... 216.105.38.13
Connecting to sourceforge.net|216.105.38.13|:80... connected.
HTTP request sent, awaiting response... 301 Moved Permanently
Location: https://sourceforge.net/projects/sshpass/files/latest/download [following]
--2019-05-31 20:04:34-- https://sourceforge.net/projects/sshpass/files/latest/download
Connecting to sourceforge.net|216.105.38.13|:443... connected.
HTTP request sent, awaiting response... 302 Found
Location: https://downloads.sourceforge.net/project/sshpass/sshpass/1.06/sshpass-1.06.tar.gz?r=&ts=1559275471&use_mirror=jaist [following]
--2019-05-31 20:04:35-- https://downloads.sourceforge.net/project/sshpass/sshpass/1.06/sshpass-1.06.tar.gz?r=&ts=1559275471&use_mirror=jaist
Resolving downloads.sourceforge.net... 216.105.38.13
Connecting to downloads.sourceforge.net|216.105.38.13|:443... connected.
WARNING: certificate common name “sourceforge.net” doesn’t match requested host name “downloads.sourceforge.net”.
HTTP request sent, awaiting response... 302 Found
Location: https://jaist.dl.sourceforge.net/project/sshpass/sshpass/1.06/sshpass-1.06.tar.gz [following]
--2019-05-31 20:04:36-- https://jaist.dl.sourceforge.net/project/sshpass/sshpass/1.06/sshpass-1.06.tar.gz
Resolving jaist.dl.sourceforge.net... 150.65.7.130, 150.65.7.130
Connecting to jaist.dl.sourceforge.net|150.65.7.130|:443... connected.
WARNING: certificate common name “ftp.jaist.ac.jp” doesn’t match requested host name “jaist.dl.sourceforge.net”.
HTTP request sent, awaiting response... 200 OK
Length: 112205 (110K) [application/x-gzip]
Saving to: “sshpass.tar.gz”
100%[====================>] 112,205 44.9K/s in 2.4s
2019-05-31 20:04:41 (44.9 KB/s) - “sshpass.tar.gz” saved [112205/112205]
[root@localhost ~]# tar -xf sshpass.tar.gz
[root@localhost ~]# ls
anaconda-ks.cfg install.log.syslog Public
Desktop jumpserver.master sshpass-1.06
Documents jumpserver.rpm sshpass.tar.gz
Downloads Music Templates
install.log Pictures Videos
[root@localhost ~]# cd sshpass-1.06/
[root@localhost sshpass-1.06]# ls
aclocal.m4 config.h.in depcomp Makefile.am README
AUTHORS configure INSTALL Makefile.in sshpass.1
ChangeLog configure.ac install-sh missing
compile COPYING main.c NEWS
[root@localhost sshpass-1.06]# ./configure && make && make install
[root@localhost ~]# cd /root/jumpserver.master/jumpserver-master/install/
[root@jump install]# python install.py
开始关闭防火墙和selinux
请输入您服务器的IP地址,用户浏览器可以访问 [192.168.16.12]: 回车
是否安装新的MySQL服务器? (y/n) [y]: y
开始安装设置mysql (请手动设置mysql安全)
连接数据库成功
请输入SMTP地址: 回车
请输入SMTP端口 [25]: 回车
请输入账户: 回车
请输入密码: 回车
please run connect() first
是否跳过(y/n) [n]? : y
请登陆邮箱查收邮件, 然后确认是否继续安装
是否继续? (y/n) [y]: y
开始写入配置文件
开始安装Jumpserver ...
开始更新jumpserver
请输入管理员用户名 [admin]: 回车
请输入管理员密码: [5Lov@wife]: 123123
请再次输入管理员密码: [5Lov@wife]: 123123
Starting jumpserver service: [确定]
安装成功,Web登录请访问http://ip:8000, 祝你使用愉快。
请访问 https://github.com/jumpserver/jumpserver/wiki 查看文档
[root@jump install]# netstat -antup|grep :8000
tcp 0 0 0.0.0.0:8000 0.0.0.0:* LISTEN 29712/python
- 在浏览器里进行访问测试
Jumpserver的基本使用
添加用户
测试实验中不用点邮件
确认保存后出现以下信息必须记住
修改用户的web登录密码
多一点空格也会报错
Xshell简历通过秘钥对访问的远程连接
在此用户秘钥登录失败,一直失败,没找到原因,以后有时间再研究。有兴趣的可以研究下
- 报错
Last login: Fri May 31 17:07:34 2019 from 192.168.16.1
/root/jumpserver.master/jumpserver-master/init.sh: Permission denied
Connection closed.
Type `help' to learn how to use Xshell prompt.
Xshell:\>
Connection closed by foreign host.连接被外部主机关闭
排错
Xshell:\> ssh -vv aaaaa@192.168.16.12