Centos7搭建JumpServer

最新推荐文章于 2024-05-03 17:29:00 发布
最新推荐文章于 2024-05-03 17:29:00 发布
阅读量2.2k 收藏 5
点赞数 1
分类专栏: JumpServer 文章标签: linux
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/weixin_45284946/article/details/120220041
版权

一、访问JumpServer 安装文档

###默认会安装到 /opt/jumpserver-installer-v2.13.2 目录 
curl -sSL https://github.com/jumpserver/jumpserver/releases/download/v2.13.2/quick_start.sh | bash 
cd /opt/jumpserver-installer-v2.13.2

如果网络不好的情况情况下不建议使用一键部署,可以先下载tar包,然后进行编译安装

二、手动部署JumpServer

###使用 yum 安装 wget 命令
yum -y install wget

###进入/opt 目录
[root@localhost opt]# cd /opt/

###将JumpServer 的tar包下载到opt目录下
[root@localhost opt]# wget https://github.com/jumpserver/installer/releases/download/v2.13.2/jumpserver-installer-v2.13.2.tar.gz
--2021-09-10 13:28:01--  https://github.com/jumpserver/installer/releases/download/v2.13.2/jumpserver-installer-v2.13.2.tar.gz
正在解析主机 github.com (github.com)... 52.74.223.119
正在连接 github.com (github.com)|52.74.223.119|:443... 已连接。
已发出 HTTP 请求,正在等待回应... 302 Found
位置:https://github-releases.githubusercontent.com/303679235/5b212f46-f5b4-44f5-854d-c27afea4990b?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAIWNJYAX4CSVEH53A%2F20210910%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20210910T052810Z&X-Amz-Expires=300&X-Amz-Signature=ffff5e1f7372fcda1d1b6c0aa2f756df122049624adf0240ef04bb04220ea2d3&X-Amz-SignedHeaders=host&actor_id=0&key_id=0&repo_id=303679235&response-content-disposition=attachment%3B%20filename%3Djumpserver-installer-v2.13.2.tar.gz&response-content-type=application%2Foctet-stream [跟随至新的 URL]
--2021-09-10 13:28:10--  https://github-releases.githubusercontent.com/303679235/5b212f46-f5b4-44f5-854d-c27afea4990b?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAIWNJYAX4CSVEH53A%2F20210910%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20210910T052810Z&X-Amz-Expires=300&X-Amz-Signature=ffff5e1f7372fcda1d1b6c0aa2f756df122049624adf0240ef04bb04220ea2d3&X-Amz-SignedHeaders=host&actor_id=0&key_id=0&repo_id=303679235&response-content-disposition=attachment%3B%20filename%3Djumpserver-installer-v2.13.2.tar.gz&response-content-type=application%2Foctet-stream
正在解析主机 github-releases.githubusercontent.com (github-releases.githubusercontent.com)... 185.199.110.154, 185.199.111.154, 185.199.108.154, ...
正在连接 github-releases.githubusercontent.com (github-releases.githubusercontent.com)|185.199.110.154|:443... 已连接。
已发出 HTTP 请求,正在等待回应... 200 OK
长度:33762 (33K) [application/octet-stream]
正在保存至: “jumpserver-installer-v2.13.2.tar.gz”

100%[============================================================================>] 33,762      --.-K/s 用时 0.03s   

2021-09-10 13:28:15 (1007 KB/s) - 已保存 “jumpserver-installer-v2.13.2.tar.gz” [33762/33762])


###解压JumpServer,解压到/usr/local/ 目录下
[root@localhost opt]# tar xf jumpserver-installer-v2.13.2.tar.gz  -C /usr/local/

###进入到解压后的目录进行编译安装
[root@localhost opt]# cd /usr/local/jumpserver-installer-v2.13.2/

###查看目录内容
[root@localhost jumpserver-installer-v2.13.2]# ls
compose  config-example.txt  config_init  jmsctl.sh  locale  quick_start.sh  README.md  scripts  static.env  utils

三、根据需要修改配置文件模板, 如果不清楚用途可以跳过修改 cat config-example.txt

[root@localhost jumpserver-installer-v2.13.2]# cat config-example.txt 
# 以下设置如果为空系统会自动生成随机字符串填入
## 迁移请修改 SECRET_KEY 和 BOOTSTRAP_TOKEN 为原来的设置
## 完整参数文档 https://docs.jumpserver.org/zh/master/admin-guide/env/

## 安装配置, 可以使用华为云加速下载, arm64 用户需要注释掉 DOCKER_IMAGE_PREFIX
# DOCKER_IMAGE_PREFIX=swr.cn-south-1.myhuaweicloud.com
VOLUME_DIR=/opt/jumpserver
DOCKER_DIR=/var/lib/docker
SECRET_KEY=
BOOTSTRAP_TOKEN=
LOG_LEVEL=ERROR

##  MySQL 配置, USE_EXTERNAL_MYSQL=1 表示使用外置 MySQL, 请输入正确的 MySQL 信息
USE_EXTERNAL_MYSQL=0
DB_HOST=mysql
DB_PORT=3306
DB_USER=root
DB_PASSWORD=
DB_NAME=jumpserver

##  Redis 配置, USE_EXTERNAL_REDIS=1 表示使用外置 Redis, 请输入正确的 Redis 信息
USE_EXTERNAL_REDIS=0
REDIS_HOST=redis
REDIS_PORT=6379
REDIS_PASSWORD=

## Compose 项目设置, 如果 192.168.250.0/24 网段与你现有网段冲突, 请修改然后重启 JumpServer
COMPOSE_PROJECT_NAME=jms
COMPOSE_HTTP_TIMEOUT=3600
DOCKER_CLIENT_TIMEOUT=3600
DOCKER_SUBNET=192.168.250.0/24

## IPV6 设置, 容器是否开启 ipv6 nat, USE_IPV6=1 表示开启, 为 0 的情况下 DOCKER_SUBNET_IPV6 定义不生效
USE_IPV6=0
DOCKER_SUBNET_IPV6=2001:db8:10::/64

## Nginx 配置, USE_LB=1 表示开启, 为 0 的情况下, HTTPS_PORT 定义不生效
HTTP_PORT=80
SSH_PORT=2222
RDP_PORT=3389

USE_LB=0
HTTPS_PORT=443

## Task 配置, 是否启动 jms_celery 容器, 单节点必须开启
USE_TASK=1

## XPack, USE_XPACK=1 表示开启, 开源版本设置无效
USE_XPACK=0

# Core 配置, Session 定义, SESSION_COOKIE_AGE 表示闲置多少秒后 session 过期, SESSION_EXPIRE_AT_BROWSER_CLOSE=true 表示关闭浏览器即 session 过期
# SESSION_COOKIE_AGE=86400
SESSION_EXPIRE_AT_BROWSER_CLOSE=true

# Koko Lion XRDP 组件配置
CORE_HOST=http://core:8080

# 额外的配置
CURRENT_VERSION=

三、安装JumpServer

[root@localhost jumpserver-installer-v2.13.2]# ./jmsctl.sh install


       ██╗██╗   ██╗███╗   ███╗██████╗ ███████╗███████╗██████╗ ██╗   ██╗███████╗██████╗
       ██║██║   ██║████╗ ████║██╔══██╗██╔════╝██╔════╝██╔══██╗██║   ██║██╔════╝██╔══██╗
       ██║██║   ██║██╔████╔██║██████╔╝███████╗█████╗  ██████╔╝██║   ██║█████╗  ██████╔╝
  ██   ██║██║   ██║██║╚██╔╝██║██╔═══╝ ╚════██║██╔══╝  ██╔══██╗╚██╗ ██╔╝██╔══╝  ██╔══██╗
  ╚█████╔╝╚██████╔╝██║ ╚═╝ ██║██║     ███████║███████╗██║  ██║ ╚████╔╝ ███████╗██║  ██║
   ╚════╝  ╚═════╝ ╚═╝     ╚═╝╚═╝     ╚══════╝╚══════╝╚═╝  ╚═╝  ╚═══╝  ╚══════╝╚═╝  ╚═╝

								   Version:  v2.13.2  

1. 检查配置文件
配置文件位置: /opt/jumpserver/config
/opt/jumpserver/config/config.txt  [ √ ]
/opt/jumpserver/config/nginx/lb_rdp_server.conf  [ √ ]
/opt/jumpserver/config/nginx/lb_ssh_server.conf  [ √ ]
/opt/jumpserver/config/nginx/cert/server.crt   [ √ ]
/opt/jumpserver/config/nginx/cert/server.key   [ √ ]
完成

2. 备份配置文件
备份至 /opt/jumpserver/config/backup/config.txt.2021-09-10_13-32-12
完成

>>> 安装配置 Docker
1. 安装 Docker
开始下载 Docker 程序 ...
开始下载 Docker Compose 程序 ...
完成

2. 配置 Docker
是否需要自定义 docker 存储目录, 默认将使用目录 /var/lib/docker? (y/n)  (默认为 n): (默认即可)
完成

3. 启动 Docker
Created symlink from /etc/systemd/system/multi-user.target.wants/docker.service to /etc/systemd/system/docker.service.
完成

>>> 加载 Docker 镜像
[jumpserver/nginx:alpine2]
alpine2: Pulling from jumpserver/nginx
486039affc0a: Pull complete 
a99e975e0fd9: Pull complete 
92520226185f: Pull complete 
0c892c15af12: Pull complete 
Digest: sha256:bc5107a2b70df7d81dd00823ec8fc4ee56ea00c61032d8f7b33ad33f6aa9224b
Status: Downloaded newer image for jumpserver/nginx:alpine2

[jumpserver/redis:6-alpine]
6-alpine: Pulling from jumpserver/redis
5843afab3874: Pull complete 
f2c041a97bd6: Pull complete 
2ab181d61f92: Pull complete 
0e735c6f0308: Pull complete 
3494533ff85c: Pull complete 
09ce5e93ca58: Pull complete 
Digest: sha256:8300b885570faad626e569e7b8cfef3407c87050d705ff26e243200cb3f84da8
Status: Downloaded newer image for jumpserver/redis:6-alpine

[jumpserver/mysql:5]
5: Pulling from jumpserver/mysql
6ec7b7d162b2: Pull complete 
fedd960d3481: Pull complete 
7ab947313861: Pull complete 
64f92f19e638: Pull complete 
3e80b17bff96: Pull complete 
014e976799f9: Pull complete 
59ae84fee1b3: Pull complete 
7d1da2a18e2e: Pull complete 
301a28b700b9: Pull complete 
979b389fc71f: Pull complete 
403f729b1bad: Pull complete 
Digest: sha256:b3b2703de646600b008cbb2de36b70b21e51e7e93a7fca450d2b08151658b2dd
Status: Downloaded newer image for jumpserver/mysql:5

[jumpserver/web:v2.13.2]
v2.13.2: Pulling from jumpserver/web
29291e31a76a: Downloading 
e82f830de071: Download complete 
d7c9fa7589ae: Download complete 
3c1eaf69ff49: Download complete 
bf2b3ee132db: Download complete 
9a6ac07b84eb: Download complete 
74f40c418ade: Download complete 
b87961e347c1: Download complete 
b6f96856746e: Download complete 
04c67e5d3785: Download complete 
b8052eeb24f5: Download complete 
v2.13.2: Pulling from jumpserver/web
29291e31a76a: Pull complete 
e82f830de071: Pull complete 
d7c9fa7589ae: Pull complete 
3c1eaf69ff49: Pull complete 
bf2b3ee132db: Pull complete 
9a6ac07b84eb: Pull complete 
74f40c418ade: Pull complete 
b87961e347c1: Pull complete 
b6f96856746e: Pull complete 
04c67e5d3785: Pull complete 
b8052eeb24f5: Pull complete 
Digest: sha256:ddeb91d7063203ad893ba2724ab7db42654f4905705c4b40134a33a4fb55c072
Status: Downloaded newer image for jumpserver/web:v2.13.2

[jumpserver/core:v2.13.2]
v2.13.2: Pulling from jumpserver/core
6ec7b7d162b2: Already exists 
80ff6536d04b: Pull complete 
2d04da85e485: Downloading 
998aa32a5c8a: Download complete 
7733ef26f344: Download complete 
b8f2de1a0c00: Download complete 
bce204fa577d: Download complete 
2886eb4524b3: Download complete 
119a097d4cb2: Download complete 
05910b160293: Download complete 
2a3a5a6216d8: Download complete 
cb8ec5e3f08f: Download complete 
0ef3e1bf4247: Download complete 
v2.13.2: Pulling from jumpserver/core
6ec7b7d162b2: Already exists 
80ff6536d04b: Pull complete 
2d04da85e485: Pull complete 
998aa32a5c8a: Pull complete 
7733ef26f344: Pull complete 
b8f2de1a0c00: Pull complete 
bce204fa577d: Pull complete 
2886eb4524b3: Pull complete 
119a097d4cb2: Pull complete 
05910b160293: Pull complete 
2a3a5a6216d8: Pull complete 
cb8ec5e3f08f: Pull complete 
0ef3e1bf4247: Pull complete 
Digest: sha256:7e2982dbdc0360601387cade82b285235948b6d0e6506aa8375f704e77260b27
Status: Downloaded newer image for jumpserver/core:v2.13.2

[jumpserver/koko:v2.13.2]
v2.13.2: Pulling from jumpserver/koko
33f99cea3b7d: Pull complete 
2d5748cec128: Pull complete 
3c306b4a8bf3: Pull complete 
51551dd74879: Pull complete 
d6595856b6f2: Pull complete 
7514ad72b0f5: Pull complete 
68aaeea68ec7: Pull complete 
f168d88f4ac6: Pull complete 
2e9752838d5c: Pull complete 
cc91d4b42ecb: Pull complete 
67120f3de9ba: Pull complete 
Digest: sha256:f81558d25dfe6999baa42984e2f68d77bf777b29d7206c3fd7195a61efdb18f6
Status: Downloaded newer image for jumpserver/koko:v2.13.2

[jumpserver/koko:v2.13.2]
v2.13.2: Pulling from jumpserver/koko
33f99cea3b7d: Pull complete 
2d5748cec128: Pull complete 
3c306b4a8bf3: Pull complete 
51551dd74879: Pull complete 
d6595856b6f2: Pull complete 
7514ad72b0f5: Pull complete 
68aaeea68ec7: Pull complete 
f168d88f4ac6: Pull complete 
2e9752838d5c: Pull complete 
cc91d4b42ecb: Pull complete 
67120f3de9ba: Pull complete 
Digest: sha256:f81558d25dfe6999baa42984e2f68d77bf777b29d7206c3fd7195a61efdb18f6
Status: Downloaded newer image for jumpserver/koko:v2.13.2

[jumpserver/lion:v2.13.2]
v2.13.2: Pulling from jumpserver/lion
69692152171a: Downloading 
d884362f8d65: Download complete 
642670135f62: Download complete 
f2f9e484b2f8: Download complete 
31b2c41bb975: Download complete 
5a4d603bde6f: Download complete 
9775c16c68db: Download complete 
f66751b83e51: Download complete 
75d7844e3a93: Download complete 
268ab36224e9: Download complete 
87186b2fda35: Download complete 
dd7716bd850a: Download complete 
fdf60e19e994: Download complete 
cce69d5a2c12: Download complete 
v2.13.2: Pulling from jumpserver/lion
69692152171a: Downloading [=====>                                             ]  3.062MB/27.15MB
d884362f8d65: Download complete 
642670135f62: Downloading [=================================>                 ]  4.959MB/7.303MB
f2f9e484b2f8: Waiting 
31b2c41bb975: Waiting 
5a4d603bde6f: Waiting 
9775c16c68db: Waiting 
f66751b83e51: Waiting 
75d7844e3a93: Waiting 
268ab36224e9: Waiting 
87186b2fda35: Waiting 
dd7716bd850a: Waiting 
fdf60e19e994: Waiting 
cce69d5a2c12: Waiting 
error pulling image configuration: Get https://production.cloudflare.docker.com/registry-v2/docker/registry/v2/blobs/sha256/5d/5d875f31601ec47528f5c3fb63e26b57cb0ea021796c36a9aae4eb4c206be2e4/data?verify=1631255563-06j%2F7Q%2FLIPIjpon%2BT2YxGIHnKBo%3D: net/http: TLS handshake timeout

完成

>>> 安装配置 JumpServer
1. 配置网络
是否需要支持 IPv6? (y/n)  (默认为 n): 
完成

2. 配置加密密钥
SECRETE_KEY:     NTJlOTRkNTYtOGNkOC1kOTVkLWZmMmQtYjc0NDBiNGY5NzUw
BOOTSTRAP_TOKEN: NTJlOTRkNTYtOGNkOC1kOTVk
完成

3. 配置持久化目录
是否需要自定义持久化存储, 默认将使用目录 /opt/jumpserver? (y/n)  (默认为 n): 
完成

4. 配置 MySQL
是否使用外部 MySQL? (y/n)  (默认为 n): 
完成

5. 配置 Redis
是否使用外部 Redis? (y/n)  (默认为 n): 
完成

6. 配置对外端口
是否需要配置 JumpServer 对外访问端口? (y/n)  (默认为 n): 
完成

7. 初始化数据库
Creating network "jms_net" with driver "bridge"
Creating jms_redis ... done
Creating jms_mysql ... done
Creating jms_core  ... done
2021-09-10 13:51:25 Collect static files
2021-09-10 13:51:25 Collect static files done
2021-09-10 13:51:25 Check database structure change ...
2021-09-10 13:51:25 Migrate model change to database ...

476 static files copied to '/opt/jumpserver/data/static'.
Operations to perform:
  Apply all migrations: acls, admin, applications, assets, audits, auth, authentication, captcha, common, contenttypes, django_cas_ng, django_celery_beat, jms_oidc_rp, notifications, ops, orgs, perms, sessions, settings, terminal, tickets, users
Running migrations:
  Applying contenttypes.0001_initial... OK
  Applying contenttypes.0002_remove_content_type_name... OK
  Applying auth.0001_initial... OK
  Applying auth.0002_alter_permission_name_max_length... OK
  Applying auth.0003_alter_user_email_max_length... OK
  Applying auth.0004_alter_user_username_opts... OK
  Applying auth.0005_alter_user_last_login_null... OK
  Applying auth.0006_require_contenttypes_0002... OK
  Applying auth.0007_alter_validators_add_error_messages... OK
  Applying auth.0008_alter_user_username_max_length... OK
  Applying users.0001_initial... OK
  Applying acls.0001_initial... OK
  Applying admin.0001_initial... OK
  Applying admin.0002_logentry_remove_auto_add... OK
  Applying admin.0003_logentry_add_action_flag_choices... OK
  Applying users.0002_auto_20171225_1157_squashed_0019_auto_20190304_1459... OK
  Applying users.0020_auto_20190612_1825... OK
  Applying users.0021_auto_20190625_1104... OK
  Applying users.0022_auto_20190625_1105... OK
  Applying users.0023_auto_20190724_1525... OK
  Applying users.0024_auto_20191118_1612... OK
  Applying users.0025_auto_20200206_1216... OK
  Applying users.0026_auto_20200508_2105... OK
  Applying users.0027_auto_20200616_1503... OK
  Applying users.0028_auto_20200728_1805... OK
  Applying users.0029_auto_20200814_1650... OK
  Applying users.0030_auto_20200819_2041... OK
  Applying users.0031_auto_20201118_1801... OK
  Applying tickets.0001_initial... OK
  Applying tickets.0002_auto_20200728_1146... OK
  Applying tickets.0003_auto_20200804_1551... OK
  Applying tickets.0004_ticket_comment... OK
  Applying tickets.0005_ticket_meta_confirmed_system_users... OK
  Applying tickets.0006_auto_20201023_1628... OK
  Applying tickets.0007_auto_20201224_1821... OK
  Applying terminal.0001_initial... OK
  Applying terminal.0002_auto_20171228_0025_squashed_0009_auto_20180326_0957... OK
  Applying terminal.0010_auto_20180423_1140... OK
  Applying terminal.0011_auto_20180807_1116... OK
  Applying terminal.0012_auto_20180816_1652... OK
  Applying terminal.0013_auto_20181123_1113... OK
  Applying terminal.0014_auto_20181226_1441... OK
  Applying terminal.0015_auto_20190923_1529... OK
  Applying terminal.0016_commandstorage_replaystorage... OK
  Applying common.0001_initial... OK
  Applying common.0002_auto_20180111_1407... OK
  Applying common.0003_setting_category... OK
  Applying common.0004_setting_encrypted... OK
  Applying common.0005_auto_20190221_1902... OK
  Applying common.0006_auto_20190304_1515... OK
  Applying settings.0001_initial... OK
  Applying terminal.0017_auto_20191125_0931... OK
  Applying terminal.0018_auto_20191202_1010... OK
  Applying terminal.0019_auto_20191206_1000... OK
  Applying terminal.0020_auto_20191218_1721... OK
  Applying terminal.0021_auto_20200213_1316... OK
  Applying terminal.0022_session_is_success... OK
  Applying terminal.0023_command_risk_level... OK
  Applying terminal.0024_auto_20200715_1713... OK
  Applying terminal.0025_auto_20200810_1735... OK
  Applying terminal.0026_auto_20201027_1905... OK
  Applying terminal.0027_auto_20201102_1651... OK
  Applying terminal.0028_auto_20201110_1918... OK
  Applying terminal.0029_auto_20201116_1757... OK
  Applying terminal.0030_terminal_type... OK
  Applying terminal.0031_auto_20210113_1356... OK
  Applying assets.0001_initial... OK
  Applying perms.0001_initial... OK
  Applying assets.0002_auto_20180105_1807_squashed_0009_auto_20180307_1212... OK
  Applying assets.0010_auto_20180307_1749_squashed_0019_auto_20180816_1320... OK
  Applying perms.0002_auto_20171228_0025_squashed_0009_auto_20180903_1132... OK
  Applying perms.0003_action... OK
  Applying perms.0004_assetpermission_actions... OK
  Applying assets.0020_auto_20180816_1652... OK
  Applying assets.0021_auto_20180903_1132... OK
  Applying assets.0022_auto_20181012_1717... OK
  Applying assets.0023_auto_20181016_1650... OK
  Applying assets.0024_auto_20181219_1614... OK
  Applying assets.0025_auto_20190221_1902... OK
  Applying assets.0026_auto_20190325_2035... OK
  Applying applications.0001_initial... OK
  Applying perms.0005_auto_20190521_1619... OK
  Applying perms.0006_auto_20190628_1921... OK
  Applying perms.0007_remove_assetpermission_actions... OK
  Applying perms.0008_auto_20190911_1907... OK
  Applying assets.0027_auto_20190521_1703... OK
  Applying assets.0028_protocol... OK
  Applying assets.0029_auto_20190522_1114... OK
  Applying assets.0030_auto_20190619_1135... OK
  Applying assets.0031_auto_20190621_1332... OK
  Applying assets.0032_auto_20190624_2108... OK
  Applying assets.0033_auto_20190624_2108... OK
  Applying assets.0034_auto_20190705_1348... OK
  Applying assets.0035_auto_20190711_2018... OK
  Applying assets.0036_auto_20190716_1535... OK
  Applying assets.0037_auto_20190724_2002... OK
  Applying assets.0038_auto_20190911_1634... OK
  Applying perms.0009_remoteapppermission_system_users... OK
  Applying assets.0039_authbook_is_active... OK
  Applying assets.0040_auto_20190917_2056... OK
  Applying assets.0041_gathereduser... OK
  Applying assets.0042_favoriteasset... OK
  Applying assets.0043_auto_20191114_1111... OK
  Applying assets.0044_platform... OK
  Applying assets.0045_auto_20191206_1607... OK
  Applying assets.0046_auto_20191218_1705... OK
  Applying applications.0002_remove_remoteapp_system_user... OK
  Applying applications.0003_auto_20191210_1659... OK
  Applying applications.0004_auto_20191218_1705... OK
  Applying perms.0010_auto_20191218_1705... OK
  Applying perms.0011_auto_20200721_1739... OK
  Applying assets.0047_assetuser... OK
  Applying assets.0048_auto_20191230_1512... OK
  Applying assets.0049_systemuser_sftp_root... OK
  Applying assets.0050_auto_20200711_1740... OK
  Applying assets.0051_auto_20200713_1143... OK
  Applying assets.0052_auto_20200715_1535... OK
  Applying assets.0053_auto_20200723_1232... OK
  Applying assets.0054_auto_20200807_1032... OK
  Applying applications.0005_k8sapp... OK
  Applying perms.0012_k8sapppermission... OK
  Applying assets.0055_auto_20200811_1845... OK
  Applying assets.0056_auto_20200904_1751... OK
  Applying assets.0057_fill_node_value_assets_amount_and_parent_key...

  ................................................................. OK
  Applying perms.0013_rebuildusertreetask_usergrantedmappingnode... OK
  Applying perms.0014_build_users_perm_tree... OK
  Applying perms.0015_auto_20200929_1728... OK
  Applying assets.0058_auto_20201023_1115... OK
  Applying assets.0059_auto_20201027_1905... OK
  Applying applications.0006_application... OK
  Applying perms.0016_applicationpermission... OK
  Applying perms.0017_auto_20210104_0435... OK
  Applying assets.0060_node_full_value...
- Start migrate node value if has /
- Start migrate node full value
 OK
  Applying assets.0061_auto_20201116_1757... OK
  Applying assets.0062_auto_20201117_1938... OK
  Applying assets.0063_migrate_default_node_key...
Check old default node `key=0 value=Default` not exists
 OK
  Applying assets.0064_auto_20201203_1100... OK
  Applying assets.0065_auto_20210121_1549... OK
  Applying perms.0018_auto_20210208_1515... OK
  Applying orgs.0001_initial... OK
  Applying orgs.0002_auto_20180903_1132... OK
  Applying orgs.0003_auto_20190916_1057... OK
  Applying orgs.0004_organizationmember... OK
  Applying orgs.0005_auto_20200721_1937... OK
  Applying orgs.0006_auto_20200721_1937... OK
  Applying orgs.0007_auto_20200728_1805... OK
  Applying orgs.0008_auto_20200819_2041... OK
  Applying orgs.0009_auto_20201023_1628... OK
  Applying ops.0001_initial... OK
  Applying ops.0002_celerytask... OK
  Applying ops.0003_auto_20181207_1744... OK
  Applying ops.0004_adhoc_run_as... OK
  Applying ops.0005_auto_20181219_1807... OK
  Applying ops.0006_auto_20190318_1023... OK
  Applying ops.0007_auto_20190724_2002... OK
  Applying ops.0008_auto_20190919_2100... OK
  Applying ops.0009_auto_20191217_1713... OK
  Applying ops.0010_auto_20191217_1758... OK
  Applying ops.0011_auto_20200106_1534... OK
  Applying ops.0012_auto_20200108_1659... OK
  Applying ops.0013_auto_20200108_1706... OK
  Applying ops.0014_auto_20200108_1749... OK
  Applying ops.0015_auto_20200108_1809... OK
  Applying ops.0016_commandexecution_org_id... OK
  Applying ops.0017_auto_20200306_1747... OK
  Applying ops.0018_auto_20200509_1434... OK
  Applying ops.0019_adhocexecution_celery_task_id... OK
  Applying audits.0001_initial... OK
  Applying audits.0002_ftplog_org_id... OK
  Applying audits.0003_auto_20180816_1652... OK
  Applying audits.0004_operatelog_passwordchangelog_userloginlog... OK
  Applying audits.0005_auto_20190228_1715... OK
  Applying audits.0006_auto_20190726_1753... OK
  Applying audits.0007_auto_20191202_1010... OK
  Applying audits.0008_auto_20200508_2105... OK
  Applying audits.0009_auto_20200624_1654... OK
  Applying audits.0010_auto_20200811_1122... OK
  Applying audits.0011_userloginlog_backend... OK
  Applying assets.0066_auto_20210208_1802... OK
  Applying applications.0007_auto_20201119_1110... OK
  Applying applications.0008_auto_20210104_0435... OK
  Applying orgs.0010_auto_20210219_1241...
Migrate model org id: Application done, use 1.33 ms
Migrate model org id: AdminUser done, use 1.09 ms
Migrate model org id: Asset done, use 0.99 ms
Migrate model org id: AuthBook done, use 0.93 ms
Migrate model org id: CommandFilter done, use 0.76 ms
Migrate model org id: CommandFilterRule done, use 0.71 ms
Migrate model org id: Domain done, use 0.73 ms
Migrate model org id: Gateway done, use 0.94 ms
Migrate model org id: GatheredUser done, use 0.72 ms
Migrate model org id: Label done, use 0.71 ms
Migrate model org id: Node done, use 0.7 ms
Migrate model org id: SystemUser done, use 0.76 ms
Migrate model org id: FTPLog done, use 0.91 ms
Migrate model org id: OperateLog done, use 0.7 ms
Migrate model org id: AdHoc done, use 0.73 ms
Migrate model org id: AdHocExecution done, use 0.85 ms
Migrate model org id: CommandExecution done, use 0.73 ms
Migrate model org id: Task done, use 0.92 ms
Migrate model org id: ApplicationPermission done, use 0.73 ms
Migrate model org id: AssetPermission done, use 0.7 ms
Migrate model org id: UserAssetGrantedTreeNodeRelation done, use 0.73 ms
Migrate model org id: Session done, use 0.74 ms
Migrate model org id: Command done, use 0.73 ms
Migrate model org id: Ticket done, use 0.79 ms
Migrate model org id: UserGroup done, use 0.96 ms
Will add users to default org: 1
Add users to default org: 1-1
done, use 7.45 ms
 OK
  Applying assets.0067_auto_20210311_1113... OK
  Applying assets.0068_auto_20210312_1455... OK
  Applying assets.0069_change_node_key0_to_key1...
--> Not exist key=0 nodes, do nothing.
 OK
  Applying assets.0070_auto_20210426_1515... OK
  Applying applications.0009_applicationuser... OK
  Applying assets.0071_systemuser_type...
 OK
  Applying assets.0072_historicalauthbook...
 OK
  Applying assets.0073_auto_20210606_1142...

 OK
  Applying assets.0074_remove_systemuser_assets... OK
  Applying assets.0075_auto_20210705_1759... OK
  Applying assets.0076_delete_assetuser... OK
  Applying audits.0012_auto_20210414_1443... OK
  Applying auth.0009_alter_user_last_name_max_length... OK
  Applying auth.0010_alter_group_name_max_length... OK
  Applying auth.0011_update_proxy_permissions... OK
  Applying auth.0012_alter_user_first_name_max_length... OK
  Applying authentication.0001_initial... OK
  Applying authentication.0002_auto_20190729_1423... OK
  Applying authentication.0003_loginconfirmsetting... OK
  Applying authentication.0004_ssotoken... OK
  Applying captcha.0001_initial... OK
  Applying django_cas_ng.0001_initial... OK
  Applying django_celery_beat.0001_initial... OK
  Applying django_celery_beat.0002_auto_20161118_0346... OK
  Applying django_celery_beat.0003_auto_20161209_0049... OK
  Applying django_celery_beat.0004_auto_20170221_0000... OK
  Applying django_celery_beat.0005_add_solarschedule_events_choices... OK
  Applying django_celery_beat.0006_auto_20180322_0932... OK
  Applying django_celery_beat.0007_auto_20180521_0826... OK
  Applying django_celery_beat.0008_auto_20180914_1922... OK
  Applying django_celery_beat.0006_auto_20180210_1226... OK
  Applying django_celery_beat.0006_periodictask_priority... OK
  Applying django_celery_beat.0009_periodictask_headers... OK
  Applying django_celery_beat.0010_auto_20190429_0326... OK
  Applying django_celery_beat.0011_auto_20190508_0153... OK
  Applying django_celery_beat.0012_periodictask_expire_seconds... OK
  Applying jms_oidc_rp.0001_initial... OK
  Applying users.0032_userpasswordhistory... OK
  Applying users.0033_user_need_update_password... OK
  Applying users.0034_auto_20210506_1448... OK
  Applying users.0035_auto_20210526_1100... OK
  Applying notifications.0001_initial... OK
  Applying ops.0020_adhoc_run_system_user... OK
  Applying sessions.0001_initial... OK
  Applying settings.0002_auto_20210729_1546... OK
  Applying terminal.0032_auto_20210302_1853... OK
  Applying terminal.0033_auto_20210324_1008... OK
  Applying terminal.0034_auto_20210406_1434... OK
  Applying terminal.0035_auto_20210517_1448... OK
  Applying terminal.0036_auto_20210604_1124... OK
  Applying terminal.0037_auto_20210623_1748... OK
  Applying terminal.0038_task_kwargs... OK
  Applying terminal.0039_auto_20210805_1552... OK
  Applying tickets.0008_auto_20210311_1113... OK
  Applying tickets.0009_auto_20210426_1720... OK
  Applying users.0036_user_feishu_id... OK
完成

>>> 安装完成了
1. 可以使用如下命令启动, 然后访问
cd /usr/local/jumpserver-installer-v2.13.2
./jmsctl.sh start

2. 其它一些管理命令
./jmsctl.sh stop
./jmsctl.sh restart
./jmsctl.sh backup
./jmsctl.sh upgrade
更多还有一些命令, 你可以 ./jmsctl.sh --help 来了解

3. Web 访问
http://192.168.0.38:80
默认用户: admin  默认密码: admin

4. SSH/SFTP 访问
ssh -p2222 admin@192.168.0.38
sftp -P2222 admin@192.168.0.38

5. 更多信息
我们的官网: https://www.jumpserver.org/
我们的文档: https://docs.jumpserver.org/

四、启动JumpServer

###启动JumpServer
[root@localhost jumpserver-installer-v2.13.2]# ./jmsctl.sh start
Pulling lion (jumpserver/lion:v2.13.2)...
v2.13.2: Pulling from jumpserver/lion
69692152171a: Downloading
69692152171a: Pull complete
d884362f8d65: Pull complete
642670135f62: Pull complete
f2f9e484b2f8: Pull complete
31b2c41bb975: Pull complete
5a4d603bde6f: Pull complete
9775c16c68db: Pull complete
f66751b83e51: Pull complete
75d7844e3a93: Pull complete
268ab36224e9: Pull complete
87186b2fda35: Pull complete
dd7716bd850a: Pull complete
fdf60e19e994: Pull complete
cce69d5a2c12: Pull complete
Digest: sha256:d743a69635c7c6574d84a49f55f8d8e045087821434612d6db35669780a80681
Status: Downloaded newer image for jumpserver/lion:v2.13.2
jms_redis is up-to-date
jms_mysql is up-to-date
Creating jms_core ... done
Creating jms_celery ... done
Creating jms_web    ... done
Creating jms_koko   ... done
Creating jms_lion   ... done

五、浏览器访问,http://IP地址

用户名:admin

密码:admin

提示修改密码:

修改密码:

 新的密码为:1qaz@WSX

修改完成之后,点击【设置】

重新登录JumpServer 堡垒机即可:

 

登录堡垒机成功:

 

六、JumpServer 其他蚕食

# 停止
./jmsctl.sh down

# 卸载
./jmsctl.sh uninstall

# 帮助
./jmsctl.sh -h
[root@localhost jumpserver-installer-v2.13.2]# ./jmsctl.sh -h

JumpServer 部署管理脚本

Usage: 
  ./jmsctl.sh [COMMAND] [ARGS...]
  ./jmsctl.sh --help

Installation Commands: 
  install           安装 JumpServer
  upgrade [version] 升级 JumpServer
  check_update      检查 JumpServer
  reconfig          重新配置 JumpServer

Management Commands: 
  start             启动 JumpServer
  stop              停止 JumpServer
  close             关闭 JumpServer
  restart           重启 JumpServer
  status            检查 JumpServer
  down              下线 JumpServer
  uninstall         卸载 JumpServer

More Commands: 
  load_image        加载 Docker 镜像
  backup_db         备份数据库
  restore_db [file] 通过数据库备份文件恢复数据
  raw               执行原始 docker-compose 命令
  tail [service]    查看日志

 

 

 

豆汁玉子
关注
  • 1
    点赞
  • 5
    收藏
    觉得还不错? 一键收藏
  • 2
    评论
专栏目录
http://www.od85c.com.cn/html/,OllyDbg script for unpacking Enigma 4.xx and 5.xx
weixin_39850981的博客
07-14 2万+
[Asm] 纯文本查看 复制代码// Enigma Protector 4.xx and 5.XX unpacker by GIV (some parts are from LCF-AT Alternativ 1.1 script and the API fix is from SHADOW_UA script)// January 22 2016// giv@reversing.ro// PRI...
JumpServer堡垒机部署与运用之二:安装部署
Eric.zhong
06-23 2062
文章目录组件介绍组件部署1. 环境要求2. 系统环境更新3. 环境依赖包4. 安装Python、Mysql、Redis、Nginx组件5. Redis设置6. Mysql设置7. Python虚拟环境配置8. JumpServer部署9. Docker部署KOKO组件10. Docker部署Guacamole组件11. Lina组件部署12. Luna组件部署13. Nginx 整合各组件配置14. Jumpserver登录验证 组件介绍 组件部署 1. 环境要求 硬件配置: 2个CPU核心, 4G 内
jumpserver部署
最新发布
Djdhdhskn的博客
05-03 620
Jumpserver是一款开源的堡垒机,可使系统的管理员和开发人员安全的连接到企业内部服务器上执行操作,并且支持大部分操作系统,是一款非常安全的远程连接工具。
CentOS 7下JumpServer安装及配置(超详细版)
Mortalz7
10-12 5954
Jumpserver是一种用于访问和管理远程设备的Web应用程序,通常用于对服务器进行安全访问。它基于SSH协议,提供了一个安全和可管理的环境来管理SSH访问。Jumpserver是基于Python开发的一款开源工具,其提供了强大的访问控制功能,可以轻松实现用户、主机、命令和审计日志的管理。 本文包含koko部署、guacamole部署、luna部署、nginx配置安装以及Jumpserver启动关闭登录测试等等。
2008-2010 AIX problem
ciol32244的博客
08-08 5109
1. mv: 0653-405 ./smit_result/smit.log and smit_result/smit.log are identical. 2. lsps –a输出结果各项意思 P...
Sharde (高光Out)
fanfan_hongyun的博客
01-08 2843
// Upgrade NOTE: replaced 'mul(UNITY_MATRIX_MVP,*)' with 'UnityObjectToClipPos(*)' // Shader created with Shader Forge v1.32 // Shader Forge (c) Neat Corporation / Joachim Holmer - http://www.ace
虚拟机Centos7搭建MQTT服务
11-07
在本文中,我们将详细介绍如何在虚拟机CentOS7搭建MQTT服务。MQTT(Message Queuing Telemetry Transport)是一种轻量级的发布/订阅消息协议,常用于物联网(IoT)设备之间的通信。CentOS7是一个稳定的Linux发行版,...
Centos7搭建sftp服务流程
09-15
本篇文章给大家详细分析了Centos7搭建sftp服务的全过程以及相关命令分享,一起需要下。
centos7搭建mysql集群
05-15
centos7搭建mysql集群,包含整个搭建步骤,部分错误解决方案
CentOS 7 搭建HAproxy服务器
04-10
CentOS 7 搭建 HAproxy 服务器 HAproxy 是一个开源的、快速、可靠的解决方案,用于实现高可用性的负载均衡和反向代理。在 CentOS 7 中搭建 HAproxy 服务器可以实现高效的服务器集群管理和负载均衡。 一、实验环境...
Centos 8 Install Jumpserver
01-09
JumpServer 是全球首款完全开源的堡垒机, 使用 GNU GPL v2.0 开源协议, 是符合 4A 的专业运维审计系统。 JumpServer 使用 Python / Django 进行开发, 遵循 Web 2.0 规范, 配备了业界领先的 Web Terminal 解决方案, ...
jumpserver安装 CENTOS 7
04-02
jumpserver安装 2019-3-26 超级简单安装教程 无需理解 完全按文档操作 系统CENTOS 7 最小化安装后开始按教程安装
正则表达式合集
一位打工仔的博客
04-12 1708
表达式全集 字符 描述 \ 将下一个字符标记为一个特殊字符、或一个原义字符、或一个向后引用、或一个八进制转义符。例如,“n”匹配字符“n”。“\n”匹配一个换行符。串行“\\”匹配“\”而“\(”则匹配“(”。 ^ 匹配输入字符串的开始位置。如果设置了RegExp对象的Multiline属性,^也匹配“\n”或“\r...
linux】【装机】之 实战记录
tobeyourlover
09-10 766
1 硬盘分区与挂载fdisk -l #查看硬盘分区信息 fdisk /dev/sdb mkfs -t ext3 -c /dev/sdb1 vim /etc/fstab # 注意已有桌面用户后,不能重新挂载/home注意1: /etc/fstab格式说明:/dev/sdb1 代表哪个分区 ext3是该分区的格式 defaults 是挂载时所要设定的参数(只读,读写,启用quota等),输入defa
opencv学习笔记06
江州司马
08-02 1099
原创:opencv学习笔记06 OpenCV-Python教程:50.理解k-近邻 https://www.jianshu.com/p/404e329e4e80 OpenCV里的kNN 1 2 3 4 5 6 newcomer = np.random.randint(0,100,(1,2)).astype(np.float32) plt.scatter(newcomer[:,0],newcomer[:,1],80,'g','o') knn = cv2.KNea.
最新一键安装jumpserver
There is no one l would rather be than me
06-07 1319
使用官方文档一键安装堡垒机jumpserver,方便快捷省心,资产管理方便,授权管理好用,监控给力
Jumpserver一键部署
Neko的博客
03-24 1996
Jumpserver一键部署 来自官方文档:一键部署jumpserver 所需环境: 全新安装的 Centos7 (7.x) 内存所需至少4G 需要连接 互联网 使用 root 用户执行 首先关闭防火墙 systemctl stop firewalld setenforce 0 自动化部署 curl -sSL https://github.com/jumpserver/jumpserver/releases/download/v2.8.2/quick_start.sh | bash 使用方式
centos7.4安装jumpserver堡垒机
东城绝神
06-05 3148
centos7.4安装jumpserver堡垒机 一、修改字符集 [root@iZbp150ikdomqe3b32qaubZ ~]# localedef -c -f UTF-8 -i zh_CN zh_CN.UTF-8 [root@iZbp150ikdomqe3b32qaubZ ~]# export LC_ALL=zh_CN.UTF-8 [root@iZbp150ikdomqe3b32qaubZ...
linux7安装堡垒机,centos7 安装跳板机(堡垒机)
weixin_29669899的博客
05-16 420
标签:CentOS7安装开源跳板机jumpserver(堡垒机)开源跳板机(堡垒机):认证,授权,审计,自动化运维(Open source springboard machine ( fortress machine ): Authentication, authorization, audit, automated operation and maintenance).http://www.ju...
centos7安装jumpserver
12-12
以下是在CentOS 7上安装Jumpserver的步骤: 1. 安装依赖软件包 ```shell yum install -y epel-release yum install -y wget unzip lrzsz yum install -y gcc openssl-devel bzip2-devel libffi-devel ``` 2. 安装...

“相关推荐”对你有帮助么?

  • 非常没帮助
  • 没帮助
  • 一般
  • 有帮助
  • 非常有帮助
提交
评论 2
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值