环境:centos 7 10.0.0.43 2核4G (中间因为网络原因 ,换成了 10.0.0.42的机器)
目录:/opt
数据库:mariadb
代理:nginx
1、防火墙与selinux设置说明:如果已经关闭了 防火墙 和 Selinux 的用户请跳过设置
systemctl start firewalld
###nginx的端口:
firewall-cmd --zone=public --add-port=80/tcp --permanent
###用户ssh登录端口 koko:
firewall-cmd --zone=public --add-port=2222/tcp --permanent
###重新载入规则:
firewall-cmd --reload
setenforce 0
sed -i "s/SELINUX=enforcing/SELINUX=disabled/g" /etc/selinux/config
2、安装依赖包:
yum -y install wget gcc epel-release git
3、安装redis 、jumpserver ,使用redis做cache和celery broke:
yum -y install redis
systemctl enable redis
systemctl start redis
4、安装mysql,如果不使用mysql,可以跳过mysql的安装和配置
#cat >/etc/yum.repos.d/mariadb.repo<<EOF
#[mariadb]
#name = MariaDB
#baseurl = http://yum.mariadb.org/10.3/centos7-amd64
#gpgkey=https://yum.mariadb.org/RPM-GPG-KEY-MariaDB
#gpgcheck=1
#EOF
#yum clear all
#yum makecache
yum -y install mariadb mariadb-devel mariadb-server MariaDB-shared
systemctl enable mariadb
systemctl start mariadb
5、创建数据库 jumpserver 并授权:
DB_PASSWORD=`cat /dev/urandom | tr -dc A-Za-z0-9 | head -c 24`
echo -e "\033[31m 你的数据库密码是 $DB_PASSWORD \033[0m"
mysql -uroot -e "create database jumpserver default charset 'utf8' collate 'utf8_bin';grant all on jumpserver.* to 'jumpserver'@'127.0.0.1' identified by '$DB_PASSWORD'; flush privileges;"
6、安装nginx 用于代理器整合jumpserver 的各个组件:
yum -y install nginx
systemctl enable nginx
7、安装python 3.6
yum -y install python36 python36-devel
8、配置并载入python3 虚拟环境:
cd /opt
python3.6 -m venv py3 (py3是虚拟环境名称 可以自己定义)
source /opt/py3/bin/activate
9、下载jumpserver:
cd /opt/
git clone --depth=1 https://github.com/jumpserver/jumpserver.git
10、安装rpm依赖包:
yum -y install $(cat /opt/jumpserver/requirements/rpm_requirements.txt)
11、安装python库依赖:
pip install wheel
pip install --upgrade pip setuptools
pip install -r /opt/jumpserver/requirements