【笔记】JumpServer学习笔记

发表于 更新于 阅读次数:

前言

JumpServer 是一个开源的特权访问管理 (PAM) 平台,提供 DevOps 和 IT 团队按需安全访问 SSH、RDP、Kubernetes、数据库和 RemoteApp 端点的功能,均可通过网页浏览器进行访问。(Github

安装

1
2
3
tar -zxvf jumpserver-ce-v4.10.16-x86_64.tar.gz
cd jumpserver-ce-v4.10.16-x86_64
./jmsctl.sh install
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100


       ██╗██╗   ██╗███╗   ███╗██████╗ ███████╗███████╗██████╗ ██╗   ██╗███████╗██████╗
       ██║██║   ██║████╗ ████║██╔══██╗██╔════╝██╔════╝██╔══██╗██║   ██║██╔════╝██╔══██╗
       ██║██║   ██║██╔████╔██║██████╔╝███████╗█████╗  ██████╔╝██║   ██║█████╗  ██████╔╝
  ██   ██║██║   ██║██║╚██╔╝██║██╔═══╝ ╚════██║██╔══╝  ██╔══██╗╚██╗ ██╔╝██╔══╝  ██╔══██╗
  ╚█████╔╝╚██████╔╝██║ ╚═╝ ██║██║     ███████║███████╗██║  ██║ ╚████╔╝ ███████╗██║  ██║
   ╚════╝  ╚═════╝ ╚═╝     ╚═╝╚═╝     ╚══════╝╚══════╝╚═╝  ╚═╝  ╚═══╝  ╚══════╝╚═╝  ╚═╝

                                                                   Version:  v4.10.16-ce  

1. Check Configuration File
Path to Configuration file: /opt/jumpserver/config
/opt/jumpserver/config/config.txt        [ √ ]
/opt/jumpserver/config/loki/loki.yaml    [ √ ]
/opt/jumpserver/config/loki/promtail.yml         [ √ ]
/opt/jumpserver/config/mariadb/mariadb.cnf       [ √ ]
/opt/jumpserver/config/mysql/my.cnf      [ √ ]
/opt/jumpserver/config/nginx/lb_http_server.conf         [ √ ]
/opt/jumpserver/config/redis/redis.conf          [ √ ]
/opt/jumpserver/config/nginx/cert/server.crt     [ √ ]
/opt/jumpserver/config/nginx/cert/server.key     [ √ ]

>>> Install and Configure Docker
1. Install Docker
complete

2. Configure Docker
complete

3. Start Docker
complete

>>> Loading Docker Image
redis:7.4.6-bookworm <= images/redis:7.4.6-bookworm.zst
Loaded image: redis:7.4.6-bookworm
postgres:16.10-bookworm <= images/postgres:16.10-bookworm.zst
Loaded image: postgres:16.10-bookworm
jumpserver/core:v4.10.16-ce <= images/core:v4.10.16-ce.zst
Loaded image: jumpserver/core:v4.10.16-ce
jumpserver/koko:v4.10.16-ce <= images/koko:v4.10.16-ce.zst
Loaded image: jumpserver/koko:v4.10.16-ce
jumpserver/lion:v4.10.16-ce <= images/lion:v4.10.16-ce.zst
Loaded image: jumpserver/lion:v4.10.16-ce
jumpserver/chen:v4.10.16-ce <= images/chen:v4.10.16-ce.zst
Loaded image: jumpserver/chen:v4.10.16-ce
jumpserver/web:v4.10.16-ce <= images/web:v4.10.16-ce.zst
Loaded image: jumpserver/web:v4.10.16-ce
complete

>>> Install and Configure JumpServer
1. Configure Private Key
SECRETE_KEY:     xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
BOOTSTRAP_TOKEN: xxxxxxxxxxxxxxxxxxxxxxxx
complete

2. Configure Persistent Directory
Do you need custom persistent store, will use the default directory /data/jumpserver? [y/N]: 
complete

3. Configure DB
Do you want to use external PostgreSQL (version ≥ 16 required)? [y/N]: 
complete

4. Configure Redis
Please enter Redis Engine [redis/sentinel] (default: redis): 
Do you want to use external Redis? [y/N]: 
complete

5. Configure External Access
Do you need to customize the JumpServer external port? [y/N]: 
complete

7. Configure Others
Please enter language [zh/en/ja/es/ko/ru/vi] (default: zh): 
Please enter timezone [default: Asia/Shanghai] : 
complete

6. Init JumpServer Database
complete

>>> The Installation is Complete
1. You can use the following command to start, and then visit
cd /root/jumpserver-ce-v4.10.16-x86_64
./jmsctl.sh start

2. Other management commands
./jmsctl.sh stop
./jmsctl.sh restart
./jmsctl.sh backup
./jmsctl.sh upgrade
For more commands, you can enter ./jmsctl.sh --help to understand

3. Web access
http://127.0.0.1:80
Default username: admin  Default password: ChangeMe

 More information
Official Website: https://www.jumpserver.com/
Documentation: https://www.jumpserver.com/docs

启动

1
./jmsctl.sh start

首次登录

用户名:admin
密码:ChangeMe

  • 确认

  • 输入新密码确认密码->提交

  • 确认

再次登陆

  • 勾选我同意->提交

完成

  • 截图纪念