jumpserver安裝(一)

jumpserver介紹

網(wǎng)站建設(shè)哪家好,找創(chuàng)新互聯(lián)!專注于網(wǎng)頁設(shè)計、網(wǎng)站建設(shè)、微信開發(fā)、重慶小程序開發(fā)、集團企業(yè)網(wǎng)站建設(shè)等服務(wù)項目。為回饋新老客戶創(chuàng)新互聯(lián)還提供了龍華免費建站歡迎大家使用!

  • 是一款由python編寫開源的跳板機(堡壘機)系統(tǒng),實現(xiàn)了跳板機應(yīng)有的功能?;趕sh協(xié)議來管理,客戶端無需安裝agent。 特點: 完全開源,GPL授權(quán) Python編寫,容易再次開發(fā) 實現(xiàn)了跳板機基本功能,認證、授權(quán)、審計 集成了Ansible

  • 可以通過堡壘機管理百萬臺機器

  • 有效的記錄運維人員的操作記錄

官方資料:
https://github.com/jumpserver/jumpserver 

http://www.jumpserver.org/

搭建jumpserver跳板機/堡壘機:

全新安裝的 Centos7 系統(tǒng)

保持服務(wù)器網(wǎng)絡(luò)暢通

1.?防火墻?Selinux?設(shè)置?
echo?-e?"\033[31m?1.?防火墻?Selinux?設(shè)置?\033[0m"?\
??&&?if?[?"$(systemctl?status?firewalld?|?grep?running)"?!=?""?];?then?firewall-cmd?--zone=public?--add-port=80/tcp?--permanent;?firewall-cmd?--zone=public?--add-port=2222/tcp?--permanent;?firewall-cmd?--permanent?--add-rich-rule="rule?family="ipv4"?source?address="172.17.0.0/16"?port?protocol="tcp"?port="8080"?accept";?firewall-cmd?--reload;?fi?\
??&&?if?[?"$(getenforce)"?!=?"Disabled"?];?then?setsebool?-P?httpd_can_network_connect?1;?fi
2.?部署環(huán)境
?echo?-e?"\033[31m?2.?部署環(huán)境?\033[0m"?\
??&&?yum?update?-y?\
??&&?ln?-sf?/usr/share/zoneinfo/Asia/Shanghai?/etc/localtime?\
??&&?yum?-y?install?kde-l10n-Chinese?\
??&&?localedef?-c?-f?UTF-8?-i?zh_CN?zh_CN.UTF-8?\
??&&?export?LC_ALL=zh_CN.UTF-8?\
??&&?echo?'LANG="zh_CN.UTF-8"'?>?/etc/locale.conf?\
??&&?yum?-y?install?wget?gcc?epel-release?git?\
??&&?yum?install?-y?yum-utils?device-mapper-persistent-data?lvm2?\
??&&?yum-config-manager?--add-repo?http://mirrors.aliyun.com/docker-ce/linux/centos/docker-ce.repo?\
??&&?yum?makecache?fast?\
??&&?rpm?--import?https://mirrors.aliyun.com/docker-ce/linux/centos/gpg?\
??&&?echo?-e?"[nginx-stable]\nname=nginx?stable?repo\nbaseurl=http://nginx.org/packages/centos/\$releasever/\$basearch/\ngpgcheck=1\nenabled=1\ngpgkey=https://nginx.org/keys/nginx_signing.key"?>?/etc/yum.repos.d/nginx.repo?\
??&&?rpm?--import?https://nginx.org/keys/nginx_signing.key?\
??&&?yum?-y?install?redis?mariadb?mariadb-devel?mariadb-server?MariaDB-shared?nginx?docker-ce?\
??&&?systemctl?enable?redis?mariadb?nginx?docker?\
??&&?systemctl?start?redis?mariadb?\
??&&?yum?-y?install?python36?python36-devel?\
??&&?python3.6?-m?venv?/opt/py3
3.?下載組件
echo?-e?"\033[31m?3.?下載組件?\033[0m"?\
??&&?cd?/opt?\
??&&?if?[?!?-d?"/opt/jumpserver"?];?then?git?clone?--depth=1?https://github.com/jumpserver/jumpserver.git;?fi?\
??&&?if?[?!?-f?"/opt/luna.tar.gz"?];?then?wget?https://demo.jumpserver.org/download/luna/1.5.2/luna.tar.gz;?tar?xf?luna.tar.gz;?chown?-R?root:root?luna;?fi?\
??&&?yum?-y?install?$(cat?/opt/jumpserver/requirements/rpm_requirements.txt)?\
??&&?echo?-e?"[easy_install]\nindex_url?=?https://mirrors.aliyun.com/pypi/simple/"?>?~/.pydistutils.cfg?\
??&&?source?/opt/py3/bin/activate?\
??&&?pip?install?--upgrade?pip?setuptools?-i?https://mirrors.aliyun.com/pypi/simple/?\
??&&?pip?install?-r?/opt/jumpserver/requirements/requirements.txt?-i?https://mirrors.aliyun.com/pypi/simple/?\
??&&?curl?-sSL?https://get.daocloud.io/daotools/set_mirror.sh?|?sh?-s?http://f1361db2.m.daocloud.io?\
??&&?systemctl?restart?docker?\
??&&?docker?pull?jumpserver/jms_koko:1.5.2?\
??&&?docker?pull?jumpserver/jms_guacamole:1.5.2?\
??&&?rm?-rf?/etc/nginx/conf.d/default.conf?\
??&&?wget?-O?/etc/nginx/conf.d/jumpserver.conf?https://demo.jumpserver.org/download/nginx/conf.d/jumpserver.conf
4.?處理配置文件
?echo?-e?"\033[31m?4.?處理配置文件?\033[0m"?\
??&&?source?~/.bashrc?\
??&&?if?[?"$DB_PASSWORD"?=?""?];?then?DB_PASSWORD=`cat?/dev/urandom?|?tr?-dc?A-Za-z0-9?|?head?-c?24`;?fi?\
??&&?if?[?"$SECRET_KEY"?=?""?];?then?SECRET_KEY=`cat?/dev/urandom?|?tr?-dc?A-Za-z0-9?|?head?-c?50`;?echo?"SECRET_KEY=$SECRET_KEY"?>>?~/.bashrc;?fi?\
??&&?if?[?"$BOOTSTRAP_TOKEN"?=?""?];?then?BOOTSTRAP_TOKEN=`cat?/dev/urandom?|?tr?-dc?A-Za-z0-9?|?head?-c?16`;?echo?"BOOTSTRAP_TOKEN=$BOOTSTRAP_TOKEN"?>>?~/.bashrc;?fi?\
??&&?if?[?"$Server_IP"?=?""?];?then?Server_IP=`ip?addr?|?grep?inet?|?egrep?-v?'(127.0.0.1|inet6|docker)'?|?awk?'{print?$2}'?|?tr?-d?"addr:"?|?head?-n?1?|?cut?-d?/?-f1`;?fi?\
??&&?if?[?!?-d?"/var/lib/MySQL/jumpserver"?];?then?mysql?-uroot?-e?"create?database?jumpserver?default?charset?'utf8';grant?all?on?jumpserver.*?to?'jumpserver'@'127.0.0.1'?identified?by?'$DB_PASSWORD';flush?privileges;";?fi?\
??&&?if?[?!?-f?"/opt/jumpserver/config.yml"?];?then?cp?/opt/jumpserver/config_example.yml?/opt/jumpserver/config.yml;?sed?-i?"s/SECRET_KEY:/SECRET_KEY:?$SECRET_KEY/g"??\
??/opt/jumpserver/config.yml;?sed?-i?"s/BOOTSTRAP_TOKEN:/BOOTSTRAP_TOKEN:?$BOOTSTRAP_TOKEN/g"?/opt/jumpserver/config.yml;?sed?-i?"s/#?DEBUG:?true/DEBUG:?false/g"?/opt/jumpserver/config.yml;?sed?-i?"s/#?LOG_LEVEL:?DEBUG/LOG_LEVEL:?ERROR/g"?/opt/jumpserver/config.yml;?sed?-i?"s/#?SESSION_EXPIRE_AT_BROWSER_CLOSE:?false/SESSION_EXPIRE_AT_BROWSER_CLOSE:?true/g"?/opt/jumpserver/config.yml;?sed?-i?"s/DB_PASSWORD:?/DB_PASSWORD:?$DB_PASSWORD/g"?/opt/jumpserver/config.yml;?fi
5.?啟動?Jumpserver
echo?-e?"\033[31m?5.?啟動?Jumpserver?\033[0m"?\
??&&?systemctl?start?nginx?\
??&&?cd?/opt/jumpserver?\
??&&?./jms?start?-d?\
??&&?docker?run?--name?jms_koko?-d?-p?2222:2222?-p?127.0.0.1:5000:5000?-e?CORE_HOST=http://$Server_IP:8080?-e?BOOTSTRAP_TOKEN=$BOOTSTRAP_TOKEN?--restart=always?jumpserver/jms_koko:1.5.2?\
??&&?docker?run?--name?jms_guacamole?-d?-p?127.0.0.1:8081:8081?-e?JUMPSERVER_SERVER=http://$Server_IP:8080?-e?BOOTSTRAP_TOKEN=$BOOTSTRAP_TOKEN?--restart=always?jumpserver/jms_guacamole:1.5.2?\
??&&?echo?-e?"\033[31m?你的數(shù)據(jù)庫密碼是?$DB_PASSWORD?\033[0m"?\
??&&?echo?-e?"\033[31m?你的SECRET_KEY是?$SECRET_KEY?\033[0m"?\
??&&?echo?-e?"\033[31m?你的BOOTSTRAP_TOKEN是?$BOOTSTRAP_TOKEN?\033[0m"?\
??&&?echo?-e?"\033[31m?你的服務(wù)器IP是?$Server_IP?\033[0m"?\
??&&?echo?-e?"\033[31m?請打開瀏覽器訪問?http://$Server_IP?用戶名:admin?密碼:admin?\033[0m"
6.?配置自啟?
?echo?-e?"\033[31m?6.?配置自啟?\033[0m"?\
??&&?if?[?!?-f?"/usr/lib/systemd/system/jms.service"?];?then?wget?-O?/usr/lib/systemd/system/jms.service?https://demo.jumpserver.org/download/shell/centos/jms.service;?chmod?755?/usr/lib/systemd/system/jms.service;?systemctl?enable?jms;?fi

到此安裝結(jié)束.如圖所示,訪問測試

jumpserver安裝(一)

jumpserver安裝(一)

分享文章:jumpserver安裝(一)
當前鏈接:http://bm7419.com/article48/igcshp.html

成都網(wǎng)站建設(shè)公司_創(chuàng)新互聯(lián),為您提供品牌網(wǎng)站建設(shè)商城網(wǎng)站、企業(yè)建站、網(wǎng)站營銷、外貿(mào)網(wǎng)站建設(shè)

廣告

聲明:本網(wǎng)站發(fā)布的內(nèi)容(圖片、視頻和文字)以用戶投稿、用戶轉(zhuǎn)載內(nèi)容為主,如果涉及侵權(quán)請盡快告知,我們將會在第一時間刪除。文章觀點不代表本網(wǎng)站立場,如需處理請聯(lián)系客服。電話:028-86922220;郵箱:631063699@qq.com。內(nèi)容未經(jīng)允許不得轉(zhuǎn)載,或轉(zhuǎn)載時需注明來源: 創(chuàng)新互聯(lián)

商城網(wǎng)站建設(shè)