0
点赞
收藏
分享

微信扫一扫

Jumpserver 堡垒机安装

zhoulujun 2022-10-09 阅读 82
一、jumpserver一键部署方式:

1、默认会安装到 /opt/jumpserver-installer-v2.13.2 目录

curl -sSL ​​https://github.com/jumpserver/jumpserver/releases/download/v2.15.4/quick_start.sh​​​ | bash
curl -sSL ​​​https://github.com/jumpserver/jumpserver/releases/download/v2.13.2/quick_start.sh​​ | bash cd /opt/jumpserver-installer-v2.13.2

2、安装完成后配置文件

cat /opt/jumpserver/config/config.txt

cd /opt/jumpserver-installer-v2.13.2

启动 ./jmsctl.sh start
停止 ./jmsctl.sh down
卸载 ./jmsctl.sh uninstall
帮助 ./jmsctl.sh -h


二、docker部署jumpserver

启动mysql

docker run -d --name mysql --restart=always -e MYSQL_ROOT_PASSWORD=123123 -p 3306:3306 -v /data/mysql/data:/var/lib/mysql mysql:5.7 --character-set-server=utf8mb4 --collation-server=utf8mb4_unicode_ci

mysqladmin -u root -p password  123123...
mysql -u root -p 123123

创建jumpserver数据库

create database jumpserver default charset 'utf8mb4';
grant all on jumpserver.* to 'jumpserver'@'%' identified by '123123...';
flush privileges;

启动redis

docker run -d -it --name redis -p 6379:6379 -v /data/redis/data:/data --restart=always  --sysctl net.core.somaxconn=1024  redis:5.0.10 --requirepass "123456"
--requirepass "123456" 授权密码

————————————————————————————————

Jumpserver 生成随机加密密钥

if [ "$SECRET_KEY" = "" ]; then SECRET_KEY=​​cat /dev/urandom | tr -dc A-Za-z0-9 | head -c 50​​; echo "SECRET_KEY=$SECRET_KEY" >> ~/.bashrc; echo $SECRET_KEY; else echo $SECRET_KEY; fi

if [ "$BOOTSTRAP_TOKEN" = "" ]; then BOOTSTRAP_TOKEN=​​cat /dev/urandom | tr -dc A-Za-z0-9 | head -c 16​​; echo "BOOTSTRAP_TOKEN=$BOOTSTRAP_TOKEN" >> ~/.bashrc; echo $BOOTSTRAP_TOKEN; else echo $BOOTSTRAP_TOKEN; fi

启动jumpserver

docker run -d --name jumpserver -h jumpserver --restart=always  \
-v /data/jumpserver:/opt/jumpserver/data/media \
-p 80:80 \
-p 2222:2222 \
-e SECRET_KEY=$SECRET_KEY \
-e BOOTSTRAP_TOKEN=$BOOTSTRAP_TOKEN \
-e DB_HOST=连接数据库地址\
-e DB_PORT=3306 \
-e DB_USER=jumpserver \
-e DB_PASSWORD="连接数据库密码" \
-e DB_NAME=jumpserver \
-e REDIS_HOST=连接数据库地址 \
-e REDIS_PORT=6379 \
-e REDIS_PASSWORD="123456" \
jumpserver/jms_all

-h 指定docker主机名 -e 指定环境变量,注意修改mysql和redis的ip地址和密码

查看jumpserver启动日志

docker logs -f jumpserver

Applying notifications.0002_auto_20210909_1946...
Init user message subscription: 1
OK
Applying ops.0020_adhoc_run_system_user... OK
Applying perms.0019_auto_20210906_1044... OK
Applying perms.0020_auto_20210910_1103... OK
Applying sessions.0001_initial... OK
Applying settings.0002_auto_20210729_1546... OK
Applying settings.0003_auto_20210901_1035... OK
Applying terminal.0032_auto_20210302_1853... OK
Applying terminal.0033_auto_20210324_1008... OK
Applying terminal.0034_auto_20210406_1434... OK
Applying terminal.0035_auto_20210517_1448... OK
Applying terminal.0036_auto_20210604_1124... OK
Applying terminal.0037_auto_20210623_1748... OK
Applying terminal.0038_task_kwargs... OK
Applying terminal.0039_auto_20210805_1552... OK
Applying terminal.0040_sessionjoinrecord_sessionsharing... OK
Applying tickets.0008_auto_20210311_1113... OK
Applying tickets.0009_auto_20210426_1720... OK
Applying tickets.0010_auto_20210812_1618... OK
Starting supervisor: supervisord.
Jumpserver ALL v2.14.0
官网 ​​http://www.jumpserver.org​

原文链接:​​https://blog.csdn.net/nanhavezhi/article/details/111560718​​

举报

相关推荐

0 条评论