cd /opt yum -y install wget wget https://github.com/jumpserver/installer/releases/download/v2.7.1/jumpserver-installer-v2.7.1.tar.gz tar -xf jumpserver-installer-v2.7.1.tar.gz cd jumpserver-installer-v2.7.1 cat config-example.txt
# 以下设置默认情况下不需要修改 # 说明 #### 这是项目总的配置文件, 会作为环境变量加载到各个容器中 #### 格式必须是 KEY=VALUE 不能有空格等 # Compose项目设置 COMPOSE_PROJECT_NAME=jms COMPOSE_HTTP_TIMEOUT=3600 DOCKER_CLIENT_TIMEOUT=3600 DOCKER_SUBNET=192.168.250.0/24 ## IPV6 DOCKER_SUBNET_IPV6=2001:db8:10::/64 USE_IPV6=0 ### 持久化目录, 安装启动后不能再修改, 除非移动原来的持久化到新的位置 VOLUME_DIR=/opt/jumpserver ## 是否使用外部MYSQL和REDIS USE_EXTERNAL_MYSQL=0 USE_EXTERNAL_REDIS=0 ## Nginx 配置,这个Nginx是用来分发路径到不同的服务 HTTP_PORT=80 HTTPS_PORT=443 SSH_PORT=2222 ## LB 配置, 这个Nginx是HA时可以启动负载均衡到不同的主机 USE_LB=0 LB_HTTP_PORT=80 LB_HTTPS_PORT=443 LB_SSH_PORT=2223 ## Task 配置 USE_TASK=1 ## XPack USE_XPACK=0 # Koko配置 CORE_HOST=http://core:8080 ENABLE_PROXY_PROTOCOL=true # Core 配置 ### 启动后不能再修改,否则密码等等信息无法解密 SECRET_KEY= BOOTSTRAP_TOKEN= LOG_LEVEL=INFO # SESSION_COOKIE_AGE=86400 # SESSION_EXPIRE_AT_BROWSER_CLOSE=false ## MySQL数据库配置 DB_ENGINE=mysql DB_HOST=mysql DB_PORT=3306 DB_USER=root DB_PASSWORD= DB_NAME=jumpserver ## Redis配置 REDIS_HOST=redis REDIS_PORT=6379 REDIS_PASSWORD= ### Keycloak 配置方式 ### AUTH_OPENID=true ### BASE_SITE_URL=https://jumpserver.company.com/ ### AUTH_OPENID_SERVER_URL=https://keycloak.company.com/auth ### AUTH_OPENID_REALM_NAME=cmp ### AUTH_OPENID_CLIENT_ID=jumpserver ### AUTH_OPENID_CLIENT_SECRET= ### AUTH_OPENID_SHARE_SESSION=true ### AUTH_OPENID_IGNORE_SSL_VERIFICATION=true # Guacamole 配置 JUMPSERVER_SERVER=http://core:8080 JUMPSERVER_KEY_DIR=/config/guacamole/data/key/ JUMPSERVER_RECORD_PATH=/config/guacamole/data/record/ JUMPSERVER_DRIVE_PATH=/config/guacamole/data/drive/ JUMPSERVER_ENABLE_DRIVE=true JUMPSERVER_CLEAR_DRIVE_SESSION=true JUMPSERVER_CLEAR_DRIVE_SCHEDULE=24 # MySQL 容器配置 MYSQL_ROOT_PASSWORD= MYSQL_DATABASE=jumpserver
./jmsctl.sh install
>>> 安装完成了 1. 可以使用如下命令启动, 然后访问 ./jmsctl.sh start 2. 其它一些管理命令 ./jmsctl.sh stop ./jmsctl.sh restart ./jmsctl.sh backup ./jmsctl.sh upgrade 更多还有一些命令, 你可以 ./jmsctl.sh --help 来了解 3. Web 访问 http://192.168.1.1:8080 https://192.168.1.1:8443 默认用户: admin 默认密码: admin 4. SSH/SFTP 访问 ssh admin@192.168.1.1 -p2222 sftp -P2222 admin@192.168.1.1
[root@jumpserver6prodeCuPq0HT jumpserver-installer-v2.7.1]# ./jmsctl.sh start Creating network "jms_net" with driver "bridge" Creating jms_redis ... done Creating jms_mysql ... done Creating jms_core ... done Creating jms_luna ... done Creating jms_guacamole ... done Creating jms_koko ... done Creating jms_celery ... done Creating jms_lina ... done Creating jms_nginx ... done
官网: https://www.jumpserver.org/ 文档: https://docs.jumpserver.org/ 安装视频:https://www.bilibili.com/video/BV19a4y1i7i9?p=11 急速部署:https://jumpserver.readthedocs.io/zh/master/install/setup_by_fast/
原文:https://www.cnblogs.com/yunqingtuo/p/14538841.html