前言
前几天接触jumpserver 把安装的过程写下来供自己学习!!!有用请拿走。不喜请勿喷,谢谢!!!
环境:Centos 7 docker
一、下Jumpserver 社区版和docker 部署所需的mysql 和redis
1、官网免费下载:https://community.fit2cloud.com/#/products/jumpserver/downloads
docker 拉取所需mysql和redis镜像:
[root@localhost ~]# docker pull mysql:5.7.27
[root@localhost ~]# docker pull redis:5.0.9
3、分别启动镜像并创建好数据库并设置端口和密码:
启动mysql 镜像:
docker run -d -p 3307:3306 --name mysql-jumpserver -v /opt/mysql/data:/var/lib/mysql -v /opt/mysql/logs:/var/log/mysql -v /opt/mysql/conf:/etc/mysql/mysql.conf.d -e MYSQL_ROOT_PASSWORD=abc123 -e MYSQL_DATAbase=jumpserver -e MYSQL_USER=jumpserver -e MYSQL_PASSWORD=jumpserver --restart=always --privileged=true mysql:5.7.27 --character-set-server=utf8 --collation-server=utf8_bin
启动redis镜像并设好端口和密码:
docker run -d -it --name redis-jumpserver --hostname -p 6379:6379 -v /opt/redis/data:/data --restart=always --privileged=true --sysctl net.core.somaxconn=1024 redis:5.0.9 --requirepass 123456
二、安装jumpserver程序
- 先生成SECRET_KEY 和 BOOTSTRAP_TOKEN 用如下两个命令:
if [ ! "$SECRET_KEY" ]; then SECRET_KEY=`cat /dev/urandom | tr -dc A-Za-z0-9 | head -c 50`; echo "SECRET_KEY=$SECRET_KEY" >> ~/.bashrc; echo $SECRET_KEY; else echo $SECRET_KEY; fi if [ "$BOOTSTRAP_TOKEN" = "" ]; then BOOTSTRAP_TOKEN=`cat /dev/urandom | tr -dc A-Za-z0-9 | head -c 16`; echo "BOOTSTRAP_TOKEN=$BOOTSTRAP_TOKEN" >> ~/.bashrc; echo $BOOTSTRAP_TOKEN; else echo $BOOTSTRAP_TOKEN; fi
2.配置jumpserver config文件
1。上传你下载的jumpserver 并解压:
[root@localhost u01]# tar -zxvf jumpserver-offline-installer-v2.16.3-amd64-54.tar.gz
2。然后编辑你的config-example.txt
## 安装配置, 可以使用华为云加速下载, arm64 用户需要注释掉 DOCKER_IMAGE_PREFIX # DOCKER_IMAGE_PREFIX=swr.cn-south-1.myhuaweicloud.com VOLUME_DIR=/opt/jumpserver DOCKER_DIR=/var/lib/docker SECRET_KEY=GpQRludnB7zl8p9D00PdDm43oE2l3LTXfmhhMnTJI7UWi34e9U ##改成你自己上面生成的 BOOTSTRAP_TOKEN=NIgOPpSomG82rqAT ##改成你自己上面生成的 LOG_LEVEL=ERROR ## MySQL 配置, USE_EXTERNAL_MYSQL=1 表示使用外置 MySQL, 请输入正确的 MySQL 信息 USE_EXTERNAL_MYSQL=1 DB_HOST=192.168.110.70 ##以下改成你自己服务器上面生成的 Mysql 信息 DB_PORT=3307 DB_USER=jumpserver DB_PASSWORD=jumpserver DB_NAME=jumpserver ## Redis 配置, USE_EXTERNAL_REDIS=1 表示使用外置 Redis, 请输入正确的 Redis 信息 USE_EXTERNAL_REDIS=1 REDIS_HOST=192.168.110.70 REDIS_PORT=6379 REDIS_PASSWORD=123456 ## Nginx 配置, USE_LB=1 表示开启, 为 0 的情况下, HTTPS_PORT 定义不生效 HTTP_PORT=8888 ## 端口你也可以自己定义 SSH_PORT=2222 RDP_PORT=3389
3.修改后进行安装可以参考官方安装文档
[root@localhost jumpserver-offline-installer-v2.16.3-amd64-54]# ./jmsctl.sh install
4.启动jumpserver服务
[root@localhost jumpserver-offline-installer-v2.16.3-amd64-54]# ./jmsctl.sh start
Creating jms_core ... done
ERROR: for lion Container "e9e4eb83f8fb" is unhealthy.
ERROR: for koko Container "e9e4eb83f8fb" is unhealthy.
ERROR: for celery Container "e9e4eb83f8fb" is unhealthy.
ERROR: for web Container "e9e4eb83f8fb" is unhealthy.
ERROR: Encountered errors while bringing up the project.
启动中会报错 不用管。这是一个坑!!!!
再运行一次./jmsctl.sh start 就可以了
[root@localhost jumpserver-offline-installer-v2.16.3-amd64-54]# ./jmsctl.sh start
jms_core is up-to-date
Creating jms_web ... done
Creating jms_koko ... done
Creating jms_lion ... done
Creating jms_celery ... done
[root@localhost jumpserver-offline-installer-v2.16.3-amd64-54]#
5、测试
登录:http://192.168.110.70:8888
用户名密码:admin / admin
