1. Jumpserver简介
在日常运维工作中,服务器授权是一项很重要的任务,当服务器有了一定的规模之后,服务器的授权管理更应该使用工具来完成,jumpserver是一款由python编写的开源跳板机(堡垒机)系统,基于ssh协议来管理,客户端无需安装agent,jumpserver实现了跳板机应有的功能:完全开源,GPL授权、python编写,容易再次开发、实现了跳板机基本功能,认证,授权,审计、集成ansible、批量命令等、支持WebTerminal、Bootstrap编写,界面美观、录像回放、命令搜索、实时监控、批量上传下载等功能。
2. 使用docker-compose启动jumpserver
2.1 compose.yml文件
[root@linux-node1 /srv/jumpserver]# cat compose.yml version: '2' services: redis: image: redis:latest container_name: redis restart: always jumpserver: image: jumpserver/jumpserver:v0.4.0-beta1 container_name: jumpserver restart: always ports: - 8080:8080 depends_on: - redis coco: image: jumpserver/coco:v0.4.0-beta1 container_name: coco restart: always ports: - 2222:2222 depends_on: - jumpserver luna: image: jumpserver/luna:v0.4.0-beta1 container_name: luna restart: always ports: - 5000:5000 depends_on: - jumpserver
2.2 使用docker部署jumpserver
[root@linux-node1 /srv/jumpserver]# ls compose.yml run [root@linux-node1 /srv/jumpserver]# ./run up [root@linux-node1 /srv/jumpserver]# docker ps CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES ff08a56c866f jumpserver/coco:v0.4.0-beta1 "/bin/sh -c 'python r" 51 seconds ago Up 33 seconds 0.0.0.0:2222->2222/tcp coco 31aa2fae9693 jumpserver/luna:v0.4.0-beta1 "/bin/sh -c 'python r" 51 seconds ago Up 34 seconds 0.0.0.0:5000->5000/tcp luna 0299ec13933e jumpserver/jumpserver:v0.4.0-beta1 "/bin/sh -c 'cd utils" 53 seconds ago Up 51 seconds 0.0.0.0:8080->8080/tcp jumpserver cf7511f30b83 redis:latest "docker-entrypoint.sh" 54 seconds ago Up 53 seconds 6379/tcp redis
3. 登陆jumpserver
初始密码:admin/admin,愉快的玩耍吧!
不好使呀
@vike 可以关注下,生产上用估计得二次开发吧,感觉还是VPN+统一认证+中控机好使