Machine Management fortress built jumperserver million servers -2
1 Jumpserver fortress machine overview - operating environment deployment Jumpserver
Coco mounting assembly 2
3 Installation Web-Terminal -Luna distal assembly - Integration of the components arranged Nginx
4 jumpserver platform system initialization
5 combat: manage tens of thousands of servers using jumpserver
Deployment Readiness:
| No. | server name | IP | Character |
| 1 | k5 | 10.27.17.62 | jumbserver 、redis、mariadb、koko、Web Terminal |
| 2 |
4.1 jumpserver platform system initialization
4.2 Configuring outgoing mail server
After successful, you need to click "submit"
Note: After configuration, you need to restart the service. Otherwise, the latter creating a user, receive mail.
(py3) [root@k5 jumpserver]# /opt/jumpserver/jms stop all -d
(py3) [root@k5 jumpserver]# /opt/jumpserver/jms start all -d
Update set successfully, manually restart the program
If you do not open their own mailbox to open smtp and pop3 services need to open it yourself
Open POP3 / SMTP / IMAP services:
4.5 Use jumpserver manage tens of thousands of game servers king of glory
4.5.1 User Management
1 , add a user group.
The user name that is Jumpserver login account. User groups are authorized for assets, when an asset to authorize a group of users, this user group following all users can use the assets of. Roles are used to distinguish one user is an administrator or an ordinary user.
Click User Management -> View User Groups -> Add User Group
2 , adding users
Click User Management -> User List -> Create a user
Among them, the name is real name, user name that is Jumpserver login account.
After successful submission of user information, Jumpserver sends a set up " user password " message to the user to fill in your mailbox.
Setting up ssh keys, users generate their own SSH keys, to facilitate post Login: I own another linux on the use of hss users to generate their own ssh keys.
(py3) [root@k5 nginx]# useradd hss123
(py3) [root@k5 nginx]# echo 123456|passwd --stdin hss123
Hss123 change the user's password.
passwd: all authentication tokens have been successfully updated.
(py3) [root@k5 nginx]# su - hss123
Attempting to create directory /home/hss123/perl5
[hss123@k5 ~]$ ssh-keygen
Generating public/private rsa key pair.
Enter file in which to save the key (/home/hss123/.ssh/id_rsa):
Created directory '/home/hss123/.ssh'.
Enter passphrase (empty for no passphrase):
Enter same passphrase again:
Your identification has been saved in /home/hss123/.ssh/id_rsa.
Your public key has been saved in /home/hss123/.ssh/id_rsa.pub.
The key fingerprint is:
SHA256:kma1W3qKlbAOTiKAI0WektjJennKfg9T3K7cTzHcC5M hss123@k5
The key's randomart image is:
+ --- [RS 2048] ---- +
| . |
|. * O |
|+ B . |
|. +. . + Oo |
| * O. OSE. |
| O + o + = = =. |
|. = +. * The . |
| the * + = +. |
| .... * o .. |
+----[SHA256]-----+
[hss123@k5 ~]$
[hss123@k5 ~]$ cat ~/.ssh/id_rsa.pub
ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQC5J9+wH2j1Pr0zTGCTiSM3ny8lfBE+CIeD1XfdD1RSQlhribNV4Fs0/fftEol0RV25wFCPtiVjlJ3cKwr8UmYBRCH9Shhq2RtJabyeDvXwCREHHjg8rPA24+FC2jwxQlHby1q8RNV2S8i+dK9ss+nvaFvCjU0Jc6Z1QtjB01ypTiY7pPHJHscEf5KO8Gazh0SFtrXzJVPWatYO7OtjBdcYMU4WdHpi78TEJd1jRa+0ei1WYQiqR0NeqhO+5/z/lJiUo7zwaojoPyaIu3JSP5NBclHBLlHqBlb//QGvf+4mv+7/jkzO2bI5x+lNK/X8s41TdqMR+GR5v5glgYSnWAWf hss123@k5
