centos7安裝jumpserver堡壘機無數問題詳解(交流帖)
阿新 • • 發佈:2018-12-10
準備材料:
ip:192.168.220.130
系統:centos7
參考文件:
找了個順眼的國產版
1.前兩次遇到問題的都是配置檔案寫錯了:
所以我想把配置檔案放這裡,如果不會的vi命令的,建議用xftp6直接換檔案
用到兩個py 配置檔案(根據具體的ip修改)
config.py
""" jumpserver.config ~~~~~~~~~~~~~~~~~ Jumpserver project setting file :copyright: (c) 2014-2017 by Jumpserver Team :license: GPL v2, see LICENSE for more details. """ import os BASE_DIR = os.path.dirname(os.path.abspath(__file__)) class Config: # Use it to encrypt or decrypt data # SECURITY WARNING: keep the secret key used in production secret! SECRET_KEY = os.environ.get('SECRET_KEY') or '2vym+ky!997d5kkcc64mnz06y1mmui3lut#(^wd=%s_qj$1%x' # Django security setting, if your disable debug model, you should setting that ALLOWED_HOSTS = ['*'] # Development env open this, when error occur display the full process track, Production disable it DEBUG = os.environ.get("DEBUG") or True # DEBUG, INFO, WARNING, ERROR, CRITICAL can set. See https://docs.djangoproject.com/en/1.10/topics/logging/ LOG_LEVEL = os.environ.get("LOG_LEVEL") or 'DEBUG' LOG_DIR = os.path.join(BASE_DIR, 'logs') # Database setting, Support sqlite3, mysql, postgres .... # See https://docs.djangoproject.com/en/1.10/ref/settings/#databases # SQLite setting: #DB_ENGINE = 'sqlite3' #DB_NAME = os.path.join(BASE_DIR, 'data', 'db.sqlite3') # MySQL or postgres setting like: DB_ENGINE = os.environ.get("DB_ENGINE") or 'mysql' DB_HOST = os.environ.get("DB_HOST") or '127.0.0.1' DB_PORT = os.environ.get("DB_PORT") or 3306 DB_USER = os.environ.get("DB_USER") or 'jumpserver' DB_PASSWORD = os.environ.get("DB_PASSWORD") or 'weakPassword' DB_NAME = os.environ.get("DB_NAME") or 'jumpserver' # When Django start it will bind this host and port # ./manage.py runserver 127.0.0.1:8080 HTTP_BIND_HOST = '0.0.0.0' HTTP_LISTEN_PORT = 8080 # Use Redis as broker for celery and web socket REDIS_HOST = os.environ.get("REDIS_HOST") or '127.0.0.1' REDIS_PORT = os.environ.get("REDIS_PORT") or 6379 REDIS_PASSWORD = os.environ.get("REDIS_PASSWORD") or '' REDIS_DB_CELERY = os.environ.get('REDIS_DB') or 3 REDIS_DB_CACHE = os.environ.get('REDIS_DB') or 4 def __init__(self): pass def __getattr__(self, item): return None class DevelopmentConfig(Config): pass class TestConfig(Config): pass class ProductionConfig(Config): pass # Default using Config settings, you can write if/else for different env config = DevelopmentConfig()
conf.py
#!/usr/bin/env python3 # -*- coding: utf-8 -*- # import os BASE_DIR = os.path.dirname(__file__) class Config: """ Coco config file, coco also load config from server update setting below """ # 專案名稱, 會用來向Jumpserver註冊, 識別而已, 不能重複 # NAME = "localhost" NAME = "coco" # Jumpserver專案的url, api請求註冊會使用 # CORE_HOST = os.environ.get("CORE_HOST") or 'http://127.0.0.1:8080' CORE_HOST = 'http://127.0.0.1:8080' # 啟動時繫結的ip, 預設 0.0.0.0 # BIND_HOST = '0.0.0.0' # 監聽的SSH埠號, 預設2222 # SSHD_PORT = 2222 # 監聽的HTTP/WS埠號,預設5000 # HTTPD_PORT = 5000 # 專案使用的ACCESS KEY, 預設會註冊,並儲存到 ACCESS_KEY_STORE中, # 如果有需求, 可以寫到配置檔案中, 格式 access_key_id:access_key_secret # ACCESS_KEY = None # ACCESS KEY 儲存的地址, 預設註冊後會儲存到該檔案中 # ACCESS_KEY_STORE = os.path.join(BASE_DIR, 'keys', '.access_key') # 加密金鑰 # SECRET_KEY = None # 設定日誌級別 ['DEBUG', 'INFO', 'WARN', 'ERROR', 'FATAL', 'CRITICAL'] # LOG_LEVEL = 'INFO' LOG_LEVEL = 'WARN' # 日誌存放的目錄 # LOG_DIR = os.path.join(BASE_DIR, 'logs') # Session錄影存放目錄 # SESSION_DIR = os.path.join(BASE_DIR, 'sessions') # 資產顯示排序方式, ['ip', 'hostname'] # ASSET_LIST_SORT_BY = 'ip' # 登入是否支援密碼認證 # PASSWORD_AUTH = True # 登入是否支援祕鑰認證 # PUBLIC_KEY_AUTH = True # SSH白名單 # ALLOW_SSH_USER = 'all' # ['test', 'test2'] # SSH黑名單, 如果使用者同時在白名單和黑名單,黑名單優先生效 # BLOCK_SSH_USER = [] # 和Jumpserver 保持心跳時間間隔 # HEARTBEAT_INTERVAL = 5 # Admin的名字,出問題會提示給使用者 # ADMINS = '' COMMAND_STORAGE = { "TYPE": "server" } REPLAY_STORAGE = { "TYPE": "server" } # SSH連線超時時間 (default 15 seconds) # SSH_TIMEOUT = 15 # 語言 = en LANGUAGE_CODE = 'zh' config = Config()
2.第二次是裝好jumpserver後訪問,登陸失敗,如果有大神希望幫幫忙看下
登入名和密碼都是admin,但是過不去...
3.未完待續,大家有問題也可以留言互相交流下...我第一次弄這個堡壘機,只接受輕噴...