标签：192.168 jumpserver 简易 堡垒 ssh key root localhost 搭建

1.搭建jumpServer

jumpserver官网：安装部署 - JumpServer 文档

2.登录界面

账户:admin

密码:admin

 

 

 

 

 

 3.创建用户

 

 

 

 

 

 

 

 

 4.创建普通用户和特权用户

普通用户

 

 

 

 

 

 

 

 

 

 

 

 特权用户

[root@localhost ~]# ssh-keygen -f jumpserver #生成密匙
Generating public/private rsa key pair.
Enter passphrase (empty for no passphrase): 
Enter same passphrase again: 
Your identification has been saved in jumpserver.
Your public key has been saved in jumpserver.pub.
The key fingerprint is:
SHA256:yAkBJTs2DMJBzRp10xfU+P4QTwG1B2UcUkxhvmTSdBs root@localhost.localdomain
The key's randomart image is:
+---[RSA 2048]----+
|=oB+oo. .o+.o+*E+|
|.= =.... o . .Xo+|
|  O .   . .  o.B |
| o o o o   o .= .|
|      + S . +  . |
|           o .   |
|            o    |
|             .   |
|                 |
+----[SHA256]-----+

 

 

 

 

 

 5.资产管理

创建资产

 

 

 

 

 

 

 

 

 

 

 配置资产

[root@localhost ~]# useradd jumpserver
[root@localhost ~]# visudo 
....
## Allow root to run any commands anywhere
root    ALL=(ALL)       ALL
jumpserver      ALL=(ALL)       NOPASSWD:ALL
## Allows members of the 'sys' group 
....

[root@localhost ~]# echo 123456 | passwd --stdin jumpserver
更改用户 jumpserver 的密码 。
passwd：所有的身份验证令牌已经成功更新。

[root@localhost ~]# ssh-copy-id -i jumpserver.pub jumpserver@192.168.200.184
/usr/bin/ssh-copy-id: INFO: Source of key(s) to be installed: "jumpserver.pub"
The authenticity of host '192.168.200.184 (192.168.200.184)' can't be established.
ECDSA key fingerprint is SHA256:bhEdVM3mhW8PDNYqILImzNCA1466NnEMybHxMKKNFmU.
ECDSA key fingerprint is MD5:a3:60:a4:23:7d:83:ba:c7:1b:bf:0c:8f:04:ea:d6:d4.
Are you sure you want to continue connecting (yes/no)? yes
/usr/bin/ssh-copy-id: INFO: attempting to log in with the new key(s), to filter out any that are already installed
/usr/bin/ssh-copy-id: INFO: 1 key(s) remain to be installed -- if you are prompted now it is to install the new keys
jumpserver@192.168.200.184's password: 

Number of key(s) added: 1

Now try logging into the machine, with:   "ssh 'jumpserver@192.168.200.184'"
and check to make sure that only the key(s) you wanted were added.

 

 

 

 

 

 6.资产授权

 

 

 

 

 

 

 

 

 

 

 

 

 

标签：192.168,jumpserver,简易,堡垒,ssh,key,root,localhost,搭建
来源： https://www.cnblogs.com/zhukunpeng/p/15724266.html

本站声明： 1. iCode9 技术分享网（下文简称本站）提供的所有内容，仅供技术学习、探讨和分享；
2. 关于本站的所有留言、评论、转载及引用，纯属内容发起人的个人观点，与本站观点和立场无关；
3. 关于本站的所有言论和文字，纯属内容发起人的个人观点，与本站观点和立场无关；
4. 本站文章均是网友提供，不完全保证技术分享内容的完整性、准确性、时效性、风险性和版权归属；如您发现该文章侵犯了您的权益，可联系我们第一时间进行删除；
5. 本站为非盈利性的个人网站，所有内容不会用来进行牟利，也不会利用任何形式的广告来间接获益，纯粹是为了广大技术爱好者提供技术内容和技术思想的分享性交流网站。