下载包
wget https://cdn0-download-offline-installer.fit2cloud.com/jumpserver/jumpserver-ce-v4.10.12-x86_64.tar.gz
解压包
tar -xf jumpserver-ce-v4.10.12-x86_64.tar.gz
安装包
yanchang@iZ2vchl4nvb8ngbzprvivxZ:~/jumpserver-ce-v4.10.12-x86_64$ sudo ./jmsctl.sh install
[sudo] password for yanchang:
██╗██╗ ██╗███╗ ███╗██████╗ ███████╗███████╗██████╗ ██╗ ██╗███████╗██████╗
██║██║ ██║████╗ ████║██╔══██╗██╔════╝██╔════╝██╔══██╗██║ ██║██╔════╝██╔══██╗
██║██║ ██║██╔████╔██║██████╔╝███████╗█████╗ ██████╔╝██║ ██║█████╗ ██████╔╝
██ ██║██║ ██║██║╚██╔╝██║██╔═══╝ ╚════██║██╔══╝ ██╔══██╗╚██╗ ██╔╝██╔══╝ ██╔══██╗
╚█████╔╝╚██████╔╝██║ ╚═╝ ██║██║ ███████║███████╗██║ ██║ ╚████╔╝ ███████╗██║ ██║
╚════╝ ╚═════╝ ╚═╝ ╚═╝╚═╝ ╚══════╝╚══════╝╚═╝ ╚═╝ ╚═══╝ ╚══════╝╚═╝ ╚═╝
Version: v4.10.12-ce
1. Check Configuration File
Path to Configuration file: /opt/jumpserver/config
/opt/jumpserver/config/config.txt [ √ ]
/opt/jumpserver/config/loki/promtail.yml [ √ ]
/opt/jumpserver/config/nginx/cert/server.crt [ √ ]
/opt/jumpserver/config/nginx/cert/server.key [ √ ]
>>> Install and Configure Docker
1. Install Docker
complete
2. Configure Docker
Do you want to support IPv6? (y/n) (default n): y
complete
3. Start Docker
Created symlink /etc/systemd/system/multi-user.target.wants/docker.service → /etc/systemd/system/docker.service.
complete
>>> Loading Docker Image
redis:7.0-bullseye <= images/redis:7.0-bullseye.zst
0cc1f0165626: Loading layer 84.03MB/84.03MB
788a57b17fde: Loading layer 338.4kB/338.4kB
9eff024458da: Loading layer 4.229MB/4.229MB
389269916152: Loading layer 32.11MB/32.11MB
3a77f685672e: Loading layer 2.048kB/2.048kB
907ed375516e: Loading layer 4.096kB/4.096kB
Loaded image: redis:7.0-bullseye
postgres:16.3-bullseye <= images/postgres:16.3-bullseye.zst
6f697f52d485: Loading layer 84.18MB/84.18MB
9ec058f64b03: Loading layer 336.4kB/336.4kB
b7ce20ae79b1: Loading layer 9.63MB/9.63MB
fad4dcbf2029: Loading layer 4.252MB/4.252MB
a76d1ce375fe: Loading layer 25.68MB/25.68MB
276d9d4f81dd: Loading layer 2.713MB/2.713MB
dcdccebceb32: Loading layer 1.536kB/1.536kB
41be7ccfd143: Loading layer 7.68kB/7.68kB
769f0c08a78a: Loading layer 281MB/281MB
240e43c98537: Loading layer 68.61kB/68.61kB
2202ada9290d: Loading layer 2.048kB/2.048kB
efb6f0a17382: Loading layer 3.072kB/3.072kB
f4ddf6574562: Loading layer 18.94kB/18.94kB
1a6e7ab8c59f: Loading layer 3.072kB/3.072kB
Loaded image: postgres:16.3-bullseye
jumpserver/core:v4.10.12-ce <= images/core:v4.10.12-ce.zst
a07f4ed3adbe: Loading layer 84.22MB/84.22MB
19ad00c30e20: Loading layer 3.394MB/3.394MB
c906c1c41cd8: Loading layer 45.19MB/45.19MB
a9d0ceaec0ba: Loading layer 5.12kB/5.12kB
fc083571a639: Loading layer 11.26MB/11.26MB
b7fe510093f2: Loading layer 26.41MB/26.41MB
64f170339986: Loading layer 74.63MB/74.63MB
867d6fc798e0: Loading layer 769.3MB/769.3MB
25cf0b8fb637: Loading layer 44.8MB/44.8MB
59f50f0a4b32: Loading layer 3.072kB/3.072kB
5f70bf18a086: Loading layer 1.024kB/1.024kB
Loaded image: jumpserver/core:v4.10.12-ce
jumpserver/koko:v4.10.12-ce <= images/koko:v4.10.12-ce.zst
584a83027a87: Loading layer 84.22MB/84.22MB
fed9d7285f3a: Loading layer 6.193MB/6.193MB
d8a010b2274a: Loading layer 2.048kB/2.048kB
a3fd9e8fe87a: Loading layer 6.689MB/6.689MB
344cd29e05b5: Loading layer 52.22kB/52.22kB
a510d20035db: Loading layer 310.7MB/310.7MB
3b4e6319f99b: Loading layer 117.4MB/117.4MB
5a6ed5930a50: Loading layer 222.2kB/222.2kB
70247bcd0706: Loading layer 88.97MB/88.97MB
Loaded image: jumpserver/koko:v4.10.12-ce
jumpserver/lion:v4.10.12-ce <= images/lion:v4.10.12-ce.zst
47d63aa77d51: Loading layer 12.11MB/12.11MB
7d466a8881c4: Loading layer 73.06MB/73.06MB
0949fdd1dc9d: Loading layer 2.048kB/2.048kB
139a02c6f438: Loading layer 5.623MB/5.623MB
d7035b9aaa02: Loading layer 1.735MB/1.735MB
1e7b07c320eb: Loading layer 35.19MB/35.19MB
1a65a11faa59: Loading layer 3.584kB/3.584kB
a10ff480b020: Loading layer 3.584kB/3.584kB
8a3fe1ac6ce4: Loading layer 3.584kB/3.584kB
Loaded image: jumpserver/lion:v4.10.12-ce
jumpserver/chen:v4.10.12-ce <= images/chen:v4.10.12-ce.zst
274dd4ed3d01: Loading layer 235MB/235MB
0ffedbed3afd: Loading layer 2.048kB/2.048kB
e68febb8510c: Loading layer 43.05MB/43.05MB
74b5e7b09d91: Loading layer 86.79MB/86.79MB
908f93c5d1fe: Loading layer 3.584kB/3.584kB
a5e15d5adedd: Loading layer 20.99MB/20.99MB
cf855dc26943: Loading layer 3.584kB/3.584kB
Loaded image: jumpserver/chen:v4.10.12-ce
jumpserver/web:v4.10.12-ce <= images/web:v4.10.12-ce.zst
420179ad2efa: Loading layer 84.18MB/84.18MB
13c8460bfc9a: Loading layer 62.52MB/62.52MB
b9a187a24e19: Loading layer 3.584kB/3.584kB
96c08fed6a4c: Loading layer 4.608kB/4.608kB
29492f82bbc2: Loading layer 3.584kB/3.584kB
bc4a3582faa9: Loading layer 7.168kB/7.168kB
a1692d1728a1: Loading layer 85.55MB/85.55MB
57e2d5ab4d71: Loading layer 61.63MB/61.63MB
5f70bf18a086: Loading layer 1.024kB/1.024kB
788b65b30312: Loading layer 33.38MB/33.38MB
88cd26ff64b7: Loading layer 11.13MB/11.13MB
ae4ae7404aa7: Loading layer 3.584kB/3.584kB
558faecf28cc: Loading layer 4.096kB/4.096kB
d17fd8639bb7: Loading layer 9.216kB/9.216kB
fcbe8450e254: Loading layer 4.608kB/4.608kB
0651a2575c87: Loading layer 4.096kB/4.096kB
b62428f928cc: Loading layer 7.68kB/7.68kB
Loaded image: jumpserver/web:v4.10.12-ce
complete
>>> Install and Configure JumpServer
1. Configure Private Key
SECRETE_KEY: 55f3e1dafe81258ca45dd392a66ed0152f07d7f06632b1ae
BOOTSTRAP_TOKEN: z1VRL27hpdR7fJq0MfISX0b4
complete
2. Configure Persistent Directory
Do you need custom persistent store, will use the default directory /data/jumpserver? (y/n) (default n):
complete
3. Configure DB
Do you want to use external PostgreSQL? (y/n) (default n):
complete
4. Configure Redis
Please enter Redis Engine? (redis/sentinel) (default redis):
Do you want to use external Redis? (y/n) (default n):
complete
5. Configure External Access
Do you need to customize the JumpServer external port? (y/n) (default n):
complete
6. Init JumpServer Database
[+] Running 4/4
✔ Network jms_net Created 0.2s
✔ Container jms_core Started 0.8s
✔ Container jms_postgresql Started 0.8s
✔ Container jms_redis Started 0.8s
/opt/py3/lib/python3.11/site-packages/httpsig/__init__.py:1: UserWarning: pkg_resources is deprecated as an API. See https://setuptools.pypa.io/en/latest/pkg_resources.html. The pkg_resources package is slated for removal as early as 2025-11-30. Refrain from using this package or pin to Setuptools<81.
from pkg_resources import get_distribution, DistributionNotFound
2025-11-20 19:52:30 Collect static files
2025-11-20 19:52:30 Collect static files done
2025-11-20 19:52:30 Check database structure change ...
2025-11-20 19:52:30 Migrate model change to database ...
Operations to perform:
Apply all migrations: accounts, acls, admin, assets, audits, auth, authentication, captcha, contenttypes, django_cas_ng, django_celery_beat, labels, notifications, ops, orgs, perms, rbac, sessions, settings, terminal, tickets, users
Running migrations:
Applying contenttypes.0001_initial... OK
Applying contenttypes.0002_remove_content_type_name... OK
Applying auth.0001_initial... OK
Applying auth.0002_alter_permission_name_max_length... OK
Applying auth.0003_alter_user_email_max_length... OK
Applying auth.0004_alter_user_username_opts... OK
Applying auth.0005_alter_user_last_login_null... OK
Applying auth.0006_require_contenttypes_0002... OK
Applying auth.0007_alter_validators_add_error_messages... OK
Applying auth.0008_alter_user_username_max_length... OK
Applying auth.0009_alter_user_last_name_max_length... OK
Applying auth.0010_alter_group_name_max_length... OK
Applying auth.0011_update_proxy_permissions... OK
Applying auth.0012_alter_user_first_name_max_length... OK
Applying users.0001_initial... OK
Applying assets.0001_initial... OK
Applying terminal.0001_initial... OK
Applying terminal.0002_auto_20171228_0025... OK
Applying settings.0001_initial... OK
Applying terminal.0003_auto_20171230_0308... OK
Applying terminal.0004_endpoint_is_active... OK
Applying terminal.0005_endpoint_vnc_port... OK
Applying assets.0002_auto_20180105_1807... OK
Applying assets.0003_auto_20180109_2331... OK
Applying assets.0004_auto_20240709_1819... OK
Applying assets.0005_myasset... OK
Applying assets.0006_database_pg_ssl_mode... OK
Applying assets.0007_baseautomation_start_time... OK
Applying assets.0008_baseautomation_date_last_run_and_more... OK
Applying assets.0009_automationexecution_result_and_more... OK
Applying assets.0010_automationexecution_duration... OK
Applying assets.0011_alter_automationexecution_duration... OK
Applying assets.0012_auto_20241204_1516... OK
Applying accounts.0001_initial... OK
Applying accounts.0002_auto_20220616_0021... OK
Applying accounts.0003_automation... OK
Applying accounts.0004_alter_changesecretrecord_account_and_more... OK
Applying accounts.0005_accountrisk_backupaccountautomation_and_more... OK
Applying accounts.0006_alter_accountrisk_username_and_more... OK
Applying accounts.0007_alter_account_connectivity... OK
Applying acls.0001_initial... OK
Applying acls.0002_auto_20210926_1047... OK
Applying acls.0003_datamaskingrule... OK
Applying admin.0001_initial... OK
Applying admin.0002_logentry_remove_auto_add... OK
Applying admin.0003_logentry_add_action_flag_choices... OK
Applying assets.0013_baseautomation_last_execution_date... OK
Applying assets.0014_alter_automationexecution_duration... OK
Applying assets.0015_automationexecution_type... OK
Applying assets.0016_directory_service... OK
Applying assets.0017_auto_20250407_1124... OK
Applying assets.0018_rename_domain_zone... OK
Applying assets.0019_alter_asset_connectivity... OK
Applying ops.0001_initial... OK
Applying audits.0001_initial... OK
Applying audits.0002_ftplog_org_id... OK
Applying audits.0003_auto_20180816_1652... OK
Applying audits.0004_serviceaccesslog... OK
Applying audits.0005_rename_serviceaccesslog... OK
Applying audits.0006_alter_ftplog_account_alter_ftplog_asset_and_more... OK
Applying audits.0007_auto_20250610_1704... OK
Applying tickets.0001_initial... OK
Applying authentication.0001_initial... OK
Applying authentication.0002_auto_20190729_1423... OK
Applying authentication.0003_sshkey... OK
Applying authentication.0004_alter_passkey_token... OK
Applying authentication.0005_connectiontoken_face_monitor_token... OK
Applying authentication.0006_connectiontoken_type... OK
Applying authentication.0007_connectiontoken_remote_addr... OK
Applying authentication.0008_alter_accesskey_secret_alter_temptoken_secret... OK
Applying captcha.0001_initial... OK
Applying captcha.0002_alter_captchastore_id... OK
Applying django_cas_ng.0001_initial... OK
Applying django_cas_ng.0002_auto_20201023_1400... OK
Applying django_cas_ng.0003_auto_20210813_1226... OK
Applying django_celery_beat.0001_initial... OK
Applying django_celery_beat.0002_auto_20161118_0346... OK
Applying django_celery_beat.0003_auto_20161209_0049... OK
Applying django_celery_beat.0004_auto_20170221_0000... OK
Applying django_celery_beat.0005_add_solarschedule_events_choices... OK
Applying django_celery_beat.0006_auto_20180322_0932... OK
Applying django_celery_beat.0007_auto_20180521_0826... OK
Applying django_celery_beat.0008_auto_20180914_1922... OK
Applying django_celery_beat.0006_auto_20180210_1226... OK
Applying django_celery_beat.0006_periodictask_priority... OK
Applying django_celery_beat.0009_periodictask_headers... OK
Applying django_celery_beat.0010_auto_20190429_0326... OK
Applying django_celery_beat.0011_auto_20190508_0153... OK
Applying django_celery_beat.0012_periodictask_expire_seconds... OK
Applying django_celery_beat.0013_auto_20200609_0727... OK
Applying django_celery_beat.0014_remove_clockedschedule_enabled... OK
Applying django_celery_beat.0015_edit_solarschedule_events_choices... OK
Applying django_celery_beat.0016_alter_crontabschedule_timezone... OK
Applying django_celery_beat.0017_alter_crontabschedule_month_of_year... OK
Applying django_celery_beat.0018_improve_crontab_helptext... OK
Applying labels.0001_initial... OK
Applying labels.0002_label_color... OK
Applying notifications.0001_initial... OK
Applying notifications.0002_auto_20210909_1946... OK
Applying orgs.0001_initial... OK
Applying rbac.0001_initial... OK
Applying orgs.0002_auto_20180903_1132... OK
Applying ops.0002_celerytask... OK
Applying ops.0003_alter_adhoc_unique_together_and_more... OK
Applying ops.0004_job_nodes_alter_job_assets... OK
Applying ops.0005_historicaljob_periodic_variable_and_more... OK
Applying ops.0006_historicaljob_start_time_job_start_time... OK
Applying ops.0007_alter_historicaljob_crontab_alter_job_crontab... OK
Applying perms.0001_initial... OK
Applying perms.0002_auto_20171228_0025... OK
Applying perms.0003_alter_assetpermission_date_expired... OK
Applying rbac.0002_auto_20210929_1409... OK
Applying rbac.0003_auto_20211130_1037... - Update builtin roles
- Update: SystemAdmin - True
- Update: SystemAuditor - True
- Update: SystemComponent - True
- Update: User - True
- Update: OrgAdmin - True
- Update: OrgAuditor - True
- Update: OrgUser - True
OK
Applying rbac.0004_auto_20250626_1613... OK
Applying sessions.0001_initial... OK
Applying settings.0002_leakpasswords... OK
Applying terminal.0006_endpoint_oracle_port... OK
Applying terminal.0007_command_idx_timestamp_org... OK
Applying terminal.0008_endpoint_mongodb_port... OK
Applying terminal.0009_session_replay_size... OK
Applying terminal.0010_alter_command_risk_level_alter_session_login_from_and_more... OK
Applying tickets.0002_auto_20200728_1146... OK
Applying tickets.0003_initial_ticket_flow_data... OK
Applying tickets.0004_replace_assignees_to_users... OK
Applying users.0002_user_face_vector... OK
Applying users.0003_alter_user_date_expired... OK
Applying users.0004_fix_user_wechat_phone... OK
After migration, update builtin role permissions
- Update builtin roles
complete
>>> The Installation is Complete
1. You can use the following command to start, and then visit
cd /home/yanchang/jumpserver-ce-v4.10.12-x86_64
./jmsctl.sh start
2. Other management commands
./jmsctl.sh stop
./jmsctl.sh restart
./jmsctl.sh backup
./jmsctl.sh upgrade
For more commands, you can enter ./jmsctl.sh --help to understand
3. Web access
http://172.18.16.65:80
Default username: admin Default password: ChangeMe
More information
Official Website: https://www.jumpserver.com/
Documentation: https://www.jumpserver.com/docs
使用说明
二、jumpserver使用
1、访问jumpserver
http://192.168.88.71:80
访问页面如下:用户名admin,密码ChangeMe登录,会让修改密码,使用新密码登录即可
