JumpServer documentation (en)
Getting Started Guide
Installation
Installation JumpServer Enterprise Edition
To begin, you need to request the latest distribution file from us via email at info@afi-d.co...
Installation JumpServer Community Edition
Attention: You will not be able to install a license to activate Enterprise (x-pack) features in ...
JumpServer HA-cluster configuration
JumpServer (including Community Edition) fully supports HA clustering without any restrictions. I...
HAProxy configuration for JumpServer HA-cluster
HAProxy (High Availability Proxy) — is an open-source software tool used for load balancing and t...
Operation and Maintenance with command line jmsctl
Operation and Maintenance - jmsctl JumpServer includes a built-in command-line tool for operatio...
JumpServer port discription
List of Network Ports JumpServer requires the following network ports to be open for proper oper...
Installing SSL Certificates and Configuring HTTPS
What is the Purpose of JumpServer Reverse Proxy? Nginx supports secure WebSockets (wss://), mana...
Configuring Correct User IP Display When Using HAProxy Authentication
When using a load balancer such as HAProxy, all users in the system see the HAProxy address inste...
How to Save Transferred Files in JumpServer
JumpServer can save a copy of every file transferred during sessions using the RDP and SFTP pro...
Where Does JumpServer Store Copies of Files Transferred via SFTP and RDP?
JumpServer logs file transfers over SFTP and RDP and can also save a copy of these files on the s...
How to Remove Passwords Entered by Users Inside SSH Sessions from the Logs
If users know account passwords and enter them inside SSH sessions, these passwords appear in the...
Syslog configuration
1. Modifying the JumpServer Configuration File The configuration files for JumpServer are locate...
Configuring External Storage for Session Recordings in JumpServer
Storing a large volume of session recordings is a significant challenge, especially when there ar...
How to Set the Correct Date and Time in JumpServer?
By default, JumpServer uses the Asia/Shanghai time zone, which may cause incorrect timestamps in ...
RDP Session Video Compression: Configuring Video-Worker
NOTE: This feature is available only in the Enterprise Edition 1. Introduction Starting from Ju...
System settings
Active Directory synchronization with AD groups
Configuring Integration with Active Directory 1. Go to "System settings" - "Auth" and select the...
How to enable 2FA(TOTP) auth
In the Community Edition, two-factor authentication via TOTP (Google Authenticator) is available....
Installing OpenSSH for account management for Windows
Why Install OpenSSH on Windows Devices? OpenSSH on Windows is used for gathering system informat...
RemoteApp configuration for application publishing
Note: The Community Edition supports only the HTTP application publishing mode. RemoteApp is the...
Setting up Panda for application publishing(alternative to RemoteApp)
JumpServer supports using both Windows Server and Linux as application publishing machines, such ...
Changing the lifetime and reusability of connection tokens in JumpServer
In JumpServer, you can connect to target systems using the web interface or a local client such a...
Administrating
How to configure access to asset web-interface, HTTP session configuration
To connect to target systems via HTTP, you need to configure browser publishing via Panda (Linux-...
Command filter configuration for SSH and database queries
Command ACL Configuration 1. Go to the "Console - Policies - ACLs - Command filter" section and ...
How to connect to domain assets using a single domain account?
In previous versions of JumpServer, a user account (UA) was strictly bound to a specific asset, m...
Automatic privilege escalation when connecting via SSH
Normally, you cannot log in directly over SSH using the root account. Therefore, after connecting...
Creating Accounts and SSH Keys on the Target System (Push Accounts)
JumpServer can automatically create accounts and SSH keys on target systems with specified parame...
Discovering Unmanaged Accounts (Discover Accounts)
JumpServer can automatically detect unmanaged accounts on target systems — accounts that were not...
Changing the Default Directory for SFTP Connections
By default, the SFTP protocol settings specify the path /tmp/. This means that when you connect, ...
Configuring Asset Discovery in Local Networks and Cloud Platforms
One of the tasks during the implementation and maintenance of a PAM solution is adding and managi...
User manual
Connecting to Target Systems: All Possible Options
JumpServer Connection Methods JumpServer allows you to connect to target systems in various ways...
Opening RDP Sessions in Remote Desktop Manager (Devolutions)
Available in JumpServer Enterprise edition, version 4.10.13 and above.Requires JumpServer Client ...
Supported Database Types and Connection Methods
Web CLI — command-line access to the database directly from the web interfaceWeb GUI — built-in...
Installing, Configuring, and Using JumpServer Client
JumpServer Client is a desktop application installed on the user’s workstation to simplify connec...
Connecting to Systems Using the SSH Selector in JumpServer
In addition to using the web interface and JumpServer Client, administrators and contractors can ...
Troubleshooting
Additional features
Custome Applet structure for RemoteApp
What is an applet? An applet is a set of files that describe the process of installing and launc...
How to Write API Requests Using Cursor AI
Cursor AI is a popular development tool and IDE that can use language models to generate scripts....
Developing Custom Applications for Panda
Panda is a built-in mechanism for running applications in isolated Docker containers, a replaceme...