Creating Accounts and SSH Keys on the Target System (Push Accounts)

JumpServer can automatically create accounts and SSH keys on target systems with specified parameters.

Any actions performed on target systems—such as creating accounts or SSH keys, discovering accounts, changing passwords, or rotating SSH keys—are executed by JumpServer on behalf of a privileged account that is added to your asset. This account must be marked as "Privileged" in its account properties:

If your asset does not have at least one account marked as Privileged, JumpServer will not attempt to perform any tasks related to account management.

How Push Account Works

If the account does not exist on the target system and does not exist in the JumpServer account list, it will be created on the target system and added to JumpServer.
If the account exists on the target system and exists in the JumpServer account list, nothing will happen — even if the passwords do not match.
If the account exists on the target system but is not present in the JumpServer account list, the password on the target system will be changed (according to the password settings in the task), and the account will be added to JumpServer.
If the account does not exist on the target system but is present in the JumpServer account list, the account will be created on the target system using the same password that is configured in JumpServer.

Creating an Account or SSH Key

Navigate to PAM → Push Accounts, open the Account push task tab, click Create, and fill in the required parameters:

Assets

Select one or multiple assets where the accounts or SSH keys will be created.

Nodes

Select a folder containing assets. JumpServer will attempt to create accounts on all assets located in the selected folder(s).

Accounts

Enter the usernames that will be created on all selected assets.

Secret strategy

Specified Secret — manually set a new password
Random generate — automatically generate a password

Password rules

Define the parameters for password generation.

Push parameters

Available only for host-type assets. Additional parameters for creating accounts on Linux systems.

Periodic

Enable periodic execution of the account creation task.

Getting Started Guide for JumpServer PoC

Installation JumpServer Enterprise Edition

Installation JumpServer Community Edition

JumpServer HA-cluster configuration

HAProxy configuration for JumpServer HA-cluster

Operation and Maintenance with command line jmsctl

JumpServer port discription

Installing SSL Certificates and Configuring HTTPS

Configuring Correct User IP Display When Using HAProxy Authentication

How to Save Transferred Files in JumpServer

Where Does JumpServer Store Copies of Files Transferred via SFTP and RDP?

How to Remove Passwords Entered by Users Inside SSH Sessions from the Logs

Syslog configuration

Configuring External Storage for Session Recordings in JumpServer

How to Set the Correct Date and Time in JumpServer?

RDP Session Video Compression: Configuring Video-Worker

Active Directory synchronization with AD groups

How to enable 2FA(TOTP) auth

Installing OpenSSH for account management for Windows

RemoteApp configuration for application publishing

Setting up Panda for application publishing(alternative to RemoteApp)

Changing the lifetime and reusability of connection tokens in JumpServer

How to configure access to asset web-interface, HTTP session configuration

Command filter configuration for SSH and database queries

How to connect to domain assets using a single domain account?

Automatic privilege escalation when connecting via SSH

Creating Accounts and SSH Keys on the Target System (Push Accounts)

Discovering Unmanaged Accounts (Discover Accounts)

Changing the Default Directory for SFTP Connections

Configuring Asset Discovery in Local Networks and Cloud Platforms

Connecting to Target Systems: All Possible Options

Opening RDP Sessions in Remote Desktop Manager (Devolutions)

Supported Database Types and Connection Methods

Installing, Configuring, and Using JumpServer Client

Connecting to Systems Using the SSH Selector in JumpServer

How to check system status and container logs

RemoteApp Troubleshooting

Custome Applet structure for RemoteApp

How to Write API Requests Using Cursor AI

Developing Custom Applications for Panda

Creating Accounts and SSH Keys on the Target System (Push Accounts)

How Push Account Works

Creating an Account or SSH Key

Assets

Nodes

Accounts

Secret strategy

Password rules

Push parameters

Periodic