Open Source Fortress Machine Gateone installation, configuration notes (detailed steps)

Gateone Introduction

Gateone is a HTML5 based open source terminal emulator/SSH client, while built-in powerful plug-in capabilities. Its own plug-in makes it an amazing SSH client, but it can be used to run any terminal application. Users can embed gateone into other applications to provide various terminal access interfaces, and it also supports various web-based management interfaces ... Everyone in the back will see for themselves.

Because the internal temporary need such a system, so search and search, buttoned up the system deployment, the use of PAM certified configuration, made a simple management interface.

　　Gateone deployment

System initialization is the use of the CentOS 6.5 Mini x64 version + default configuration.

First exports http_proxy and https_proxy, ready to surf the internet.

Second, look at the installation requirements.

Http://liftoff.github.io/GateOne/About/index.html#prerequisites

Here are the relevant package downloads:

Https://github.com/liftoff/GateOne/downloads

Yum Install-y http://download.fedoraproject.org/pub/epel/6/x86_64/epel-release-6-8.noarch.rpm

Yum Update-y

Yum install-y python-devel gcc dtach python-pip python-imaging Python-kerberos

Yum Install-y https://github.com/downloads/liftoff/GateOne/tornado-2.4-1.noarch.rpm

Cd/usr/local/src

git clone https://github.com/liftoff/GateOne.git

CD Gateone

Python setup.py Isntall

Service Gateone Start

Service Gateone Stop

　　Gateone Configuration

Vi/etc/gateone/conf.d/10server.conf

Origins = ["x.x.x.x"]

Address = "x.x.x.x"

Https_redirect = True

Vi/etc/gateone/conf.d/20authentication.conf

Auth = "Pam"

Pam_realm = "AccessGateway1"

Pam_service = "Gateone"

Vi/etc/sysconfig/iptables

　　Add 80 and 443 ports

Service Iptables Reload

Nohup python gateone.py &

Can not be used under Safari, the error is as follows:

The WebSocket connection was closed. Would attempt to reconnect every 5 seconds ...

Note:some web proxies does not work properly with websockets.

The PC and Android Chrome are normal.

Vi/etc/pam.d/gateone

#%pam-1.0

# Login using a htpasswd file

# @include Common-sessionauth

Required Pam_pwdfile.so PWDFILE=/ETC/GATEONE/PASSWD

Required pam_permit.so

Auth = "Pam"

Pam_realm = "AccessGateway1"

Pam_service = "Gateone"

https://github.com/liftoff/GateOne/issues/118

Here mentioned is pypam, don't install wrong.

Yum install git pam-devel pam Pypam pam-devel

Git https://github.com/tiwe-de/libpam-pwdfile.git

Make && make install

Ln/lib/security/pam_pwdfile.so/lib64/security/pam_pwdfile.so

Password generation with online tools on the line, remember to choose Crypt Way: HTTP://TOOL.OSCHINA.NET/HTPASSWD

Adding the generated information to the password file is OK.

vi/etc/gateone/passwd

[Go]

Cry:wk463n25yhoqs

[ESC]

[: Wq]

　　On the management of log in Gateone

Time is tight, and there are no unified management configurations found in the Gateone documents. So the new employee temporarily used bootstrap+web.py to write a management interface.