JumpServer on Ubuntu 24.04 LTS

Azure Security

JumpServer, an open source privileged access management bastion that brokers, vaults and records every session, with per instance secrets generated on first boot.

Base
Hardened build
minimal ports, security patches applied at build time
Access
Unique credentials
generated on first boot, readable only by root
Verified
Boots working
services pass a health gate before release
Support
24/7, 365 days
by email and live chat, 24 hour response SLA

Overview

JumpServer is an open source privileged access management platform: a single audited doorway in front of the infrastructure that matters. Rather than handing engineers credentials and direct network access to production, teams give them an account on JumpServer, which holds the real credentials in an encrypted vault, injects them at connection time so they are never revealed, and records every session it brokers for later replay. One gateway covers SSH and SFTP, remote desktop, databases and Kubernetes, giving security and audit teams a complete, searchable trail of who reached what, when, and what they did.

Why the cloudimg image

A privileged access manager holds the keys to everything else, so a shared secret baked into the image would let anyone decrypt every deployment's vault. cloudimg ships none: the master encryption key, the component bootstrap token, the database and cache passwords, the administrator password and the API token are all generated on your own instance at first boot, before the console is reachable, and the database starts empty. The stack is open source throughout, with Valkey in place of a source available cache, and the vault, database and session recordings live on a dedicated data volume so audit history can be grown and backed up independently. Every image passes an automated gate that proves a real session is brokered through the bastion and recorded before it ships, and is backed by 24/7 cloudimg support with a paired deployment guide.

Common uses

  • Give contractors and on call engineers time bound access to production without ever handing over credentials
  • Record and replay privileged sessions to satisfy audit, compliance and incident review
  • Consolidate SSH, remote desktop and database access behind one gateway with a single audit trail

See it running

Real screenshots taken while testing this image against its deployment guide.

JumpServer on Ubuntu 24.04 LTS screenshot 1 JumpServer on Ubuntu 24.04 LTS screenshot 2 JumpServer on Ubuntu 24.04 LTS screenshot 3 JumpServer on Ubuntu 24.04 LTS screenshot 4