The open-source platform that centralizes secure access to your entire infrastru...
T

The open-source platform that centralizes secure access to your entire infrastru...

The open-source platform that centralizes secure access to your entire infrastru...

30,938 stars
N/A forks
N/A contributors

README

Project documentation from GitHub

Jumpserver: The Open-Source Bastion Host You've Been Needing

If you're managing servers, databases, or Kubernetes clusters, you know the access problem. SSH keys scattered across laptops, shared credentials in Slack, and no clear audit trail of who did what. It's a security headache and an operational nightmare. What if you could centralize and secure all that access in one place, without locking yourself into a costly enterprise suite?

Enter Jumpserver. It's an open-source platform that acts as a bastion host and a privileged access management (PAM) system. In simpler terms, it's a controlled gateway through which all access to your infrastructure should flow. Think of it as a secure, single point of entry that you fully control and can audit.

What It Does

Jumpserver provides a unified web interface to connect to your assets—Linux servers, Windows servers, databases (like MySQL, PostgreSQL, Redis), and Kubernetes clusters. Instead of giving users direct SSH keys or passwords, you grant them permission to access specific assets through Jumpserver. It handles the authentication, launches a web-based terminal or a client-side RDP/SSH session, and logs every single command and action for auditing.

Why It's Cool

The beauty of Jumpserver is in its practical, feature-focused design. It's not just another tool; it solves real, daily problems for developers and sysadmins.

  • All-in-One Access: From a single dashboard, you can SSH into a Linux server, RDP into a Windows machine, or connect to a MySQL database with a click. No more juggling different clients.
  • Session Recording & Playback: This is a game-changer for security and debugging. Every session is recorded. Need to know what command caused an outage? Just play back the session video. It's like a DVR for your infrastructure.
  • Principle of Least Privilege: You can set up fine-grained control. Grant a developer access only to the app servers, not the databases. Give a contractor temporary access that auto-expires. Multi-factor authentication (MFA) is built-in.
  • Asset Management Made Simple: It keeps an inventory of all your nodes. You can organize them by labels, making permission management for large environments much more sane.
  • It's Truly Open Source: You can self-host it on your own infrastructure. There's no vendor lock-in, no per-user licensing fees. The code is on GitHub, and there's a vibrant community.

How to Try It

The quickest way to get a feel for Jumpserver is to check out their online demo. You can log in with a provided test account and poke around the interface.

For a local install, the recommended way is using their Docker-based deployment, which gets you a wo

Did you like this issue?

Join our weekly newsletter

Love discovering amazing projects?

Help us continue bringing you the best open-source discoveries every week.

Back to Projects
Last updated: Jan 15, 2026