用户增加
adduser william
passwd william
usermod -aG wheel william //sudo 权限
su -william
sudo ls -la /root
防火墙
systemctl status firewalld
sudo firewall-cmd --permanent --add-port=443/tcp
sudo firewall-cmd --permanent --add-port=6443/tcp
sudo firewall-cmd --permanent --add-port=4172/tcp
sudo firewall-cmd --permanent --add-port=4172/udp
sudo firewall-cmd --permanent --zone=trusted --add-source=10.42.0.0/16
sudo firewall-cmd --permanent --zone=trusted --add-source=10.43.0.0/16
sudo firewall-cmd --reload
sudo firewall-cmd --permanent --list-all
sudo systemctl status firewalld
Disable Swap
/etc/fstab 注释掉 swap行
和面命令行 swapoff -a
系统DNS
[root@connector-18-51 ~] cat /etc/sysconfig/network-scripts/ifcfg-ens192
TYPE=Ethernet
PROXY_METHOD=none
BROWSER_ONLY=no
DEFROUTE=yes
IPV4_FAILURE_FATAL=no
IPV6INIT=yes
IPV6_AUTOCONF=yes
IPV6_DEFROUTE=yes
IPV6_FAILURE_FATAL=no
NAME=ens192
UUID=57775573-a638-46fe-9a73-1246e693ede1
DEVICE=ens192
ONBOOT=yes
IPADDR=192.168.18.51
NETMASK=255.255.255.0
GATEWAY=192.168.18.1
DNS1=192.168.18.41
DNS2=202.96.128.166
DOMAIN=mpitest123.com.tw
PREFIX=24
PEERDNS=no
sudo systemctl restart NetworkManager //重启网络
nmcli device modify ens3 ipv4.ignore-auto-dns yes
nmcli connection modify ens3 ipv4.ignore-auto-dns yes
Darksite 安装
sudo tar xzvf anyware-connector-offline_Linux.tar.gz
cd
./install.sh
sudo /usr/local/bin/anyware-manager diagnose --health
配置Connector
基本安装参考
–从Manager UI生成安装命令
sudo /usr/local/bin/anyware-connector configure --manager-url https://192.168.18.52 --accept-policies --token <VALUE> --manager-insecure --domain 'mpitest123.com.tw' --enable-plaintext-ldap=true --ldaps-insecure=false --enable-ad-sync=false --enable-mfa=false --enable-oauth=false --enable-sso=false --debug
与域控AD同步
sudo /usr/local/bin/anyware-connector configure \
--enable-ad-sync=true --sa-user serviceuser1 --sa-password 'Hc@2024' \
--computers-dn 'CN=Computers,DC=mpitest123,DC=com,DC=tw' --users-dn 'CN=Users,DC=mpitest123,DC=com,DC=tw' \
--domain-controller WIN-NBFMRJLVBHL.mpitest123.com.tw \
--manager-insecure \
--ldaps-insecure=true \
--self-signed \
--accept-policies \
--debug
sudo /usr/local/bin/anyware-connector configure \
--enable-ad-sync=true --sa-user usr_sync --sa-password 'Hc@2025' \
--computers-dn 'CN=Computers,DC=labtest2025,DC=local' --users-dn 'CN=Users,DC=labtest2025,DC=local' --debug
配置SG安全网关
sudo /usr/local/bin/anyware-connector configure \
--enable-security-gateway=true \
--external-pcoip-ip 192.168.18.53 \
--manager-insecure \
--ldaps-insecure=true \
--self-signed \
--accept-policies \
--debug
关闭SG、同步域资源
sudo /usr/local/bin/anyware-connector configure \
--enable-plaintext-ldap=false --ldaps-insecure=true \
--enable-ad-sync=true --sa-user serviceuser1 --sa-password 'Hc@2024' \
--computers-dn 'CN=Computers,DC=mpitest123,DC=com,DC=tw' --users-dn 'DC=mpitest123,DC=com,DC=tw' \
--enable-security-gateway=false \
--self-signed \
--accept-policies \
--manager-insecure \
--debug
IP无法解析问题
sudo /usr/local/bin/anyware-connector configure
–manager-url https://192.168.18.52/
–domain ‘mpitest123.com.tw’
–sa-user ‘serviceuser1’
–sa-password ‘Hc@2024’
–domain-controller ‘WIN-NBFMRJLVBHL.mpitest123.com.tw’
–ldaps-insecure=true
–self-signed
–accept-policies
–manager-insecure
–debug
健康状态/日志提取
/usr/local/bin/anyware-connector diagnose --support-bundle
/usr/local/bin/anyware-connector diagnose --health
问题定位
sudo /usr/local/bin/anyware-connector diagnose
sudo /usr/local/bin/anyware-connector diagnose --rw fqdn.of.my.rw
sudo /usr/local/bin/anyware-connector diagnose --ad
Darksite环境升级Anyware Connecto
下载安装包上传到Connector
sudo tar xzvf anyware-connector-offline_Linux.tar.gz
cd /PATH_OF_EXTRACTED_INSTALLATION_FILES
sudo ./upgrade.sh
卸载Anyware Connector
sudo dnf remove anyware-connector
sudo dnf remove anyware-connector anyware-manager-k3s anyware-manager-selinux
sudo rm -rf /opt/teradici/connector

104

被折叠的 条评论
为什么被折叠?



