Sonatype Nexus is one of the best repository managers out there. It is some tool that you cannot avoid in your CI/CD pipeline. It effectively manages deployable artifacts.
Sonatype Nexus 3 on Linux ec2
This article guides you to install and configure Sonatype Nexus 3 in a secure way on an ec2 Linux System.
Note: This was tested on a Redhat 7 machine and it will work on Centos 7 as well.
Step 1: Login to your Linux server and update it.
|
1 |
sudo yum update -y |
Step 2: Install OpenJDK 1.8
Note: Nexus recommends oracle JDK to be installed. For demo purposes we use OpenJDK
|
1 |
sudo yum install java-1.8.0-openjdk.x86_64 |
Step 3: Create a directory named app and cd into the directory.
|
1 |
sudo mkdir /app && cd /app |
Step 4: Download the latest nexus. You can get the latest download links fo for nexus from here. Here I am downloading nexus 3.
|
1 |
sudo wget https://sonatype-download.global.ssl.fastly.net/nexus/3/nexus-3.0.2-02-unix.tar.gz |
Untar the downloaded file.
|
1 |
sudo tar -xvf nexus-3.0.2-02-unix.tar.gz |
Rename the untared file to nexus.
|
1 |
sudo mv nexus-3.0.2-02 nexus |
Step 5: As a good security practice, it is not advised to run nexus service with any sudo user. So create a new user named nexus.
|
1 |
sudo adduser nexus |
Change the ownership of nexus file to nexus user.
|
1 |
sudo chown -R nexus:nexus /app/nexus |
Open /app/nexus/bin/nexus.rc file, uncomment run_as_user parameter and set it as following.
|
1 |
run_as_user="nexus" |
Step 6: If you want to change the default nexus data directory, open nexus properties file and change the data directory “-Dkaraf.data” parameter to a preferred location as shown below.
|
1 |
sudo vi /app/nexus/bin/nexus.vmoptions |
An example configuration is shown below.
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 |
-Xms1200M -Xmx1200M -XX:+UnlockDiagnosticVMOptions -XX:+UnsyncloadClass -Djava.net.preferIPv4Stack=truer -Dkaraf.home=. -Dkaraf.base=. -Dkaraf.etc=etc -Djava.util.logging.config.file=etc/java.util.logging.properties -Dkaraf.data=/nexus/nexus-data -Djava.io.tmpdir=data/tmp -Dkaraf.startLocalConsole=false |
Running Nexus as a Service
It is better to have a init.d entry to manage nexus service using the Linux service command. Follow the steps given below for the setup.
Step 1: Create a symbolic link for nexus service script to /etc/init.d folder.
|
1 |
sudo ln -s /app/nexus/bin/nexus /etc/init.d/nexus |
Step 2: Execute the following commands to add nexus service to boot.
|
1 2 3 |
sudo chkconfig --add nexus sudo chkconfig --levels 345 nexus on |
Manage Nexus Service
Now we have all the configurations in place. To start the Nexus service, use the following command.
|
1 |
sudo service nexus start |
The above command will start the nexus service on port 8081. To access the nexus dashboard, visit http://:8081. You will be able to see the nexus homepage as shown below.
To log in, use the default username and password.
|
1 2 3 |
User Name: admin Password: admin123 |
For stopping,
|
1 |
sudo service nexus stop |
For restarting,
|
1 |
sudo service nexus restart |
