linux利用密钥远程登陆
网路配置:vim /etc/sysconfig/network-scripts/ifcfg-eth0 远程登录linux操作系统:软件:putty,Xshell,SecureCRT 通过秘钥进行SSH加密链接: 用PuttYgen生成秘钥,并保存好 # mkdir /root/.ssh/# chmod 700 /root/.ssh/ <==更改目录权限# vi/root/.ssh/authorized_keys <== 将秘钥粘贴进来,退出保存# chmod 600/root/.ssh/authorized_keys <==更改文件权限# setenforce 0 <== 临时关闭selinux 永久关闭selinux# vi /etc/selinux/config<==修改selinux配置 修改SELINUX=enforcing ==> SELINUX=disabled 注:selinux三个选项:enforcing,开启SELINUX安全防护 permissive,关闭SELINUX安全防护,但是警告 disabled,不加载SELINUX安全防护 在putty中SSH中Auth选项中添加私有秘钥文件位置 扩展内容:服务端与客户端ssh密钥对联机,无密码联机 1 )首先需要在客户端ssh-keygen生成密钥对,公钥与私钥# ssh-keygenGenerating public/private rsa key pair.# 生成公共/私有密钥对 Enter file in which to save the key(/root/.ssh/id_rsa):# 输入保存密钥文件中/root/.ssh/id_rsaEnter passphrase (empty for no passphrase):# 输入密码(无密码为空)Enter same passphrase again:# 再次确认密码Your identification has beensaved in /root/.ssh/id_rsa.# 你的身份验证保存于/root/.ssh/id_rsaYour public key has been saved in/root/.ssh/id_rsa.pub.# 你的公共密钥保存于/root/.ssh/id_rsa.pubThe key fingerprint is:# 91:cc:42:a3:69:4b:ba:0e:7a:14:a9:dd:66:12:c5:5droot@localhost.localdomainThe key's randomart image is:# 随机的图像密钥为:+--[ RSA 2048]----+| . .o.E || o+.+ . || o= . = ||++ . . . || o.+. S ||. +.+ ||...+ ||.o. ||... |+-----------------+# 2 )将公钥上传到服务端中,公钥保存在 $HOME/.ssh/id_rsa.pub# scp~/.ssh/id_rsa.pub root@192.168.10.20:/tmp# cat ~/tmp/id_rsa.pub >~/.ssh/authorized_keys登录到服务器,修改权限chmod 700 /root/.ssh/chmod 600 /root/.ssh/authorized_keys这样有客户端登录linux操作系统就不用输入密码,就可以登录了。 3 )执行下面的命令,就可以不需要密码就可以进行ssh无密码登录 扩展内容:两台服务器之间通过密匙登录,无需输入密码。(参考上述的扩展内容既可以完成)。
页:
[1]