终端通过密钥方式登录 Linux

一、 密钥对生成
注意：本地主机和目的主机需 ping 通
1）确认服务器是否安装有 ssh 以及openssh服务端

?

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15

[zyy@kube-master ~]$ rpm -qa |grep openssh openssh-6.6.1p1-25.el7_2.x86_64 openssh-clients-6.6.1p1-25.el7_2.x86_64 openssh-server-6.6.1p1-25.el7_2.x86_64 [zyy@kube-master ~]$ [zyy@kube-master ~]$ [zyy@kube-master ~]$ systemctl status sshd ● sshd.service - OpenSSH server daemon    Loaded: loaded (/usr/lib/systemd/system/sshd.service; enabled; vendor preset: enabled)    Active: active (running) since Mon 2018-05-21 17:40:41 CST; 22h ago      Docs: man:sshd(8)            man:sshd_config(5)  Main PID: 10690 (sshd)    CGroup: /system.slice/sshd.service            └─10690 /usr/sbin/sshd -D

2）在目的主机切换到需要使用密钥登录的账户，生成密钥对

?

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22

[zyy@kube-master ~]$ ssh-keygen Generating public/private rsa key pair. Enter file in which to save the key (/home/zyy/.ssh/id_rsa): Created directory '/home/zyy/.ssh'. Enter passphrase (empty for no passphrase): Enter same passphrase again: Your identification has been saved in /home/zyy/.ssh/id_rsa. Your public key has been saved in /home/zyy/.ssh/id_rsa.pub. The key fingerprint is: 1d:46:32:22:37:b3:ff:f1:14:d9:6f:3c:19:cb:4a:11 zyy@kube-master The key's randomart image is: +--[ RSA 2048]----+ |    . = o .  E   | |     o = +   o.  | |      .   o o... | |       . o . .oo+| |        S o .. =+| |         . +. ...| |          . ..   | |                 | |                 | +-----------------+

3）查看生成的密钥、公钥对，权限均设置为 600

 

?

1 2 3 4

[zyy@kube-master .ssh]$ ll total 8 -rw------- 1 zyy zyy 1679 May 22 16:32 id_rsa           #  私钥 -rw-r--r-- 1 zyy zyy  397 May 22 16:32 id_rsa.pub       #  公钥

4）根据需要修改登录方式

?

1 2 3 4 5

修改 sshd 连接配置文件 vim /etc/ssh/sshd_config   PasswordAuthentication no                         # 不允许密码验证登录 PubkeyAuthentication yes                          # 允许公钥验证登录 AuthorizedKeysFile .ssh/id_rsa.pub                # 指定公钥文件路径

5）将私钥和公钥导出来保存备用

?

1	[zyy@kube-master .ssh]$ sz id_rsa id_rsa.pub

6）在服务器没有加入认证

?

1 2 3 4 5 6 7 8 9 10 11

将公钥追加到一个文件，命名为authorized_keys [zyy@kube-master .ssh]$ cat id_rsa.pub >authorized_keys   将文件权限设置为 600 [zyy@kube-master .ssh]$ chmod 600 authorized_keys [zyy@kube-master .ssh]$ [zyy@kube-master .ssh]$ ll total 12 -rw------- 1 zyy zyy  397 May 22 16:47 authorized_keys -rw------- 1 zyy zyy 1679 May 22 16:32 id_rsa -rw------- 1 zyy zyy  397 May 22 16:32 id_rsa.pub

?

1	#重启ssh<br>service sshd restart

二、使用 Taddy 连接

 

__EOF__

本文作者：东峰叵.com
本文链接：https://www.cnblogs.com/databank/p/17451602.html
关于博主：评论和私信会在第一时间回复。或者直接私信我。
版权声明：本博客所有文章除特别声明外，均采用 BY-NC-SA 许可协议。转载请注明出处！
声援博主：如果您觉得文章对您有帮助，可以点击文章右下角【推荐】一下。您的鼓励是博主的最大动力！