SSH 互信

A:master

B:server

在A B机器 当前用户的绝对目录 进行创建 .ssh 

# mkdir ~/.ssh
# chmod 700 .ssh/
# /usr/bin/ssh-keygen -t rsa
Generating public/private rsa key pair.
Enter file in which to save the key (/root/.ssh/id_rsa):
Enter passphrase (empty for no passphrase):
Enter same passphrase again:
Your identification has been saved in /root/.ssh/id_rsa.
Your public key has been saved in /root/.ssh/id_rsa.pub.
The key fingerprint is:
41:21:31:03:97:5b:b2:c6:32:07:98:a5:4c:7d:28:c1 root@10-205-203-191
The key's randomart image is:
+--[ RSA 2048]----+
| .o*oo*oo. |
| oE.+.+=. |
| o. + =. |
| o * . |
| = S |
| |
| |
| |
| |
+-----------------+

# cat ~/.ssh/id_rsa.pub >> ~/.ssh/authorized_keys
# chmod 600 ~/.ssh/authorized_keys

拷贝 master 远程机器的 authorized_keys;粘贴到被远程的server 机器上; 然后直接远程就可以了

 

2、可以设置一个脚本进行执行;

然后把堡垒机的auth 拷贝到服务的机器上;

# cat in.sh

# cat in.sh

mkdir ~/.ssh chmod 700 .ssh/ /usr/bin/ssh-keygen -t rsa cat ~/.ssh/id_rsa.pub >> ~/.ssh/authorized_keys chmod 600 ~/.ssh/authorized_keys

 

posted @ 2018-06-20 18:09  01234567  阅读(150)  评论(0编辑  收藏  举报