Linux 操作系统中,不仅可以使用密码来实现身份验证,还能使用秘钥来进行身份验证。
具体步骤:
在设备上,执行 ssh-keygen 生成一对秘钥(公钥+私钥) 公钥用于加密,私钥用于解密
私钥只有拥有者才可以获得,注意他的安全性,不要泄露。
[root@controller lzh]# ssh-keygen
[root@controller lzh]# ssh-keygen
Generating public/private rsa key pair.
Enter file in which to save the key (/root/.ssh/id_rsa): 回车
Enter passphrase (empty for no passphrase): 回车
Enter same passphrase again:回车
Your identification has been saved in /root/.ssh/id_rsa.
Your public key has been saved in /root/.ssh/id_rsa.pub.
The key fingerprint is:
SHA256:mrTbhLc4XGIjCuwIvDjiOy78oz98R6Ga1J9ihJzIIFI root@controller
The key's randomart image is:
+---[RSA 3072]----+
| |
| E |
| . |
|+ . |
|B o + o S |
|o= =.=+*. |
|*.+.++B++ |
|*=.* +oX . |
|=**o= =.o |
+----[SHA256]-----+
将公钥发给登陆的设备,输入root密码
[root@controller lzh]# ssh-copy-id -i /root/.ssh/id_rsa.pub IP地址
登陆验证,不需要输入密码