第一步:生成非对称密钥
[root@client ~]# ssh-keygen -t rsa
Generating public/private rsa key pair.
Enter file in which to save the key (/root/.ssh/id_rsa):
Enter passphrase (empty for no passphrase):
Enter same passphrase again:
Your identification has been saved in /root/.ssh/id_rsa
Your public key has been saved in /root/.ssh/id_rsa.pub
The key fingerprint is:
SHA256:bqoE/QTn6QgpbHm+U/u4vgWoBn4EN/bEfkCJV/Wsbyk root@server
The key's randomart image is:
+---[RSA 3072]----+
| ..o... |
| .oo o |
| . +o+. o |
|. =o*+.. . |
|o+++.++.S. |
|+.=o *o. . . |
| + o+ +.oE + |
|. .o..oo o |
| .+*=. |
+----[SHA256]-----+
第二步:把当前主机.ssh/id_rsa.pub 文件发送到需要连接的主机的
[root@client ~]# ssh-copy-id 192.168.81.129
The authenticity of host '192.168.81.129 (192.168.81.129)' can't be established.
ED25519 key fingerprint is SHA256:aqCvx7Ljp6JbGXtecOTlC2LZAy1Fs/qzjuvCvXOl4WU.
This key is not known by any other names
Are you sure you want to continue connecting (yes/no/[fingerprint])? yes
/usr/bin/ssh-copy-id: INFO: attempting to log in with the new key(s), to filter out any that are already installed
/usr/bin/ssh-copy-id: INFO: 1 key(s) remain to be installed -- if you are prompted now it is to install the new keys
root@192.168.81.129's password:
Number of key(s) added: 1
Now try logging into the machine, with: "ssh '192.168.81.129'"
and check to make sure that only the key(s) you wanted were added.
第三步:连接
[root@client ~]# ssh 192.168.81.129
Activate the web console with: systemctl enable --now cockpit.socket
Register this system with Red Hat Insights: insights-client --register
Create an account or view all your systems at https://red.ht/insights-dashboard
Last login: Wed Jan 10 17:41:47 2024
[root@server ~]# ll .ssh/
总用量 4
-rw-------. 1 root root 562 1月 28 17:57 authorized_keys