1、生成ssh免密登录的密钥
#进入home目录下
[root@zhiyou01 /]# cd ~/.ssh
[root@zhiyou01 .ssh]#
[root@zhiyou01 .ssh]# ssh-keygen -t rsa #全部输回车
Generating public/private rsa key pair.
Enter file in which to save the key (/root/.ssh/id_rsa):
Enter passphrase (empty for no passphrase):
Enter same passphrase again:
Your identification has been saved in /root/.ssh/id_rsa.
Your public key has been saved in /root/.ssh/id_rsa.pub.
The key fingerprint is:
00:64:8c:5d:6a:fc:fc:70:16:62:de:b8:9e:15:b7:b6 root@zhiyou01
The key's randomart image is:
+--[ RSA 2048]----+
| =+.. |
| .ooo |
| + + . |
| . = = . |
| * S . |
| * o . |
| . o o |
| . o . . |
| o E |
+-----------------+
[root@zhiyou01 .ssh]#
[root@zhiyou01 .ssh]# ls
id_rsa id_rsa.pub known_hosts
会发现多了id_rsa (私钥) 和一个 id_rsa.pub(公钥)
2.把公钥拷贝到到要免密登录的机器上
ssh-copy-id ip地址
[root@zhiyou01 .ssh]# ssh-copy-id 192.168.233.129
免密登录的原理
1.在A 服务商上生成密钥 (公钥和私钥 ssh-keygen -t rsa)
2.将公钥拷贝给B服务器 (ssh-copy-id 192.168.233.129)B服务器上会生成一个
authorized_keys 文件
3.A向B发送一个请求
4.B获取到A的请求之后,在authorized_keys里面查找对应的(A的)用户名和ip,如果
有
,会生成一个随机的字符串,然后用A的公钥对该字符串进行加密,发送给A
5.A接收到B给的字符串,用私钥进行解密,然后把解密后的字符串再发给B
6.B接收到A的字符串,与生成的字符串进行对比,如果一样,运行免密;
作业:
3297 NodeManager
2866 SecondaryNameNode
2596 NameNode
3017 ResourceManager
2714 DataNode
这几个进程的作用
在Linux 中利用ssh免密登录
最新推荐文章于 2024-08-07 11:26:17 发布