实验要求:配置ssh免密登陆:客户端主机通过redhat用户基于秘钥验证方式进行远程连接服务器的root用户
第一步:root用户切换到redhat用户
[root@localhost ~]# su - redhat
[redhat@localhost ~]$
第二部:使用ssh-keygen生成公私钥
[redhat@localhost ~]$ ssh-keygen
Generating public/private rsa key pair.
Enter file in which to save the key (/home/redhat/.ssh/id_rsa):
Created directory '/home/redhat/.ssh'.
Enter passphrase (empty for no passphrase):
Enter same passphrase again:
Your identification has been saved in /home/redhat/.ssh/id_rsa.
Your public key has been saved in /home/redhat/.ssh/id_rsa.pub.
The key fingerprint is:
SHA256:OxQwbqbNfW3fG27wj7++ZWL7yJ7WEthn1+2Jfe8M41I redhat@localhost.localdomain
The key's randomart image is:
+---[RSA 3072]----+
| o |
| . o |
| + . |
| * . . . |
| . o S . oo o|
| . o ..oE.*|
| o .@B*|
| . .=+/B|
| +@@&|
+----[SHA256]-----+
[redhat@localhost ~]$
3.将公私钥传到服务端
[redhat@localhost ~]$ ssh-copy-id root@192.168.127.129
/usr/bin/ssh-copy-id: INFO: Source of key(s) to be installed: "/home/redhat/.ssh/id_rsa.pub"
The authenticity of host '192.168.127.129 (192.168.127.129)' can't be established.
ECDSA key fingerprint is SHA256:2xsL3gOP7bE86VBlm9JmrjPlpqSwSGNkk35fkGxkVZE.
Are you sure you want to continue connecting (yes/no/[fingerprint])? yes
/usr/bin/ssh-copy-id: INFO: attempting to log in with the new key(s), to filter out any that are already installed
/usr/bin/ssh-copy-id: INFO: 1 key(s) remain to be installed -- if you are prompted now it is to install the new keys
root@192.168.127.129's password:
Number of key(s) added: 1
Now try logging into the machine, with: "ssh 'root@192.168.127.129'"
and check to make sure that only the key(s) you wanted were added.
[redhat@localhost ~]$
4.登录服务端
[redhat@localhost ~]$ ssh root@192.168.127.129
Activate the web console with: systemctl enable --now cockpit.socket
This system is not registered to Red Hat Insights. See https://cloud.redhat.com/
To register this system, run: insights-client --register
Last login: Thu Mar 16 14:40:50 2023
[root@localhost ~]#
实验完成
扫一扫
502
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
