使用client的xiaoming用户基于密钥认证方式通过端口2000使用ssh登录server端的小明用户和xiaohei用户,server端的其他用户都不可被远程登录
服务端:hostname server
1.装包openssh,关闭防火墙和selinux
[root@server ~]# rpm -qa | grep openssh
openssh-server-8.0p1-4.el8_1.x86_64
openssh-clients-8.0p1-4.el8_1.x86_64
openssh-8.0p1-4.el8_1.x86_64
2.修改配置文件
[root@server ~]# vim /etc/ssh/sshd_config
添加端口号2000 port 2000
添加白名单 allowusers xiaoming xiaohei
3.重启服务
4.添加xiaoming xiaohei用户,并设置相应密码(之后在客户端测试)
客户端:client
1.装包openssh,关闭防火墙和selinux
[root@client ~]# rpm -qa | grep openssh
openssh-server-8.0p1-4.el8_1.x86_64
openssh-clients-8.0p1-4.el8_1.x86_64
openssh-8.0p1-4.el8_1.x86_64
2.测试xiaoming用户通过密码登录
[root@client ~]# ssh xiaoming@192.168.168.130 -p 2000
The authenticity of host ‘[192.168.168.130]:2000 ([192.168.168.130]:2000)’ can’t be established.
ECDSA key