1. 功能
服务器之间建立免密登录,ssh时可以不用输入密码。
2. 步骤
目的:建立服务器A到B的免密登录,使得可以在A上直接ssh到B服务器,而且不需要输入密码。
# 1.使用ssh-keygen命令在服务器A上生成密钥
[root@localhost ~]# ssh-keygen
Generating public/private rsa key pair.
Enter file in which to save the key (/root/.ssh/id_rsa):
Enter passphrase (empty for no passphrase):
Enter same passphrase again:
Your identification has been saved in /root/.ssh/id_rsa.
Your public key has been saved in /root/.ssh/id_rsa.pub.
The key fingerprint is:
bb:a5:da:d3:f9:d4:1e:05:bb:d0:99:44:9f:0f:87:55 root@localhost.localdomain
The key's randomart image is:
+--[ RSA 2048]----+
| . E|
| . +.|
| =.o|
| o B.|
| S . = o|
| . o o |
| ..... + |
| ..+o. . . |
| ..+. .. . |
+-----------------+
# 2. 使用ssh-copy-id命令拷贝密钥到B(1.1.1.2)服务器上
ssh-copy-id -i /root/.ssh/id_rsa.pub 1.1.1.2
# 2. 或者直接登录B服务器,把A服务器的密钥(/root/.ssh/id_rsa.pub)
# 追加到B服务器的认证文件(/root/.ssh/authorized_keys)