作业:配置ssh免密登陆:客户端主机通过redhat用户基于秘钥验证方式进行远程连接服务器的root用户
1.实现免密登录
(1)使客户端产生公钥和私钥
产生的公钥和私钥都在用户家目录下的 .ssh/
[root@localhost ~]# useradd redhat -p redhat
[root@localhost ~]# yum install openssh
(2)将客户端的公钥id_rsa.pub放到服务端的 authorized_keys这个文件中
[root@localhost ~]# ssh-keygen -t rsa
[root@localhost ~]# ls -a
. .bash_history .bashrc .cshrc Downloads Pictures .tcshrc .viminfo
.. .bash_logout .cache Desktop .local Public Templates .Xauthority
anaconda-ks.cfg .bash_profile .config Documents Music .ssh Videos
[root@localhost ~]# cd .ssh/
[root@localhost .ssh]# ssh-copy-id -i ~/.ssh/id_rsa.pub 192.168.226.128
(3)免密登录成功
[root@localhost .ssh]# ssh root@192.168.226.128
2.设置允许redhat用户登录
(1)创建用户并为其设置密码
[root@localhost ~]# vim /etc/ssh/sshd_config
(2)修改sshd的配置文件
------在AllowUsers后面添加需登录的用户
AllowUsers redhat
重启服务
[root@localhost ~]# systemctl restart sshd
[root@localhost ~]# ssh root@192.168.226.128