#1.生成密钥对,将公钥发送给所有服务器[lhd@m01 ~]$ su -
Password:
Last login: Tue Jan 716:42:31 CST 2020 from 10.0.0.1 on pts/0
[root@m01 ~]# ssh-keygen
Generating public/private rsa key pair.
Enter fileinwhich to save the key (/root/.ssh/id_rsa):
Created directory '/root/.ssh'.
Enter passphrase (empty for no passphrase):
Enter same passphrase again:
Your identification has been saved in /root/.ssh/id_rsa.
Your public key has been saved in /root/.ssh/id_rsa.pub.
The key fingerprint is:
SHA256:nm45DrdRcidakKmFVYM6hqygb7waMNdJA0UHIIlMSWg root@m01
The key's randomart image is:
+---[RSA 2048]----+
|B++++.. .oo |
|+E . . o.o . |
|. .o...= |
|. ooo+o . |
|+...o...S = . |
|oo. . B o |
|.o . *. |
| .+ ++o |
|.o.. o+. |
+----[SHA256]-----+
#手动推送公钥
[root@m01 ~]# echo '172.16.1.'{4,5,6,7,8,9,31,41,51,71}|xargs -n1 sshpass -p 1 ssh-copy-id -o StrictHostKeyChecking=no
#用脚本推送公钥到所有主机[root@m01 ~]# vim ssh-keygen.sh#!/bin/bash#免交互分发公钥foripin78931415171do
sshpass -p 1 ssh-copy-id -o StrictHostKeyChecking=no "root@172.16.1.$ip"done#推送公钥时不用输入yes确认
ssh-copy-id -o StrictHostKeyChecking=no
#推送公钥时不用输入密码,1就是密码
sshpass -p 1[root@m01 ~]# yum install sshpass[root@m01 ~]# sh ssh.sh#2.关闭除m01/lb01/lb02以外的所有机器的外网[root@web01 ~]# ifdown eth0... ...
#3.使用m01连接所有的机器[lhd@m01 ~]$ su -
Password:
Last login: Tue Jan 717:08:54 CST 2020 on pts/1
[root@m01 ~]# ssh 172.16.1.7
Last login: Tue Jan 717:20:41 2020 from 10.0.0.1
[root@web01 ~]# #4.给所有机器创建用户[root@m01 ~]# groupadd www -g 666[root@m01 ~]# useradd www -u 666 -g 666