进行免密码验证配置之前,要保证机器可以正常通信。
1、首先在MASTER机器配置
进去.ssh文件夹: [spark@MASTER sbin]$ cd~/.ssh/
生成秘钥 ssh-keygen : ssh-keygen -t rsa ,一路狂按回车键就可以了
最终生成(id_rsa,id_rsa.pub两个文件)
生成authorized_keys文件:[spark@MASTER .ssh]$ catid_rsa.pub >> authorized_keys
2、在另两台SLAVE机器也生成公钥和秘钥
步骤跟MASTER是类似的
进去.ssh文件: [spark@MASTER sbin]$ cd~/.ssh/
生成秘钥 ssh-keygen :ssh-keygen -t rsa ,一路狂按回车键就可以了
最终生成(id_rsa,id_rsa.pub两个文件)
3、将两台SLAVE机器的id_rsa.pub文件copy到MASTER机器:
[spark@SLAVE .ssh]$ scp id_rsa.pub spark@172.16.107.9:~/.ssh/id_rsa.pub_sl1
[spark@SLAVE .ssh]$ scp id_rsa.pub spark@172.16.107.9:~/.ssh/id_rsa.pub_sl2
4、切换到机器MASTER合并authorized_keys;
[spark@MASTER .ssh]$ cat id_rsa.pub_sl1>> authorized_keys
[spark@MASTER .ssh]$ cat id_rsa.pub_sl2 >>authorized_keys
5、将authorized_keyscopy到两台SLAVE机器(/home/spark/.ssh):
[spark@MASTER .ssh]$ scpauthorized_keys spark@172.16.107.8:~/.ssh/
[spark@MASTER .ssh]$ scpauthorized_keys spark@172.16.107.7:~/.ssh/
6、更改文件夹权限
现在将Master机器和两台slave机器.ssh/文件夹权限改为700,authorized_keys文件权限改为600(or 644)
chmod 700 ~/.ssh
chmod 600 ~/.ssh/authorized_keys
7、完成以上操作后可以开始ssh验证了
Master ssh slave:
[spark@localhost ~]$ ssh 172.16.107.8
Last login: Thu Oct 22 08:04:00 2015 from172.16.107.135
[spark@localhost ~]$ ssh 172.16.107.7
Last login: Thu Oct 22 08:04:03 2015 from172.16.107.135
Slave ssh Master:
[spark@localhost ~]$ ssh 172.16.107.9
Last login: Thu Oct 22 07:52:20 2015 from172.16.107.135
[spark@localhost ~]$ ssh 172.16.107.9
Last login: Thu Oct 22 08:50:46 2015 from172.16.107.8
顺利完成ssh免密码验证。
参考:
http://blog.csdn.net/stark_summer/article/details/42393053