ntp和ssh命令

于 2023-03-24 15:58:46 发布
阅读量6.6k 收藏 1
点赞数 1
分类专栏: RHCE 文章标签: ssh 服务器 linux
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/plzdonotlietome/article/details/129752464
版权

一、配置ntp时间服务器,确保客户端主机能和服务主机同步时间

1.关闭防火墙、selinux:

[root@server ~]# systemctl  stop  firewalld
[root@server ~]# setenforce 0
[root@server ~]# getenforce
Permissive

2.服务器主机从阿里云同步时间

root@server ~]# vim  /etc/chrony.conf

3.重启服务,查看服务器主机是否同步

[root@server ~]# systemctl restart chronyd
[root@server ~]# chronyc sources -v
 
  .-- Source mode  '^' = server, '=' = peer, '#' = local clock.
 / .- Source state '*' = current best, '+' = combined, '-' = not combined,
| /             'x' = may be in error, '~' = too variable, '?' = unusable.
||                                                 .- xxxx [ yyyy ] +/- zzzz
||      Reachability register (octal) -.           |  xxxx = adjusted offset,
||      Log2(Polling interval) --.      |          |  yyyy = measured offset,
||                                \     |          |  zzzz = estimated error.
||                                 |    |           \
MS Name/IP address         Stratum Poll Reach LastRx Last sample               
===============================================================================
^* 203.107.6.88                  2   6    17     9  +8156ns[ +654us] +/-   24ms
[root@server ~]# timedatectl status 
               Local time: 六 2023-03-18 19:32:49 CST
           Universal time: 六 2023-03-18 11:32:49 UTC
                 RTC time: 六 2023-03-18 11:32:49
                Time zone: Asia/Shanghai (CST, +0800)
System clock synchronized: yes
              NTP service: active
          RTC in local TZ: no
[root@server ~]# date 
2023年 03月 18日 星期六 19:32:51 CST

 4.配置允许访问的IP,并重启服务

[root@server ~]# vim /etc/chrony.conf 


[root@server ~]# systemctl restart chronyd

 5.对于客户端修改主配置文件中时间服务器地址,并重启服务

[root@server ~]# vim /etc/chrony.conf 

[root@server ~]# systemctl restart chronyd

 6.查看客户端是否同步

[root@node1 ~]# systemctl restart chronyd
[root@node1 ~]# chronyc sources -v
 
  .-- Source mode  '^' = server, '=' = peer, '#' = local clock.
 / .- Source state '*' = current best, '+' = combined, '-' = not combined,
| /             'x' = may be in error, '~' = too variable, '?' = unusable.
||                                                 .- xxxx [ yyyy ] +/- zzzz
||      Reachability register (octal) -.           |  xxxx = adjusted offset,
||      Log2(Polling interval) --.      |          |  yyyy = measured offset,
||                                \     |          |  zzzz = estimated error.
||                                 |    |           \
MS Name/IP address         Stratum Poll Reach LastRx Last sample               
===============================================================================
^? 192.168.38.128                3   6     3     1  -9426us[-9426us] +/-   26ms
[root@node1 ~]# timedatectl status 
               Local time: 六 2023-03-18 19:40:03 CST
           Universal time: 六 2023-03-18 11:40:03 UTC
                 RTC time: 六 2023-03-18 11:40:03
                Time zone: Asia/Shanghai (CST, +0800)
System clock synchronized: yes
              NTP service: active
          RTC in local TZ: no
[root@node1 ~]# date 
2023年 03月 18日 星期六 19:40:09 CST

二、配置ssh免密登陆,能够通过客户端主机通过redhat用户和服务端主机基于公钥验证方式进行远程连接

1.创建新用户redhat

[root@node1 ~]# useradd redhat        
[root@node1 ~]# passwd redhat 
更改用户 redhat 的密码 。
新的密码: 
重新输入新的密码: 
passwd:所有的身份验证令牌已经成功更新。

2.创建新的密钥对,并且发送到指定目录

[redhat@node1 root]$ ssh-keygen -t rsa
Generating public/private rsa key pair.
Enter file in which to save the key (/home/redhat/.ssh/id_rsa): 
Enter passphrase (empty for no passphrase): 
Enter same passphrase again: 
Your identification has been saved in /home/redhat/.ssh/id_rsa
Your public key has been saved in /home/redhat/.ssh/id_rsa.pub
The key fingerprint is:
SHA256:peN3IXp4nusrQ5Ca/umHNzX6fO6SPJSSf6LCnv2mNc8 redhat@node1
The key's randomart image is:
+---[RSA 3072]----+
|                 |
|                 |
|       .  .      |
|      o  o       |
|     o .S....    |
|    o  .++=. .   |
|   . . o+B*o.    |
|    . ++BBO*o    |
|     +*++@X@E    |
+----[SHA256]-----+
[redhat@node1 root]$ 
[redhat@node1 root]$ ssh-copy-id root@192.168.38.128
/usr/bin/ssh-copy-id: INFO: Source of key(s) to be installed: "/home/redhat/.ssh/id_rsa.pub"
/usr/bin/ssh-copy-id: INFO: attempting to log in with the new key(s), to filter out any that are already installed
/usr/bin/ssh-copy-id: INFO: 1 key(s) remain to be installed -- if you are prompted now it is to install the new keys
root@192.168.38.128's password: 
 
Number of key(s) added: 1
 
Now try logging into the machine, with:   "ssh 'root@192.168.38.128'"
and check to make sure that only the key(s) you wanted were added.

3.客户端测试

[redhat@node1 root]$ ssh root@192.168.38.128
Activate the web console with: systemctl enable --now cockpit.socket
 
Register this system with Red Hat Insights: insights-client --register
Create an account or view all your systems at https://red.ht/insights-dashboard
Last login: Sat Mar 18 19:58:18 2023 from 192.168.38.136
[root@server ~]# 
[root@server ~]# 
[root@server ~]#

O.O.O.O.O.O
关注
专栏目录
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包

打赏作者

O.O.O.O.O.O

你的鼓励将是我创作的最大动力

¥1 ¥2 ¥4 ¥6 ¥10 ¥20
扫码支付:¥1
获取中
扫码支付

您的余额不足,请更换扫码支付或充值

打赏作者

实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值