1.生成用于SSH的公钥和私钥(后面的直接回车)
[root@sz-host ~]# ssh-keygen -t rsa
Generating public/private rsa key pair.
Enter file in which to save the key (/root/.ssh/id_rsa):
/root/.ssh/id_rsa already exists.
Overwrite (y/n)?
[root@sz-host ~]#
2.导入公钥
cat ~/.ssh/id_rsa.pub >> ~/.ssh/authorized_keys
3. 设置文件(读写)和文件夹(读写执行)权限【重要】
[root@sz-host .ssh]# chmod -R 700 ~/.ssh
[root@sz-host .ssh]# chmod 600 ~/.ssh/authorized_keys
4.修改sshd_config 配置文件,支持使用证书登录,需要root权限,然后重启sshd
vim /etc/ssh/sshd_config
:set nu (设置行号)
//第43行
43 #PubkeyAuthentication yes