做一个免密登录的文档,用来记录遇到的小问题。
1、生成公钥秘钥
[app@salt-master ~]$ ssh-keygen -t rsa
Generating public/private rsa key pair.
Enter file in which to save the key (/home/app/.ssh/id_rsa):
/home/app/.ssh/id_rsa already exists.
Overwrite (y/n)? y
Enter passphrase (empty for no passphrase):
Enter same passphrase again:
Your identification has been saved in /home/app/.ssh/id_rsa.
Your public key has been saved in /home/app/.ssh/id_rsa.pub.
The key fingerprint is:
e4:75:f5:cb:2c:08:0c:85:96:58:6c:e6:de:18:40:4f app@salt-master
The key's randomart image is:
+--[ RSA 2048]----+
| ..+E+. . |
| ooBo . . |
| *..o. . .|
| = .... o .|
| . S . . + |
| o . . |
| |
| |
| |
+-----------------+
2、复制公钥到需要免密登录的服务器
[app@salt-master ~]$ cat .ssh/id_rsa.pub //查看公钥,需要复制到免密登录的服务器authorized_keys文件中
......
3、修改.ssh/目录和authorized_keys文件权限
如果没有authorized_keys文件时,自行创建的文件权限过大,会造成免密登录失败
chmod 644 ~/.ssh/authorized_keys
chmod 700 ~/.ssh
修改完成后,即可正常免密登陆。