配置ssh实现多台互信,其作用是实现多台机器免密码登陆。在集群中,配置多台互信是十分必要的,由于机器条件关系,我演示两台互信:
环境简述:
两台虚拟机:hadoop 192.168.137.5和hadoop2 193.168.137.6
版本:CentOS6.5
一.基础配置
hadopp的操作
- 下载sshd
yum install sshd
- 生成.shh文件(注意权限数字),一直回车
ssh-keygen
- 查看文件
hadoop:root:/root/.ssh:>ll
total 12
-rw------- 1 root hadoop 1675 Feb 10 23:29 id_rsa
-rw-r--r-- 1 root hadoop 393 Feb 10 23:29 id_rsa.pub
-rw-r--r--. 1 root root 391 Dec 3 14:05 known_hosts
hadoop2的操作:
- 下载sshd
yum install sshd
- 生成.shh文件(注意权限数字),一直回车
ssh-keygen
- 查看文件
hadoop:root:/root/.ssh:>ll
total 12
-rw------- 1 root hadoop 1675 Feb 10 23:29 id_rsa
-rw-r--r-- 1 root hadoop 393 Feb 10 23:29 id_rsa.pub
-rw-r--r--. 1 root root 391 Dec 3 14:05 known_hosts
二.生成authorized_keys文件
- 将hadoop2的id_rsa.pub复制到hadoop的.ssh文件下,并更名为id_rsa.pub2(若不更名,则将目标文件的公钥覆盖了)
hadoop2:root:/root/.ssh:>scp id_rsa.pub 192.168.137.5:/root/.ssh/id_rsa.pub2
- 创建authorized_keys文件,并将id_rsa.pub和id_rsa.pub2追加到authorized_keys文件中
hadoop:root:/root/.ssh:>cat id_rsa.pub >> authorized_keys
hadoop:root:/root/.ssh:>cat id_rsa.pub2 >> authorized_keys
- 查看authorized_keys文件
hadoop:root:/root/.ssh:>cat authorized_keys
ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEApK6wklpwKgMj8YvnM0cbJ1l8a3RVTbSocuD3GfhhjfC2dWyLjqFjT+dadyIRy27dvK1tsXCwqqs97ySkFS1f1E8Ema5rJjgYwEmKiH67RGaroOY8lb9lfD9XoMuaROnE+OQbzfk0opCUJPaNMXJt+Lqn64Pgz0CJSyf98wRCOaEJP+89m/WK9TaXZ7z0LW7JNuQ4aV0VeGoOu2UnsCleU58/MRzozzCn8qeXVcsA5uLZ3zgS5t36S4he9LKI8V5yZKyDAmiBQDm3+m9yXHdLb3/3+/537fQPMjfGKpWPou66FJwx8ZGUc5pmQFW2o1OVD3SB09JSQn0zvTRtS/ZY+w== root@hadoop
ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEAzHzNKoogx+vqKvKwWSzugDinMB/Do6xh9gRHkGy+sjSuKzKIy68oEr5qnZWwUbiqoD8F/+xEpYr7LlyDlFdlhhyXeHc66Ca+jseOeIH+4aY4BfPeS09O9fFaSU+6klsdQhpgC0Dz2r88YUIvePC2yHpeEaC7G0PLoadK/LsWCrcWwNF2hY7zRJ/GJIHEY6V2obR/wDQS1XIQlKpd7n8J0k4vQXir+MD7rEVqkcJvsdy4kObIPeXtx5DgnF6Ec1udtCMmedSoLD1EEnDA1pgtA5jX5LZpxFiQ6rk1a+csgnpmCk5QO7yltbQtvHU+vfl3LjaCBQokg6Ii/yZz4h3H+w== root@hadoop2
三.互相建立连接
- 互相ssh:hadoop ->hadoop2 ssh 且hadoop2 ->hadoop ssh
- ssh自己:hadoop ->hadoop ssh 且hadoop2 ->hadoop2 ssh
例:
hadoop:root:/root/.ssh:>ssh hadoop date
The authenticity of host 'hadoop (192.168.137.5)' can't be established.
RSA key fingerprint is da:f8:30:64:02:f6:ab:2e:7a:70:41:7d:40:d1:cb:c3.
Are you sure you want to continue connecting (yes/no)? yes
Warning: Permanently added 'hadoop,192.168.137.5' (RSA) to the list of known hosts.
Sat Feb 10 23:43:08 EST 2018
若泽大数据交流群:671914634