在安装ansible时,首先需要配置无密码登陆,通常时通过ssh-copy-id来实现的。但是如果远程主机过多的话,一台台操作工作量也是很大的,因此本文主要是实现ssh-copy-id的自动化认证。
原理:通过bash脚本调用expect脚本,并且传递相应的主机参数和密码等信息
ssh.sh脚本:
~]$ cat ssh.sh
#!/bin/bash
password='123456'
sum_succ=0
sum_fail=0
ip=`echo -n $(seq -s',' 100 101),111 | xargs -d',' -i echo {}` ##此处设定ip
echo $ip
host_number=`echo $ip | wc -w`
for i in $ip ;do
host=192.168.99.$i
echo -e "###start add ${host}###"
/usr/bin/expect /home/xjw/tmp/ssh-copy-id.exp $host $password
if [ $? == '0' ];then
echo "mission ssh-copy-id for host ${host} complete"
sum_succ=$(($sum_succ+1))
else
echo "mission ssh-copy-id for host ${host} failed"
sum_fail=$(($sum_fail+1))
fi
sleep 1
done
echo -e "### mission complete,all host:[${host_number}];success host:[${sum_succ}];failed host:[${sum_fail}] ###"
expect脚本
~]$ cat ssh-copy-id.exp
#!/usr/bin/expect
set timeout 10
set host [lindex $argv 0]
set password [lindex $argv 1]
spawn ssh-copy-id $host
expect {
"(yes/no)?"
{
send "yes\n"
expect "*password: " {send "$password\n" }
}
"*password: " { send "$password\n"}
}
expect eof
1.这组脚本只需要执行ssh.sh即可,这个脚本会自动调用expect脚本
2.ssh-copy-id已经成功添加了的主机不能再次执行脚本添加,会报失败
3.主机参数和密码参数可根据需要自定义设置
bonus:
~]$ echo -n "$(seq -s "," 59 65),150" | xargs -d "," -i echo 192.168.100.{}
#此语句可以自定义设置有序序列+无序序列的数据列表,比较灵活,编写其他脚本时可能会用到
-n:在seq命令执行完后不打印回车,否则此序列打印完后会多一行空格
-s与-d:设置分隔符,用于添加其他自定义的数字