ssh-keygen -t rsa
cd ~/.ssh
ssh-copy-id 10.10.20.20 #需要免密登录的机器IP
[root@localhost ~]# ssh-keygen -t rsa
Generating public/private rsa key pair.
Enter file in which to save the key (/root/.ssh/id_rsa): #回车
Created directory '/root/.ssh'.
Enter passphrase (empty for no passphrase): #回车
Enter same passphrase again: #回车
Your identification has been saved in /root/.ssh/id_rsa.
Your public key has been saved in /root/.ssh/id_rsa.pub.
The key fingerprint is:
SHA256:cS2kx7tdbo5fqJfGhOCMBCQmssIPJQ6TsclU02JSrv0 root@localhost.localdomain
The key's randomart image is:
+---[RSA 2048]----+
|==+=+.. . |
|BB+=.o. + . |
|==o.. .o = . |
|. = .+.o |
| . o .S+.. .. |
| . . oo.o.. |
| E . .o+..|
| ==. |
| o+o |
+----[SHA256]-----+
[root@localhost ~]# cd ~/.ssh/
[root@localhost .ssh]# ls
id_rsa id_rsa.pub #id_rsa:私钥 id_rsa.pub:公钥(免密登录用到公钥)
[root@localhost .ssh]# ssh-copy-id 10.10.20.20 #拷贝公钥到目标机器
/usr/bin/ssh-copy-id: INFO: Source of key(s) to be installed: "/root/.ssh/id_rsa.pub"
The authenticity of host '10.10.20.20 (10.10.20.20)' can't be established.
ECDSA key fingerprint is SHA256:eI+e8GcS+stJZGnAsTFkY6iOyhAva/bgh1/D56TTf8w.
ECDSA key fingerprint is MD5:21:ab:71:85:88:b5:bb:53:1d:df:db:e4:80:a6:61:63.
Are you sure you want to continue connecting (yes/no)? yes
/usr/bin/ssh-copy-id: INFO: attempting to log in with the new key(s), to filter out any that are already installed
/usr/bin/ssh-copy-id: INFO: 1 key(s) remain to be installed -- if you are prompted now it is to install the new keys
root@10.10.20.20's password:
Number of key(s) added: 1
Now try logging into the machine, with: "ssh '10.10.20.20'"
and check to make sure that only the key(s) you wanted were added.