環(huán)境:
本地主機(jī):ha01
eth0: 192.168.1.100 //對(duì)外IP地址
遠(yuǎn)程主機(jī):ha02
eth0: 192.168.1.200 //對(duì)外IP地址
本地主機(jī)ha01配置:
復(fù)制代碼 代碼如下:
[root@ha01 /]# cd /etc/ssh
[root@ha01 ssh]# ssh-keygen -t rsa -N "" (該步驟生成key公私密鑰對(duì),-N ""表示密鑰對(duì)短語(yǔ)為空)
Generating public/private rsa key pair.
Enter file in which to save the key (/root/.ssh/id_rsa):
Your identification has been saved in /root/.ssh/id_rsa.
Your public key has been saved in /root/.ssh/id_rsa.pub.
The key fingerprint is:
82:2c:74:43:8e:16:f4:ef:ac:91:0f:d7:6f:a6:f3:59 root@ha01
復(fù)制公共密鑰到遠(yuǎn)程主機(jī)(原始方法):
若ha02服務(wù)器上/root/.ssh/authorized_keys文件不存在
復(fù)制代碼 代碼如下:
[root@ha01 ssh]# scp /root/.ssh/id_rsa.pub root@192.168.1.200:/root/.ssh/authorized_keys
若authorized_keys文件存在
ha01上執(zhí)行:
復(fù)制代碼 代碼如下:
[root@ha01 ssh]# scp /root/.ssh/id_rsa.pub root@192.168.1.200:/root/.ssh/
ha02上執(zhí)行:
復(fù)制代碼 代碼如下:
[root@ha02 /]# cat /root/.ssh/id_rsa.pub >> /root/.ssh/authorized_keys
復(fù)制公共密鑰到遠(yuǎn)程主機(jī)(新方法):
可以使用ssh-copy-id方便安全的將公共密鑰復(fù)制到遠(yuǎn)程主機(jī)
ha01上執(zhí)行:
復(fù)制代碼 代碼如下:
[root@ha01 ssh]# ssh-copy-id -i ~/.ssh/id_rsa.pub root@192.168.1.200
SSH登錄測(cè)試:
復(fù)制代碼 代碼如下:
[root@ha01 ssh]# ssh ha02
Last login: Fri Apr 8 10:41:28 2011 from ha01
