两台服务器实现免密登录

两台服务器实现免密登录

可以用于配置多台（>2）服务器之间的免密登录

使用shell的远程操作命令ssh，通过ssh协议，连接192.168.100.148服务器，执行echo 1命令。

ssh 192.168.100.148 'echo 1' 

输出如下：

[root@hadoop001 ~]# ssh 192.168.100.148 'echo 1' root@192.168.100.148's password:  1 

需要输入192.168.100.148的登录密码

现在实现免密登录

目标：231访问248不需要输入密码

1、231生成密钥对

# cd /root/.ssh (如果没有.ssh, 请在root目录下mkdir .ssh chmod 755 .ssh) # ssh-keygen -t rsa Generating public/private rsa key pair. Enter file in which to save the key (/root/.ssh/id_rsa): （直接回车） Enter passphrase (empty for no passphrase): （直接回车） Enter same passphrase again: （直接回车） Your identification has been saved in /root/.ssh/id_rsa. Your public key has been saved in /root/.ssh/id_rsa.pub. The key fingerprint is:06:96:6b:56:0c:33:a4:24:16:8c:06:35:9b:98:8b:e7 root@localhost.localdomain 

2、将生成的公钥id_rsa.pub复制到148机器上

ssh-copy-id -i root/.ssh/id_rsa.pub root@192.168.100.148 

说明：将231上生成的公钥文件id_rsa.pub复制到148的/root/.ssh/authorized_keys里，ssh-copy-id -i表示追加写的方式添加到authorized_keys。可以实现多个机器访问148.

[root@hadoop001 .ssh]# ssh-copy-id -i /root/.ssh/id_rsa.pub root@192.168.100.148 /usr/bin/ssh-copy-id: INFO: Source of key(s) to be installed: "/root/.ssh/id_rsa.pub" /usr/bin/ssh-copy-id: INFO: attempting to log in with the new key(s), to filter out any that are already installed /usr/bin/ssh-copy-id: INFO: 1 key(s) remain to be installed -- if you are prompted now it is to install the new keys root@192.168.100.148's password:   Number of key(s) added: 1  Now try logging into the machine, with:   "ssh 'root@192.168.100.148'" and check to make sure that only the key(s) you wanted were added. 

3、验证

[root@hadoop001 .ssh]# ssh root@192.168.100.148 'echo 1' 1 

不用输入密码，表示配置成功了。

参考

1. 多台服务器的免密登录