root用户通过配置ssh key可以进行linux主机之间的免密登录,
如何给普通账户自动生成ssh key,并且用户无感进行主机之间的登录,减少频繁的账户密码输入?
我们通过配置auto-keygen脚本来自动免密登录,无需输入密码
先决条件:
- linux普通账户,/home目录为共享目录
- 配置hosts
查看脚本:
[root@etx3 ~]# more /eda/auto-add-key.csh
#!/bin/csh if ( ! -e ~/.ssh/id_rsa ) then mkdir -p ~/.ssh chmod 700 ~/.ssh ssh-keygen -t rsa -f ~/.ssh/id_rsa -N "" >/dev/null cp ~/.ssh/id_rsa.pub ~/.ssh/authorized_keys echo "Host * ">~/.ssh/config echo "StrictHostKeyChecking no">>~/.ssh/config chmod 644 ~/.ssh/config endif
未运行脚本:
[ray.chen@etx3 ~]$ ssh etx2 The authenticity of host 'etx2 (10.1.4.245)' can't be established. ECDSA key fingerprint is SHA256:Q8vQPWrrlWJn65hwFQT65Whqwe8hdbtuCSZv/NVSzBk. ECDSA key fingerprint is MD5:67:6a:05:d0:dd:0a:4d:af:dc:bc:48:ec:35:55:98:de. Are you sure you want to continue connecting (yes/no)? yes Warning: Permanently added 'etx2,10.1.4.245' (ECDSA) to the list of known hosts. ray.chen@etx2's password:
运行脚本:
[ray.chen@etx3 ~]$ /eda/auto-add-key.csh [ray.chen@etx3 ~]$ ll .ssh/ total 20 -rw-r--r-- 1 ray.chen cad 395 Jul 24 10:20 authorized_keys -rw------- 1 ray.chen cad 1675 Jul 24 10:20 id_rsa -rw-r--r-- 1 ray.chen cad 395 Jul 24 10:20 id_rsa.pub -rw-r--r-- 1 ray.chen cad 177 Jul 24 10:20 known_hosts [ray.chen@etx3 ~]$ ssh etx2 Last login: Fri Jul 19 17:00:38 2024 from etx3 [ray.chen@etx2 ~]$
我们看到已经可以进行免密登录了
Linux集群下普通用户ssh主机免密登录设置