CentOS 配置无密码登录的实现
<p><strong>CentOS 配置无密码登录</strong></p>
<p>
配置sshd服务 在服务器上修改/etc/ssh/sshd_config:</p>
<p>
<!-- lang: shell --></p>
<div class="jb51code">
<div>
<div class="syntaxhighlighterbash" id="highlighter_926742">
<div class="toolbar">
<span>?</span>
</div>
<table border="0" cellpadding="0" cellspacing="0"><tbody><tr>
<td class="gutter">
<div class="line number1 index0 alt2">
1</div>
<div class="line number2 index1 alt1">
2</div>
<div class="line number3 index2 alt2">
3</div>
<div class="line number4 index3 alt1">
4</div>
<div class="line number5 index4 alt2">
5</div>
<div class="line number6 index5 alt1">
6</div>
<div class="line number7 index6 alt2">
7</div>
<div class="line number8 index7 alt1">
8</div>
<div class="line number9 index8 alt2">
9</div>
<div class="line number10 index9 alt1">
10</div>
<div class="line number11 index10 alt2">
11</div>
<div class="line number12 index11 alt1">
12</div>
<div class="line number13 index12 alt2">
13</div>
<div class="line number14 index13 alt1">
14</div>
<div class="line number15 index14 alt2">
15</div>
<div class="line number16 index15 alt1">
16</div>
<div class="line number17 index16 alt2">
17</div>
<div class="line number18 index17 alt1">
18</div>
</td>
<td class="code">
<div class="container">
<div class="line number1 index0 alt2">
<code class="bash comments">#禁止root登录</code>
</div>
<div class="line number2 index1 alt1">
<code class="bash plain">PermitRootLogin no</code>
</div>
<div class="line number3 index2 alt2">
</div>
<div class="line number4 index3 alt1">
<code class="bash comments">#指定可以登录的用户</code>
</div>
<div class="line number5 index4 alt2">
<code class="bash plain">AllowUsers bob alice</code>
</div>
<div class="line number6 index5 alt1">
<code class="bash plain">StrictModes </code><code class="bash functions">yes</code>
</div>
<div class="line number7 index6 alt2">
</div>
<div class="line number8 index7 alt1">
<code class="bash comments">#关闭密码验证</code>
</div>
<div class="line number9 index8 alt2">
<code class="bash plain">PasswordAuthentication no</code>
</div>
<div class="line number10 index9 alt1">
</div>
<div class="line number11 index10 alt2">
<code class="bash comments">#打开RSA验证相关设置</code>
</div>
<div class="line number12 index11 alt1">
<code class="bash plain">RSAAuthentication </code><code class="bash functions">yes</code>
</div>
<div class="line number13 index12 alt2">
<code class="bash plain">PubkeyAuthentication </code><code class="bash functions">yes</code>
</div>
<div class="line number14 index13 alt1">
</div>
<div class="line number15 index14 alt2">
<code class="bash plain">AuthorizedKeysFile .</code><code class="bash functions">ssh</code><code class="bash plain">/authorized_keys</code>
</div>
<div class="line number16 index15 alt1">
</div>
<div class="line number17 index16 alt2">
<code class="bash comments">#关闭 GSSAPI验证</code>
</div>
<div class="line number18 index17 alt1">
<code class="bash plain">GSSAPIAuthentication no</code>
</div>
</div>
</td>
</tr></tbody></table>
</div>
</div>
<div class="codetool" id="codetool">
<div class="code_n">
<textarea></textarea>
</div>
</div>
</div>
<p>
<strong>重启sshd服务</strong></p>
<p>
生成rsa-keypair 切换到允许ssh登录的用户账户执行如下执行如下命令:</p>
<p>
<!-- lang: shell --></p>
<div class="jb51code">
<div>
<div class="syntaxhighlighterbash" id="highlighter_904873">
<div class="toolbar">
<span>?</span>
</div>
<table border="0" cellpadding="0" cellspacing="0"><tbody><tr>
<td class="gutter">
<div class="line number1 index0 alt2">
1</div>
<div class="line number2 index1 alt1">
2</div>
<div class="line number3 index2 alt2">
3</div>
<div class="line number4 index3 alt1">
4</div>
<div class="line number5 index4 alt2">
5</div>
<div class="line number6 index5 alt1">
6</div>
</td>
<td class="code">
<div class="container">
<div class="line number1 index0 alt2">
<code class="bash comments">#生成key-pair</code>
</div>
<div class="line number2 index1 alt1">
<code class="bash functions">ssh</code><code class="bash plain">-keygen </code>
</div>
<div class="line number3 index2 alt2">
<code class="bash functions">cp</code> <code class="bash plain">~/.</code><code class="bash functions">ssh</code><code class="bash plain">/id_rsa</code><code class="bash plain">.pub ~/.</code><code class="bash functions">ssh</code><code class="bash plain">/authorized_keys</code>
</div>
<div class="line number4 index3 alt1">
<code class="bash functions">sudo</code> <code class="bash functions">chmod</code> <code class="bash plain">600 ~/.</code><code class="bash functions">ssh</code><code class="bash plain">/authorized_keys</code>
</div>
<div class="line number5 index4 alt2">
<code class="bash functions">sudo</code> <code class="bash functions">chmod</code> <code class="bash plain">700 ~/.</code><code class="bash functions">ssh</code>
</div>
<div class="line number6 index5 alt1">
<code class="bash plain">restorecon -R -</code><code class="bash functions">v</code> <code class="bash plain">~/.</code><code class="bash functions">ssh</code>
</div>
</div>
</td>
</tr></tbody></table>
</div>
</div>
<div class="codetool" id="codetool">
<div class="code_n">
<textarea></textarea>
</div>
</div>
</div>
<p>
复制刚刚生成的id_rsa文件到本地,一般命名为:server.pem</p>
<div class="jb51code">
<div>
<div class="syntaxhighlighterbash" id="highlighter_845781">
<div class="toolbar">
<span>?</span>
</div>
<table border="0" cellpadding="0" cellspacing="0"><tbody><tr>
<td class="gutter">
<div class="line number1 index0 alt2">
1</div>
</td>
<td class="code">
<div class="container">
<div class="line number1 index0 alt2">
<code class="bash functions">ssh</code> <code class="bash plain">-i server.pem username@server</code>
</div>
</div>
</td>
</tr></tbody></table>
</div>
</div>
<div class="codetool" id="codetool">
<div class="code_n">
<textarea></textarea>
</div>
</div>
</div>
<p>
感谢阅读,希望能帮助到大家,谢谢大家对本站的支持!</p>
<p>
原文链接:https://my.oschina.net/ankh2008/blog/189170</p>
頁:
[1]