More than one Linux password-free access

Source: Internet
Author: User

A: Experimental environment:

1. Four SLES one -SP2 x86_64 minimized installation

2. where the host name and IP correspondence are as follows

Manager 192.168.78.11

Node1 192.168.78.12

Node2 192.168.78.13

Node3 192.168.78.14

Two: The configuration process is as follows:

1. Add The following to the manager 's /etc/hosts

192.168.78.11 Manager

192.168.78.12 Node1

192.168.78.13 Node2

192.168.78.14 Node3

2. generate a key pair without a private key password

manager:~ # Ssh-keygen

Generating public/private RSA key pair.

Enter file in which to save the key (/ROOT/.SSH/ID_RSA):// Direct Enter key

Created directory '/root/.ssh '.

Enter passphrase (empty for no passphrase):// Direct Enter key

Enter same passphrase again:// Direct Enter key

Your identification has been saved In/root/.ssh/id_rsa.

Your public key has been saved in/root/.ssh/id_rsa.pub.

The key fingerprint is:

C2:e9:a3:48:a5:57:3c:64:a8:b6:17:71:ff:93:4d:[email protected]

The key ' s Randomart image is:

+--[RSA 2048]----+

| |

|           . |

| O + |

| . B O |

|    Oo B S. |

| . + + O.   + . |

|  +o O + E. |

| . + .  . .   . |

|            .. |

+-----------------+

manager:~ #

3. generate the Authentication file Authorized_keys and set the appropriate permissions

manager:~ # CD. ssh/

MANAGER:~/.SSH # ls

Id_rsa id_rsa.pub

MANAGER:~/.SSH # CP Id_rsa.pub Authorized_keys

MANAGER:~/.SSH # chmod Authorized_keys

MANAGER:~/.SSH # Ls-l

Total 12

-RW-------1 root root 394 Dec 05:13 Authorized_keys

-RW-------1 root root 1675 Dec 05:12id_rsa

-rw-r--r--1 root root 394 Dec 05:12 id_rsa.pub

MANAGER:~/.SSH #

4. copy the/root/.ssh directory to the root directory of Node1,node2,node3

manager:~ # for I in ' SEQ 1 3 '; Do scp-r/root/.ssh/node$i:/root/; Done

The authenticity of host ' Node1 (192.168.78.12) ' can ' t be established.

RSA key fingerprint is9d:f6:00:b6:96:ba:e3:0c:91:47:8d:36:a6:68:6a:cf.

Is you sure want to continueconnecting (yes/no)? Yes

warning:permanently added ' node1,192.168.78.12 ' (RSA) to the list of known hosts.

Password:

Authorized_keys 100% 394 0.4kb/s 00:00

Id_rsa 100%1675 1.6kb/s 00:00

Known_hosts 100% 229 0.2kb/s 00:00

Id_rsa.pub 100% 394 0.4kb/s 00:00

The authenticity of host ' Node2 (192.168.78.13) ' can ' t be established.

RSA key fingerprint is45:d1:31:ed:05:54:ec:a4:61:f2:a8:70:8f:97:8c:41.

Is you sure want to continueconnecting (yes/no)? Yes

warning:permanently added ' node2,192.168.78.13 ' (RSA) to the list of known hosts.

Password:

Authorized_keys 100% 394 0.4kb/s 00:00

Id_rsa 100%1675 1.6kb/s 00:00

Known_hosts 100% 458 0.5kb/s 00:00

Id_rsa.pub 100% 394 0.4kb/s 00:00

The authenticity of host ' node3 (192.168.78.14) ' can ' t be established.

RSA key fingerprint is45:d1:31:ed:05:54:ec:a4:61:f2:a8:70:8f:97:8c:41.

Is you sure want to continueconnecting (yes/no)? Yes

warning:permanently added ' node3,192.168.78.14 ' (RSA) to the list of known hosts.

Password:

Authorized_keys 100% 394 0.4kb/s 00:00

Id_rsa 100%1675 1.6kb/s 00:00

Known_hosts 100% 687 0.7kb/s 00:00

Id_rsa.pub 100% 394 0.4kb/s 00:00

manager:~ #

Note: The first time is based on the user name password authentication, so to enter the password

5. copy The/etc/hosts file to the/etc Directory of Node1,node2,node3

manager:~ # for I in ' SEQ 1 3 '; Do scp/etc/hosts node$i:/etc/; Done

6.SSH Accessing the machine (to add the manager to the. ssh/known_hosts file)

manager:~ # SSH Manager

The authenticity of host ' manager (192.168.78.11) ' can ' t be established.

RSA key fingerprint ise6:74:87:2c:5e:71:30:c8:ae:9d:87:d4:54:05:d0:22.

Is you sure want to continueconnecting (yes/no)? Yes

warning:permanently added ' manager,192.168.78.11 ' (RSA) to the list of known hosts.

Last Login:thu Dec 05:06:27 from192.168.78.1

manager:~ #

7. copy the. ssh/known_hosts file to the/root/.ssh/ directory in node1,node2,node3

manager:~ # for I in ' SEQ 1 3 '; Do scp/root/.ssh/known_hosts node$i:/root/.ssh/; Done

Configuration complete at this point

Three: Verify the configuration is successful

1. Choose a machine, such as Node3, to visit Manager,node1,node2 separately .

node3:~ # SSH Manager

Last Login:thu Dec 05:20:52 frommanager// No password login manager Success

manager:~ # Exit// exit to manager connection

Logout

Connection to manager closed.

node3:~ # SSH Node1

Last Login:mon Sep 29 23:24:13 2014

linux-x4xj:~ # Exit

Logout

Connection to Node1 closed.

node3:~ # SSH Node2

Last Login:mon Sep 29 23:24:28 2014

linux-hmae:~ # Exit

Logout

Connection to Node2 closed.

node3:~ #

the above-mentioned configuration is successful, thenode1,node2 node test ibid .

#############################################################################

Precautions:

1. If you want to reload a node such as reload Node2, perform the following 4 steps sequentially

◆ You need to back up the ssh directory under /etc/before reloading the Node2

◆ After the reload is complete, replace the SSH directory in the /etc directory with the backup SSH directory and restart the SSH service .

◆ then copy the. SSH directory from Manager,node1 or node3 to the /root directory in Node2

finally copy The hosts file to the/etc directory in node2

2. Normal user operation is the same as root user, and each ordinary user should do the above operation

#############################################################################


This article from "Never Stop" blog, declined reprint!

More than one Linux password-free access

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.