Home > Others

Ssh password-less logon authority guide, ssh Password Logon Guide

Source: Internet
Author: User
Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more >

Ssh password-less logon authority guide, ssh Password Logon Guide
[0] PrefaceBecause ssh implements password-free login, the general steps are as follows:

  • 0.1)The client logs on to the server through ssh;
  • 0.2)Server checks the. ssh file in the home directory, and sends the public key file authorized_keys to the client;
  • 0.3)The client receives the public key file from the server, parses it with its own private key file, and calculates the new public key file C;
  • 0.4)The server segment receives the client's public key file C and matches it with its own public key file (it has its own matching algorithm, you don't care). If the matching succeeds, the client successfully logs on to the server;
  • (Attention ):
    Here, we have to say that the process of establishing an ssh password-free login is really complicated. Therefore, ssh requires strict access to the configuration file. If you are a friend, you will not be able to establish password-free login Based on the access permissions set in this article, the consequence is at your own risk (Here we only want to emphasize that ssh requires strict access to the configuration file! (Just because the access permission to your configuration file is not completely correct, ssh has never been able to achieve normal password-free login, which is very effort-consuming)
[1] Install ssh 
server installation :sudo yum -y install openssh.i686client installation: sudo yum -y install openssh-clients
[2] My task: hadoop @ hadoop0 (Client) password-free login to hadoop @ hadoop1 (Server)
  • 2.1) generate the private key and public key for creating ssh (client operation)

  • Attention)
  • A1)~ /. Ssh/the directory must have 700 permissions!

  • A2)The archive permission of id_rsa should be paid special attention! He must be-rw ---! Otherwise, in the future key comparison process, it may be determined as dangerous and fail to use the public/private key pair file mechanism to bring it online.
    (However, by default, all created files meet the preceding requirements)

  • 2.2) create a. ssh folder in the home directory of the server and set the access permission to 700 (server operation)

  • 2.3) Upload the client's public key file data to the server (client operation)

  • 2.4) change the public key file name under the. ssh folder of the server to authorized_keys, and change the access permission to 600 or 644 (server operation)

  • 2.5) client login to the server without Password

Copyright Disclaimer: This article is an original article by the blogger and cannot be reproduced without the permission of the blogger.

This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

Related Keywords:
http https login logon password passcode logon script to map network drive with username and password logon failure unknown user name or bad password windows security logon failure unknown username or bad password ssh user password raspbian root password ssh ssh automatic password

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

What's Trending
Top 10 Tags
datastax versions naming convention zookeeper client class definition md5 microsoft sql server 2005 data structures exception handling error handling
Top 10 Keywords
microsoft download center down wordpress address url site address url wordpress address url windows installer 4 0 download 302 not found web address url definition site address url wordpress db2 integer mac os installation step by step pdf abbreviation for return

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More