您当前的位置: 首页 > 学无止境 > 心得笔记 网站首页心得笔记
linux安全登录配置(证书登录)
发布时间:2019-06-02 17:10:26编辑:雪饮阅读()
生成公私钥
[root@localhost ~]# ssh-keygen -t rsa
Generating public/private rsa key pair.
Enter file in which to save the key (/root/.ssh/id_rsa):
Enter passphrase (empty for no passphrase):
Enter same passphrase again:
Your identification has been saved in /root/.ssh/id_rsa.
Your public key has been saved in /root/.ssh/id_rsa.pub.
The key fingerprint is:
36:44:24:f5:8f:af:66:99:01:32:85:5e:c0:22:21:9c root@localhost.localdomain
The key's randomart image is:
+--[ RSA 2048]----+
|o o. .o=+ |
| E. . ooo. |
| . o o. . |
| +.. o |
| oS.. . |
| . ... |
| +. |
| =. |
| o. |
+-----------------+
私钥注册
[root@localhost ~]# cat /root/.ssh/id_rsa.pub >> /root/.ssh/authorized_keys
证书登录
将上面生成的私钥拿到后,在ssh客户端加载然后登录时就会提示你输入私钥的密码
禁用密码登录
/etc/ssh/sshd_config
将PasswordAuthentication的值设置为no
然后重启sshd服务即可
关键字词:ssh,登录,安全,证书