1.登錄我們需要免密碼的服務器創建密鑰對
root@linux-node1 ~]# ssh-keygen -t dsa #創建密鑰,指定密鑰格式為DSA
Generating public/private dsa key pair.
Enter file in which to save the key (/root/.ssh/id_dsa):
Created directory '/root/.ssh'.
Enter passphrase (empty for no passphrase): #設置通行短語,不設回車即可
Enter same passphrase again: #重復輸入通行短語驗證
Your identification has been saved in /root/.ssh/id_dsa.
Your public key has been saved in /root/.ssh/id_dsa.pub.
The key fingerprint is:
ae:2d:26:c9:18:f9:97:fc:7c:32:75:fd:94:17:73:a5 root@linux-node1.example.com
The key's randomart image is:
+--[ DSA 1024]----+
| |
| .|
| ..|
| Eo.|
| . S . =|
| o . . . ..o|
| = o ... . o.|
| . = *+o . .|
| +.o++ |
+-----------------+
[root@linux-node1 ~]# ll .ssh
total 8
-rw------- 1 root root 668 Aug 22 15:01 id_dsa
-rw-r--r-- 1 root root 618 Aug 22 15:01 id_dsa.pub
[root@linux-node1 ~]# ls -ld .ssh
drwx------ 2 root root 4096 Aug 22 15:01 .ssh
[root@linux-node1 ~]# cd .ssh
[root@linux-node1 .ssh]# ll
total 8
-rw------- 1 root root 668 Aug 22 15:01 id_dsa
-rw-r--r-- 1 root root 618 Aug 22 15:01 id_dsa.pub
[root@linux-node1 .ssh]# cp id_dsa.pub id_dsa.pub.ori #修改前先備份
[root@linux-node1 .ssh]# ll
total 12
-rw------- 1 root root 668 Aug 22 15:01 id_dsa #私鑰
-rw-r--r-- 1 root root 618 Aug 22 15:01 id_dsa.pub #公鑰
-rw-r--r-- 1 root root 618 Aug 22 15:04 id_dsa.pub.ori
[root@linux-node1 .ssh]#
[root@linux-node1 .ssh]#
[root@linux-node1 .ssh]# mv id_dsa.pub authorized_keys #公鑰改名
[root@linux-node1 .ssh]# chmod 600 authorized_keys #改權限
[root@linux-node1 .ssh]# ll
total 12
-rw------- 1 root root 618 Aug 22 15:01 authorized_keys
-rw------- 1 root root 668 Aug 22 15:01 id_dsa
-rw-r--r-- 1 root root 618 Aug 22 15:04 id_dsa.pub.ori
2.下載私鑰到電腦上
[root@linux-node1 .ssh]# sz -y id_dsa
rz
開始 zmodem 傳輸。 按 Ctrl+C 取消。
100% 668 bytes 668 bytes/s 00:00:01 0 Errors
[root@linux-node1 .ssh]# exit
logout
3.配置SecureCRT客戶端
3.1 選項-->會話選項
3.2 ssh-->選擇“公鑰”-->屬性
3.3 選擇 “使用會話公鑰設置”,
選擇使用身份或證書文件位置
4. 客戶端服務器登錄
