RSAKeyMan
Матеріал з HPCC
Генерація ключів
Ключ RSA або DSA можна створити за допомогою утиліти ssh-keygen. Потрібно згенерувати ключі без захисту паролем, тому на запит "Enter passphrase:" слід просто натиснути Enter.
[test1@n001 ~]$ ssh-keygen -t rsa Generating public/private rsa key pair. Enter file in which to save the key (/home/users/test1/.ssh/id_rsa): Created directory '/home/users/test1/.ssh'. Enter passphrase (empty for no passphrase): Enter same passphrase again: Your identification has been saved in /home/users/test1/.ssh/id_rsa. Your public key has been saved in /home/users/test1/.ssh/id_rsa.pub. The key fingerprint is: 36:3c:90:53:b6:ff:19:23:fc:58:0e:a2:17:75:07:c6 test1@n001
Після створення ключів, потрібно додати їх у список довірених:
[test1@n001 ~]$ cat .ssh/id_rsa.pub > .ssh/authorized_keys
Увага! Потрібно прослідкувати, щоб на всі файли у директорії .ssh/ були правильні права та власники.
drwx------ user usergroup .ssh/ -rw-r--r-- user usergroup known_hosts -rw-r--r-- user usergroup id_rsa.pub -rw------- user usergroup id_rsa -rw-r--r-- user usergroup authorized_keys
Додавання вузлів у список відомих хостів
Можна скористатись готовим файлом /home/users/known_hosts, який потрібно скопіювати у директорію .ssh/, що у домашньому каталозі користувача, або згенерувати самостійно за допомогою наступної команди.
[test1@n001 ~]$ for i in `seq -w 1 112`; do ssh -o StrictHostKeyChecking=no n$i.kpi hostname; done; Warning: Permanently added 'n001.kpi,172.16.1.1' (RSA) to the list of known hosts. n001 Warning: Permanently added 'n002.kpi,172.16.1.2' (RSA) to the list of known hosts. n002 Warning: Permanently added 'n003.kpi,172.16.1.3' (RSA) to the list of known hosts. n003 Warning: Permanently added 'n004.kpi,172.16.1.4' (RSA) to the list of known hosts. n004 Warning: Permanently added 'n005.kpi,172.16.1.5' (RSA) to the list of known hosts. n005 Warning: Permanently added 'n006.kpi,172.16.1.6' (RSA) to the list of known hosts. n006 Warning: Permanently added 'n007.kpi,172.16.1.7' (RSA) to the list of known hosts. n007 Warning: Permanently added 'n008.kpi,172.16.1.8' (RSA) to the list of known hosts. n008 Warning: Permanently added 'n009.kpi,172.16.1.9' (RSA) to the list of known hosts. n009 Warning: Permanently added 'n010.kpi,172.16.1.10' (RSA) to the list of known hosts. n010 Warning: Permanently added 'n011.kpi,172.16.1.11' (RSA) to the list of known hosts. n011 Warning: Permanently added 'n012.kpi,172.16.1.12' (RSA) to the list of known hosts. n012 Warning: Permanently added 'n013.kpi,172.16.1.13' (RSA) to the list of known hosts. n013 Warning: Permanently added 'n014.kpi,172.16.1.14' (RSA) to the list of known hosts. n014 Warning: Permanently added 'n015.kpi,172.16.1.15' (RSA) to the list of known hosts. n015 Warning: Permanently added 'n016.kpi,172.16.1.16' (RSA) to the list of known hosts. n016 Warning: Permanently added 'n017.kpi,172.16.1.17' (RSA) to the list of known hosts. n017 Warning: Permanently added 'n018.kpi,172.16.1.18' (RSA) to the list of known hosts. n018 Warning: Permanently added 'n019.kpi,172.16.1.19' (RSA) to the list of known hosts. n019 Warning: Permanently added 'n020.kpi,172.16.1.20' (RSA) to the list of known hosts. n020 Warning: Permanently added 'n021.kpi,172.16.1.21' (RSA) to the list of known hosts. n021 Warning: Permanently added 'n022.kpi,172.16.1.22' (RSA) to the list of known hosts. n022 Warning: Permanently added 'n023.kpi,172.16.1.23' (RSA) to the list of known hosts. n023 Warning: Permanently added 'n024.kpi,172.16.1.24' (RSA) to the list of known hosts. n024 Warning: Permanently added 'n025.kpi,172.16.1.25' (RSA) to the list of known hosts. n025 Warning: Permanently added 'n026.kpi,172.16.1.26' (RSA) to the list of known hosts. n026 Warning: Permanently added 'n027.kpi,172.16.1.27' (RSA) to the list of known hosts. n027 Warning: Permanently added 'n028.kpi,172.16.1.28' (RSA) to the list of known hosts. n028 Warning: Permanently added 'n029.kpi,172.16.1.29' (RSA) to the list of known hosts. n029 Warning: Permanently added 'n030.kpi,172.16.1.30' (RSA) to the list of known hosts. n030 Warning: Permanently added 'n031.kpi,172.16.1.31' (RSA) to the list of known hosts. n031 Warning: Permanently added 'n032.kpi,172.16.1.32' (RSA) to the list of known hosts. n032 Warning: Permanently added 'n033.kpi,172.16.1.33' (RSA) to the list of known hosts. n033 Warning: Permanently added 'n034.kpi,172.16.1.34' (RSA) to the list of known hosts. n034 Warning: Permanently added 'n035.kpi,172.16.1.35' (RSA) to the list of known hosts. n035 Warning: Permanently added 'n036.kpi,172.16.1.36' (RSA) to the list of known hosts. n036 Warning: Permanently added 'n037.kpi,172.16.1.37' (RSA) to the list of known hosts. n037 Warning: Permanently added 'n038.kpi,172.16.1.38' (RSA) to the list of known hosts. n038 Warning: Permanently added 'n039.kpi,172.16.1.39' (RSA) to the list of known hosts. n039 Warning: Permanently added 'n040.kpi,172.16.1.40' (RSA) to the list of known hosts. n040 Warning: Permanently added 'n041.kpi,172.16.1.41' (RSA) to the list of known hosts. n041 Warning: Permanently added 'n042.kpi,172.16.1.42' (RSA) to the list of known hosts. n042 Warning: Permanently added 'n043.kpi,172.16.1.43' (RSA) to the list of known hosts. n043 Warning: Permanently added 'n044.kpi,172.16.1.44' (RSA) to the list of known hosts. n044 Warning: Permanently added 'n045.kpi,172.16.1.45' (RSA) to the list of known hosts. n045 Warning: Permanently added 'n046.kpi,172.16.1.46' (RSA) to the list of known hosts. n046 Warning: Permanently added 'n047.kpi,172.16.1.47' (RSA) to the list of known hosts. n047 Warning: Permanently added 'n048.kpi,172.16.1.48' (RSA) to the list of known hosts. n048 Warning: Permanently added 'n049.kpi,172.16.1.49' (RSA) to the list of known hosts. n049 Warning: Permanently added 'n050.kpi,172.16.1.50' (RSA) to the list of known hosts. n050 Warning: Permanently added 'n051.kpi,172.16.1.51' (RSA) to the list of known hosts. n051 Warning: Permanently added 'n052.kpi,172.16.1.52' (RSA) to the list of known hosts. n052 Warning: Permanently added 'n053.kpi,172.16.1.53' (RSA) to the list of known hosts. n053 Warning: Permanently added 'n054.kpi,172.16.1.54' (RSA) to the list of known hosts. n054 Warning: Permanently added 'n055.kpi,172.16.1.55' (RSA) to the list of known hosts. n055 Warning: Permanently added 'n056.kpi,172.16.1.56' (RSA) to the list of known hosts. n056 Warning: Permanently added 'n057.kpi,172.16.1.57' (RSA) to the list of known hosts. n057 Warning: Permanently added 'n058.kpi,172.16.1.58' (RSA) to the list of known hosts. n058 Warning: Permanently added 'n059.kpi,172.16.1.59' (RSA) to the list of known hosts. n059 Warning: Permanently added 'n060.kpi,172.16.1.60' (RSA) to the list of known hosts. n060 Warning: Permanently added 'n061.kpi,172.16.1.61' (RSA) to the list of known hosts. n061 Warning: Permanently added 'n062.kpi,172.16.1.62' (RSA) to the list of known hosts. n062 Warning: Permanently added 'n063.kpi,172.16.1.63' (RSA) to the list of known hosts. n063 Warning: Permanently added 'n064.kpi,172.16.1.64' (RSA) to the list of known hosts. n064 Warning: Permanently added 'n065.kpi,172.16.1.65' (RSA) to the list of known hosts. n065 Warning: Permanently added 'n066.kpi,172.16.1.66' (RSA) to the list of known hosts. n066 Warning: Permanently added 'n067.kpi,172.16.1.67' (RSA) to the list of known hosts. n067 Warning: Permanently added 'n068.kpi,172.16.1.68' (RSA) to the list of known hosts. n068 Warning: Permanently added 'n069.kpi,172.16.1.69' (RSA) to the list of known hosts. n069 Warning: Permanently added 'n070.kpi,172.16.1.70' (RSA) to the list of known hosts. n070 Warning: Permanently added 'n071.kpi,172.16.1.71' (RSA) to the list of known hosts. n071 Warning: Permanently added 'n072.kpi,172.16.1.72' (RSA) to the list of known hosts. n072 Warning: Permanently added 'n073.kpi,172.16.1.73' (RSA) to the list of known hosts. n073 Warning: Permanently added 'n074.kpi,172.16.1.74' (RSA) to the list of known hosts. n074 Warning: Permanently added 'n075.kpi,172.16.1.75' (RSA) to the list of known hosts. n075 Warning: Permanently added 'n076.kpi,172.16.1.76' (RSA) to the list of known hosts. n076 Warning: Permanently added 'n077.kpi,172.16.1.77' (RSA) to the list of known hosts. n077 Warning: Permanently added 'n078.kpi,172.16.1.78' (RSA) to the list of known hosts. n078 Warning: Permanently added 'n079.kpi,172.16.1.79' (RSA) to the list of known hosts. n079 Warning: Permanently added 'n080.kpi,172.16.1.80' (RSA) to the list of known hosts. n080 Warning: Permanently added 'n081.kpi,172.16.1.81' (RSA) to the list of known hosts. n081 Warning: Permanently added 'n082.kpi,172.16.1.82' (RSA) to the list of known hosts. n082 Warning: Permanently added 'n083.kpi,172.16.1.83' (RSA) to the list of known hosts. n083 Warning: Permanently added 'n084.kpi,172.16.1.84' (RSA) to the list of known hosts. n084 Warning: Permanently added 'n085.kpi,172.16.1.85' (RSA) to the list of known hosts. n085 Warning: Permanently added 'n086.kpi,172.16.1.86' (RSA) to the list of known hosts. n086 Warning: Permanently added 'n087.kpi,172.16.1.87' (RSA) to the list of known hosts. n087 Warning: Permanently added 'n088.kpi,172.16.1.88' (RSA) to the list of known hosts. n088 Warning: Permanently added 'n089.kpi,172.16.1.89' (RSA) to the list of known hosts. n089 Warning: Permanently added 'n090.kpi,172.16.1.90' (RSA) to the list of known hosts. n090 Warning: Permanently added 'n091.kpi,172.16.1.91' (RSA) to the list of known hosts. n091 Warning: Permanently added 'n092.kpi,172.16.1.92' (RSA) to the list of known hosts. n092 Warning: Permanently added 'n093.kpi,172.16.1.93' (RSA) to the list of known hosts. n093 Warning: Permanently added 'n094.kpi,172.16.1.94' (RSA) to the list of known hosts. n094 Warning: Permanently added 'n095.kpi,172.16.1.95' (RSA) to the list of known hosts. n095 Warning: Permanently added 'n096.kpi,172.16.1.96' (RSA) to the list of known hosts. n096 Warning: Permanently added 'n097.kpi,172.16.1.97' (RSA) to the list of known hosts. n097 Warning: Permanently added 'n098.kpi,172.16.1.98' (RSA) to the list of known hosts. n098 Warning: Permanently added 'n099.kpi,172.16.1.99' (RSA) to the list of known hosts. n099 Warning: Permanently added 'n100.kpi,172.16.1.100' (RSA) to the list of known hosts. n100 Warning: Permanently added 'n101.kpi,172.16.1.101' (RSA) to the list of known hosts. n101 Warning: Permanently added 'n102.kpi,172.16.1.102' (RSA) to the list of known hosts. n102 Warning: Permanently added 'n103.kpi,172.16.1.103' (RSA) to the list of known hosts. n103 Warning: Permanently added 'n104.kpi,172.16.1.104' (RSA) to the list of known hosts. n104 Warning: Permanently added 'n105.kpi,172.16.1.105' (RSA) to the list of known hosts. n105 Warning: Permanently added 'n106.kpi,172.16.1.106' (RSA) to the list of known hosts. n106 Warning: Permanently added 'n107.kpi,172.16.1.107' (RSA) to the list of known hosts. n107 Warning: Permanently added 'n108.kpi,172.16.1.108' (RSA) to the list of known hosts. n108 Warning: Permanently added 'n109.kpi,172.16.1.109' (RSA) to the list of known hosts. n109 Warning: Permanently added 'n110.kpi,172.16.1.110' (RSA) to the list of known hosts. n110 Warning: Permanently added 'n111.kpi,172.16.1.111' (RSA) to the list of known hosts. n111 Warning: Permanently added 'n112.kpi,172.16.1.112' (RSA) to the list of known hosts. n112
