zoukankan      html  css  js  c++  java
  • [原]linux 配置 ssh 等效性

    在安装oracle数据库时,会需要为oracle用户配置ssh等效性,以实现不需要用户口令即可实现访问和文件传输。

     步骤如下:

    创建目录并生成密码

    [html] view plaincopy
     
    1. su - oracle  
    2. mkdir ~/.ssh  
    3. chmod 755 ~/.ssh  
    4.   
    5. /usr/bin/ssh-keygen -t rsa ,连敲3次回车  
    6. /usr/bin/ssh-keygen -t dsa ,连敲3次回车  


    创建认证文件并将密钥内容填入

    [html] view plaincopy
     
    1. touch ~/.ssh/authorized_keys  
    2. chmod 644 authorized_keys  
    3.   
    4. cat ~/.ssh/id_rsa.pub >> authorized_keys  
    5. cat ~/.ssh/id_dsa.pub >> authorized_keys  
    6. ssh racnode2 cat ~/.ssh/id_rsa.pub >> authorized_keys  
    7. ssh racnode2 cat ~/.ssh/id_dsa.pub >> authorized_keys  


     

    在RAC的各个节点分别执行测试,测试是必须的,否则OUI可能会失败

    [html] view plaincopy
     
    1. [oracle@orcnode1 ~]$ ssh racnode1 date  
    2. [oracle@racnode1 ~]$ ssh racnode2 date  
    3. [oracle@racnode1 ~]$ ssh racnode1-priv date  
    4. [oracle@racnode1 ~]$ ssh racnode2-priv date  
    5.   
    6. [oracle@racnode2 ~]$ ssh racnode1 date  
    7. [oracle@racnode2 ~]$ ssh racnode2 date  
    8. [oracle@racnode2 ~]$ ssh racnode1-priv date  
    9. [oracle@racnode2 ~]$ ssh racnode2-priv date  


    如果测试命令均可以在不需输入口令的情况下即可显示系统时间,则表示配置没有问题。 

    示例样式配置:

    [oracle@orclcentos2 ~]$ mkdir ~/.ssh
    [oracle@orclcentos2 ~]$ chmod 755 ~/.ssh

    [oracle@orclcentos2 ~]$ ssh-keygen -t rsa
    Generating public/private rsa key pair.
    Enter file in which to save the key (/home/oracle/.ssh/id_rsa):
    Enter passphrase (empty for no passphrase):
    Enter same passphrase again:
    Your identification has been saved in /home/oracle/.ssh/id_rsa.
    Your public key has been saved in /home/oracle/.ssh/id_rsa.pub.
    The key fingerprint is:
    5c:05:6b:3b:1c:8e:f8:e4:96:3e:7e:89:83:29:4d:07 oracle@orclcentos2
    The key's randomart image is:
    +--[ RSA 2048]----+
    | ... |
    | o |
    | = |
    | Eo * o |
    | ..S = |
    | .+.. . |
    | o +=. . |
    | . +o+ o |
    | . .o+ |
    +-----------------+
    [oracle@orclcentos2 ~]$ ssh-keygen -t dsa
    Generating public/private dsa key pair.
    Enter file in which to save the key (/home/oracle/.ssh/id_dsa):
    Enter passphrase (empty for no passphrase):
    Enter same passphrase again:
    Your identification has been saved in /home/oracle/.ssh/id_dsa.
    Your public key has been saved in /home/oracle/.ssh/id_dsa.pub.
    The key fingerprint is:
    58:36:4b:c4:89:34:22:cf:1c:b2:b1:a8:d8:d4:1b:b3 oracle@orclcentos2
    The key's randomart image is:
    +--[ DSA 1024]----+
    | + o.oo.. |
    | . @ o.oo |
    |. + B = |
    |oo = = o |
    |o . E . S |
    | |
    | |
    | |
    | |
    +-----------------+

    [oracle@orclcentos2 ~]$ ssh rac2 cat ~/.ssh/id_rsa.pub >> authorized_keys
    The authenticity of host 'rac2 (10.132.250.115)' can't be established.
    RSA key fingerprint is 7f:e7:31:e0:f9:44:0f:19:98:69:a7:45:c7:40:ba:8f.
    Are you sure you want to continue connecting (yes/no)? yes
    Warning: Permanently added 'rac2,10.132.250.115' (RSA) to the list of known hosts.
    oracle@rac2's password:
    [oracle@orclcentos2 ~]$ ssh rac2 cat ~/.ssh/id_dsa.pub >> authorized_keys
    oracle@rac2's password:
    [oracle@orclcentos2 ~]$


    自强不息,方能厚得载物。

    尊重知识,转载需注明出处。
  • 相关阅读:
    [模板] 循环数组的最大子段和
    [最短路][几何][牛客] [国庆集训派对1]-L-New Game
    [洛谷] P1866 编号
    1115 Counting Nodes in a BST (30 分)
    1106 Lowest Price in Supply Chain (25 分)
    1094 The Largest Generation (25 分)
    1090 Highest Price in Supply Chain (25 分)
    树的遍历
    1086 Tree Traversals Again (25 分)
    1079 Total Sales of Supply Chain (25 分 树
  • 原文地址:https://www.cnblogs.com/uniqueness/p/3079179.html
Copyright © 2011-2022 走看看