zoukankan      html  css  js  c++  java
  • 第5步:建立主机间的信任关系(sgdb1、sgdb2)

    5.1 Oracle用户下建立信任
    5.11创建.ssh目录
    [root@sgdb1 /]# su - oracle
    [oracle@sgdb1 ~]$ mkdir .ssh       创建一个.ssh的隐藏目录
    [oracle@sgdb1 ~]$ ls -al
    total 44
    -rw-r--r-- 1 oracle oinstall   33 Jul 12 17:05 .bash_logout
    -rw-r--r-- 1 oracle oinstall  438 Jul 12 18:03 .bash_profile
    drwxr-xr-x 4 oracle oinstall 4096 Jul 1217:05 .mozilla
    drwx------ 2 oracle oinstall 4096 Jul 1218:05 .ssh
    -rw------- 1 oracle oinstall  657 Jul 12 18:03 .viminfo
    5.12 sgdb1生成密钥rsa类型
    id_rsa为私钥,自动保存到.ssh
    id_rsa.pub为公钥,自动保存到.ssh
    [oracle@sgdb1 ~]$ ssh-keygen -t rsa      
    Generating public/private rsa key pair.
    Enter file in which to save the key(/home/oracle/.ssh/id_rsa):  enter
    Enter passphrase (empty for nopassphrase):  enter
    Enter same passphrase again:  enter
    Your identification has been saved in/home/oracle/.ssh/id_rsa.
    Your public key has been saved in/home/oracle/.ssh/id_rsa.pub.           
    The key fingerprint is:
    64:a6:4a:77:db:33:a4:aa:6e:ca:8f:5f:2f:77:0f:40oracle@sgdb1
    5.12 sgdb1生成密钥dsa类型
    id_dsa为私钥,自动保存到.ssh
    id_dsa.pub为公钥,自动保存到.ssh
    [oracle@sgdb1 ~]$ ssh-keygen -t dsa     
    Generating public/private dsa key pair.
    Enter file in which to save the key(/home/oracle/.ssh/id_dsa): enter                        
    Enter passphrase (empty for no passphrase):enter
    Enter same passphrase again: enter
    Your identification has been saved in/home/oracle/.ssh/id_dsa.
    Your public key has been saved in/home/oracle/.ssh/id_dsa.pub.                
    The key fingerprint is:
    7c:41:b5:0f:81:06:ad:30:07:4f:8b:1a:9b:94:68:14oracle@sgdb1
    5.13 sgdb2生成密钥rsa类型
    id_rsa为私钥,自动保存到.ssh
    id_rsa.pub为公钥,自动保存到.ssh
     [oracle@sgdb2 asm]# su - oracle
    [oracle@sgdb2 ~]$ mkdir .ssh
    [oracle@sgdb2 ~]$ ssh-keygen -t rsa      
    Generating public/private rsa key pair.
    Enter file in which to save the key(/home/oracle/.ssh/id_rsa):  enter             
    Enter passphrase (empty for nopassphrase):  enter
    Enter same passphrase again:  enter
    Your identification has been saved in/home/oracle/.ssh/id_rsa.
    Your public key has been saved in/home/oracle/.ssh/id_rsa.pub.           
    The key fingerprint is:
    64:a6:4a:77:db:33:a4:aa:6e:ca:8f:5f:2f:77:0f:40oracle@sgdb1
    5.14 sgdb2生成密钥dsa类型
    id_dsa为私钥,自动保存到.ssh
    id_dsa.pub为公钥,自动保存到.ssh
     [oracle@sgdb2 ~]$ ssh-keygen -tdsa    
    Generatingpublic/private dsa key pair.
    Enter file inwhich to save the key (/home/oracle/.ssh/id_dsa): enter                        
    Enter passphrase(empty for no passphrase): enter
    Enter samepassphrase again: enter
    Youridentification has been saved in /home/oracle/.ssh/id_dsa.
    Your public keyhas been saved in /home/oracle/.ssh/id_dsa.pub.                
    The keyfingerprint is:
    7c:41:b5:0f:81:06:ad:30:07:4f:8b:1a:9b:94:68:14oracle@sgdb1
    5.16 sgdb1配置信任
    rsadsa为私钥,.pub的为公钥 
    ssh下文件authorized_keys是专门存储公钥信息的
    rsadsa类型的公钥文件都放入到authorized_keys文件里
    ssh  sgdb2”命令代表登陆到节点2下操作
    把两种类型的公钥信息都放到节点2authorized_keys文件里
    [oracle@sgdb1 ~]$ ls .ssh
    id_dsa       id_rsa             id_dsa.pub   id_rsa.pub     
    [oracle@sgdb1 ~]$ cat.ssh/id_rsa.pub >>.ssh/authorized_keys
    [oracle@sgdb1 ~]$ cat.ssh/id_dsa.pub >>.ssh/authorized_keys
    [oracle@sgdb1 ~]$ ssh sgdb2  cat .ssh/id_rsa.pub>>.ssh/authorized_keys
    oracle@sgdb2's password:
    [oracle@sgdb1 ~]$ ssh sgdb2  cat .ssh/id_dsa.pub>>.ssh/authorized_keys
    oracle@sgdb2's password:  oracle的密码
    5.17 sgdb2配置信任
    可以把sgdb1中的authorized_keys(密钥文件)复制到sgdb2中
    [oracle@sgdb1 ~]$ scp.ssh/authorized_keys   sgdb2:~/.ssh
    oracle@sgdb2's password: oracle的密码
    5.18 sgdb1上验证信任
    [oracle@sgdb1 ~]$ ssh sgdb2 date
    [oracle@sgdb1 ~]$ ssh sgdb 2-privdate     //私有ip地址验证
    [oracle@sgdb1 ~]$ ssh sgdb 1date
    [oracle@sgdb1 ~]$ ssh sgdb 1-privdate    
    5.19 sgdb2上验证信任
    [oracle@sgdb2 ~]$ ssh sgdb1 date
    [oracle@sgdb2~]$ ssh sgdb 1-priv date    
    [oracle@sgdb2 ~]$ ssh sgdb2 date
    [oracle@sgdb2~]$ ssh sgdb2-priv date    
    5.2 Grid 用户下建立信任
    步骤同oracle 一样,可参考oracle用户下设置
    5.21创建.ssh目录
    在grid用户下操作:
    [root@sgdb1 /]# su– grid
    [grid@sgdb1 ~]$mkdir .ssh       创建一个.ssh的隐藏目录
    [grid@sgdb1 ~]$ ls-al
    5.22 sgdb1生成密钥rsa类型
    id_rsa为私钥,自动保存到.ssh
    id_rsa.pub为公钥,自动保存到.ssh
    [grid@sgdb1 ~]$ ssh-keygen-t rsa     
    Generating public/private rsa key pair.
    Enter file in which to save the key(/home/oracle/.ssh/id_rsa):  enter             
    Enter passphrase (empty for no passphrase):  enter
    Enter same passphrase again:  enter
    Your identification has been saved in/home/oracle/.ssh/id_rsa.
    Your public key has been saved in/home/oracle/.ssh/id_rsa.pub.           
    The key fingerprint is:
    64:a6:4a:77:db:33:a4:aa:6e:ca:8f:5f:2f:77:0f:40oracle@sgdb1
    5.23 sgdb1生成密钥dsa类型
    id_dsa为私钥,自动保存到.ssh
    id_dsa.pub为公钥,自动保存到.ssh
      [grid@sgdb1 ~]$ ssh-keygen-t dsa    
    Generating public/private dsa key pair.
    Enter file in which to save the key(/home/oracle/.ssh/id_dsa): enter                        
    Enter passphrase (empty for no passphrase): enter
    Enter same passphrase again: enter
    Your identification has been saved in/home/oracle/.ssh/id_dsa.
    Your public key has been saved in/home/oracle/.ssh/id_dsa.pub.                
    The key fingerprint is:
    7c:41:b5:0f:81:06:ad:30:07:4f:8b:1a:9b:94:68:14oracle@sgdb1
    5.24 sgdb2生成密钥rsa类型
    id_rsa为私钥,自动保存到.ssh
    id_rsa.pub为公钥,自动保存到.ssh
     [root@sgdb2 ~]# su grid
    [grid@sgdb2 ~]$ mkdir .ssh
    [grid@sgdb2 ~]$ ssh-keygen-t rsa     
    Generating public/private rsa key pair.
    Enter file in which to save the key(/home/oracle/.ssh/id_rsa):  enter             
    Enter passphrase (empty for no passphrase):  enter
    Enter same passphrase again:  enter
    Your identification has been saved in/home/oracle/.ssh/id_rsa.
    Your public key has been saved in/home/oracle/.ssh/id_rsa.pub.           
    The key fingerprint is:
    64:a6:4a:77:db:33:a4:aa:6e:ca:8f:5f:2f:77:0f:40oracle@sgdb1
    5.25 sgdb2生成密钥dsa类型
    id_dsa为私钥,自动保存到.ssh
    id_dsa.pub为公钥,自动保存到.ssh
    [grid@sgdb2 ~]$ ssh-keygen -t dsa    
    Generating public/private dsa key pair.
    Enter file in which to save the key(/home/oracle/.ssh/id_dsa): enter                        
    Enter passphrase (empty for no passphrase): enter
    Enter same passphrase again: enter
    Your identification has been saved in/home/oracle/.ssh/id_dsa.
    Your public key has been saved in/home/oracle/.ssh/id_dsa.pub.                
    The key fingerprint is:
    7c:41:b5:0f:81:06:ad:30:07:4f:8b:1a:9b:94:68:14oracle@sgdb1
    5.26sgdb1配置信任
    [grid@sgdb1 ~]$ ls .ssh
    id_dsa       id_rsa             id_dsa.pub   id_rsa.pub      known_hosts
    [grid@sgdb1 ~]$ cat.ssh/id_rsa.pub >>.ssh/authorized_keys
    [grid@sgdb1 ~]$ cat.ssh/id_dsa.pub >>.ssh/authorized_keys
    [grid@sgdb1 ~]$ ssh sgdb2  cat .ssh/id_rsa.pub>>.ssh/authorized_keys
    grid@sgdb2's password:
    [grid@sgdb1 ~]$ ssh sgdb2  cat .ssh/id_dsa.pub >>.ssh/authorized_keys
    grid@sgdb2's password: grid的密码
    5.27sgdb2配置信任
    可以把sgdb1中的authorized_keys(密钥文件)复制到sgdb2中
    [grid@sgdb1 ~]$ scp.ssh/authorized_keys   sgdb2:~/.ssh
    grid@sgdb2's password: grid的密码
    authorized_keys                             100% 1992     2.0KB/s  00:00 
    5.28 sgdb1上验证信任
    [grid@sgdb1 ~]$ ssh sgdb2 date
    [grid@sgdb1 ~]$ ssh sgdb2-priv date    
    [grid@sgdb1 ~]$ ssh sgdb1 date
    [grid@sgdb1 ~]$ ssh sgdb 1-priv date    
    5.29 sgdb2上验证信任
    [grid@sgdb2 ~]$ ssh sgdb1 date
    [grid@sgdb2~]$ ssh sgdb1-priv date    
    [grid@sgdb2 ~]$ ssh sgdb2 date
    [grid@sgdb2~]$ ssh sgdb2-priv date   
     
  • 相关阅读:
    【转】shell中的内建命令, 函数和外部命令
    clear out all variables without closing terminal
    linux中shell命令test用法和举例
    解决vim粘贴时格式混乱的问题
    scp的两种方式
    source 命令的用法,是在当前bash环境下执行脚本文件
    angularjs中下拉框select option默认值
    redux 及 相关插件 项目实战
    JavaScript 获取当前时间戳
    v-if v-else-if v-else
  • 原文地址:https://www.cnblogs.com/wuwanyu/p/8275603.html
Copyright © 2011-2022 走看看