※ [本文轉錄自 EZsoft 看板 #1CcBlzmW ]
法一
客戶端
1.下載PuTTYgen
http://the.earth.li/~sgtatham/putty/latest/x86/puttygen.exe
2.用 PuTTYgen 產生公鑰跟私鑰
Generate -> 亂動滑鼠 -> Save public key -> Save private key
(假設公鑰跟私鑰的檔名分別是id_rsa.pub跟id_rsa.ppk)
(私鑰相當於登入密碼, 請注意保管及檔案權限)
3.把公鑰(id_rsa.pub)上傳到ssh伺服器
4.修改PieTTY設定
PuTTY模式 -> Session -> 選擇Saved Session -> Load
-> Connection -> SSH -> Auth -> Browse
-> 輸入私鑰(id_rsa.ppk)路徑 -> Session -> Save
伺服器端
1. 把"~/.ssh"的檔案權限改成700
chmod 700 ~/.ssh
2. 建立"~/.ssh/authorized_keys"這個檔案, 並把檔案權限改成600
touch ~/.ssh/authorized_keys
chmod 600 ~/.ssh/authorized_keys
3. 把公鑰(id_rsa.pub)的內容append到authorized_keys中
cat [id_rsa.pub路徑] >> ~/.ssh/authorized_keys
4. 修改authorized_keys的內容:
- 把註解去掉
- 行首加上字串"ssh-rsa"跟一個空格
- 把非註解的部份串成一行
- 行尾加個空白 , 以及"[你在ssh server的ID]@[ssh server的domain name]"
範例:
本來是
---- BEGIN SSH2 PUBLIC KEY ----
Comment: "rsa-key-20100921"
AAAAB3NzaC1yc2EAAAABJQAAAIEAnisbHiW+95epmkhN2WbJPdgF4RfovFAFJh2Q
3NxAKLB+4Qz8Pxv9IQS7v/2JLltmseoPnME2p7VtMLsndTVgarJUZxX6P3q8u3jv
gPOVEHNM2cUS+c+rTyPs7Phe02E7IwGAsSHjCqSph+9RhlN0xYKVKLSBzrMbfbIH
0SKjYa0=
---- END SSH2 PUBLIC KEY ----
要改成
ssh-rsa AAAAB3NzaC1yc2EAAAABJQAAAIEAnisbHiW+95epmkhN2WbJPdgF4RfovFAFJh2Q3NxAKLB+4Qz8Pxv9IQS7v/2JLltmseoPnME2p7VtMLsndTVgarJUZxX6P3q8u3jvgPOVEHNM2cUS+c+rTyPs7Phe02E7IwGAsSHjCqSph+9RhlN0xYKVKLSBzrMbfbIH0SKjYa0= [你在ssh server的ID]@[ssh server的domain name]
法二
伺服器端
1.用 ssh-keygen 指令產生公鑰(id_rsa.pub)跟私鑰(id_rsa)
ssh-keygen -t rsa
2. 把"~/.ssh"的檔案權限改成700, 把私鑰(id_rsa)的檔案權限改成600
chmod 700 ~/.ssh
chmod 600 ~/.ssh/id_rsa
3. 建立"~/.ssh/authorized_keys"這個檔案, 並把檔案權限改成600
touch ~/.ssh/authorized_keys
chmod 600 ~/.ssh/authorized_keys
4. 把公鑰(id_rsa.pub)的內容append到authorized_keys中
cat [id_rsa.pub路徑] >> ~/.ssh/authorized_keys
5. 這邊不需修改authorized_keys(不像法一的伺服器端步驟4)
客戶端
1.下載PuTTYgen
http://the.earth.li/~sgtatham/putty/latest/x86/puttygen.exe
2.把私鑰(id_rsa)載回客戶端後, 用PuTTYgen轉成PieTTY支援的格式
Load -> 輸入私鑰(id_rsa)路徑
-> Save private key(假設存成id_rsa.ppk)
3.修改PieTTY設定
PuTTY模式 -> Session -> 選擇Saved Session -> Load
-> Connection -> SSH -> Auth -> Browse
-> 輸入私鑰(id_rsa.ppk)路徑 -> Session -> Save
之後用 PieTTY 或 Putty 登入 ssh 伺服器時就不需輸入密碼了
--
法一
客戶端
1.下載PuTTYgen
http://the.earth.li/~sgtatham/putty/latest/x86/puttygen.exe
2.用 PuTTYgen 產生公鑰跟私鑰
Generate -> 亂動滑鼠 -> Save public key -> Save private key
(假設公鑰跟私鑰的檔名分別是id_rsa.pub跟id_rsa.ppk)
(私鑰相當於登入密碼, 請注意保管及檔案權限)
3.把公鑰(id_rsa.pub)上傳到ssh伺服器
4.修改PieTTY設定
PuTTY模式 -> Session -> 選擇Saved Session -> Load
-> Connection -> SSH -> Auth -> Browse
-> 輸入私鑰(id_rsa.ppk)路徑 -> Session -> Save
伺服器端
1. 把"~/.ssh"的檔案權限改成700
chmod 700 ~/.ssh
2. 建立"~/.ssh/authorized_keys"這個檔案, 並把檔案權限改成600
touch ~/.ssh/authorized_keys
chmod 600 ~/.ssh/authorized_keys
3. 把公鑰(id_rsa.pub)的內容append到authorized_keys中
cat [id_rsa.pub路徑] >> ~/.ssh/authorized_keys
4. 修改authorized_keys的內容:
- 把註解去掉
- 行首加上字串"ssh-rsa"跟一個空格
- 把非註解的部份串成一行
- 行尾加個空白 , 以及"[你在ssh server的ID]@[ssh server的domain name]"
範例:
本來是
---- BEGIN SSH2 PUBLIC KEY ----
Comment: "rsa-key-20100921"
AAAAB3NzaC1yc2EAAAABJQAAAIEAnisbHiW+95epmkhN2WbJPdgF4RfovFAFJh2Q
3NxAKLB+4Qz8Pxv9IQS7v/2JLltmseoPnME2p7VtMLsndTVgarJUZxX6P3q8u3jv
gPOVEHNM2cUS+c+rTyPs7Phe02E7IwGAsSHjCqSph+9RhlN0xYKVKLSBzrMbfbIH
0SKjYa0=
---- END SSH2 PUBLIC KEY ----
要改成
ssh-rsa AAAAB3NzaC1yc2EAAAABJQAAAIEAnisbHiW+95epmkhN2WbJPdgF4RfovFAFJh2Q3NxAKLB+4Qz8Pxv9IQS7v/2JLltmseoPnME2p7VtMLsndTVgarJUZxX6P3q8u3jvgPOVEHNM2cUS+c+rTyPs7Phe02E7IwGAsSHjCqSph+9RhlN0xYKVKLSBzrMbfbIH0SKjYa0= [你在ssh server的ID]@[ssh server的domain name]
法二
伺服器端
1.用 ssh-keygen 指令產生公鑰(id_rsa.pub)跟私鑰(id_rsa)
ssh-keygen -t rsa
2. 把"~/.ssh"的檔案權限改成700, 把私鑰(id_rsa)的檔案權限改成600
chmod 700 ~/.ssh
chmod 600 ~/.ssh/id_rsa
3. 建立"~/.ssh/authorized_keys"這個檔案, 並把檔案權限改成600
touch ~/.ssh/authorized_keys
chmod 600 ~/.ssh/authorized_keys
4. 把公鑰(id_rsa.pub)的內容append到authorized_keys中
cat [id_rsa.pub路徑] >> ~/.ssh/authorized_keys
5. 這邊不需修改authorized_keys(不像法一的伺服器端步驟4)
客戶端
1.下載PuTTYgen
http://the.earth.li/~sgtatham/putty/latest/x86/puttygen.exe
2.把私鑰(id_rsa)載回客戶端後, 用PuTTYgen轉成PieTTY支援的格式
Load -> 輸入私鑰(id_rsa)路徑
-> Save private key(假設存成id_rsa.ppk)
3.修改PieTTY設定
PuTTY模式 -> Session -> 選擇Saved Session -> Load
-> Connection -> SSH -> Auth -> Browse
-> 輸入私鑰(id_rsa.ppk)路徑 -> Session -> Save
之後用 PieTTY 或 Putty 登入 ssh 伺服器時就不需輸入密碼了
--
All Comments