進行免密碼驗證配置之前,要保證機器可以正常通信。
1、首先在MASTER機器配置
進去.ssh文件夾: [spark@MASTER sbin]$ cd~/.ssh/
生成祕鑰 ssh-keygen : ssh-keygen -t rsa ,一路狂按回車鍵就可以了
最終生成(id_rsa,id_rsa.pub兩個文件)
生成authorized_keys文件:[spark@MASTER .ssh]$ catid_rsa.pub >> authorized_keys
2、在另兩臺SLAVE機器也生成公鑰和祕鑰
步驟跟MASTER是類似的
進去.ssh文件: [spark@MASTER sbin]$ cd~/.ssh/
生成祕鑰 ssh-keygen :ssh-keygen -t rsa ,一路狂按回車鍵就可以了
最終生成(id_rsa,id_rsa.pub兩個文件)
3、將兩臺SLAVE機器的id_rsa.pub文件copy到MASTER機器:
[spark@SLAVE .ssh]$ scp id_rsa.pub [email protected]:~/.ssh/id_rsa.pub_sl1
[spark@SLAVE .ssh]$ scp id_rsa.pub [email protected]:~/.ssh/id_rsa.pub_sl2
4、切換到機器MASTER合併authorized_keys;
[spark@MASTER .ssh]$ cat id_rsa.pub_sl1>> authorized_keys
[spark@MASTER .ssh]$ cat id_rsa.pub_sl2 >>authorized_keys
5、將authorized_keyscopy到兩臺SLAVE機器(/home/spark/.ssh):
[spark@MASTER .ssh]$ scpauthorized_keys [email protected]:~/.ssh/
[spark@MASTER .ssh]$ scpauthorized_keys [email protected]:~/.ssh/
6、更改文件夾權限
現在將Master機器和兩臺slave機器.ssh/文件夾權限改爲700,authorized_keys文件權限改爲600(or 644)
chmod 700 ~/.ssh
chmod 600 ~/.ssh/authorized_keys
7、完成以上操作後可以開始ssh驗證了
Master ssh slave:
[spark@localhost ~]$ ssh 172.16.107.8
Last login: Thu Oct 22 08:04:00 2015 from172.16.107.135
[spark@localhost ~]$ ssh 172.16.107.7
Last login: Thu Oct 22 08:04:03 2015 from172.16.107.135
Slave ssh Master:
[spark@localhost ~]$ ssh 172.16.107.9
Last login: Thu Oct 22 07:52:20 2015 from172.16.107.135
[spark@localhost ~]$ ssh 172.16.107.9
Last login: Thu Oct 22 08:50:46 2015 from172.16.107.8
順利完成ssh免密碼驗證。
參考:
http://blog.csdn.net/stark_summer/article/details/42393053