informatica:linux:ssh:login_intercambio_claves
Differences
This shows you the differences between two versions of the page.
| Both sides previous revisionPrevious revisionNext revision | Previous revision | ||
| informatica:linux:ssh:login_intercambio_claves [2009/01/31 12:05] – javi | informatica:linux:ssh:login_intercambio_claves [2015/04/13 20:19] (current) – external edit 127.0.0.1 | ||
|---|---|---|---|
| Line 1: | Line 1: | ||
| - | ====== Login por SSH por intercambio de claves | + | ===== Login por SSH por intercambio de claves ===== |
| - | Me quiero logar en la máquina maquina2.mine.nu con el usuario usuario2 desde la máquina maquina1 con el usuario usuario1 sin que me pida autenticación: | + | ssh keys exchange |
| - | Desde la máquina A creamos las claves para el usuario | + | Quiero iniciar sesion desde ' |
| - | # ssh-keygen -t dsa | + | |
| - | Generating public/ | + | |
| - | Enter file in which to save the key (/ | + | |
| - | Enter passphrase (empty for no passphrase): | + | |
| - | Enter same passphrase again: | + | |
| - | Your identification has been saved in / | + | |
| - | Your public key has been saved in / | + | |
| - | The key fingerprint is: | + | |
| - | e7: | + | |
| - | The key's randomart image is: | + | |
| - | +--[ DSA 1024]----+ | + | |
| - | | | | + | |
| - | | | | + | |
| - | | | | + | |
| - | | . o | | + | |
| - | | . +. S + o | | + | |
| - | | o. =.Eo = . . | | + | |
| - | |. +o... + . . | | + | |
| - | |.o +.. . | + | |
| - | |o...o . | + | |
| - | +-----------------+ | + | |
| + | ^ Maquina ^ Usuario ^ | ||
| + | | maquina1 | usuario | | ||
| + | | maquina2 | usuario | | ||
| - | Luego copiamos la clave dentro del fichero: | + | ==== Recomendada ==== |
| - | / | + | |
| - | Podemos subirla al servidor, | + | 1. (maquina1) Creamos las claves para el usuario ' |
| - | #scp -P 443 id_dsa.pub usuario2@maquina2.mine.nu:. | + | |
| - | #ssh usuario2@maquina2.mine.nu | + | |
| - | #cat id_dsa.pub >> .ssh/ | + | |
| - | Y ahora lo hacemos al revés | + | ssh-keygen -t rsa |
| + | Pulsamos ' | ||
| + | < | ||
| + | Generating public/ | ||
| + | Enter file in which to save the key (/ | ||
| + | Enter passphrase (empty for no passphrase): | ||
| + | Enter same passphrase again: | ||
| + | Your identification has been saved in / | ||
| + | Your public key has been saved in / | ||
| + | The key fingerprint is: | ||
| + | 3c: | ||
| + | The key's randomart image is: | ||
| + | +--[ RSA 1024]----+ | ||
| + | | . + | | ||
| + | | o + o | | ||
| + | | o * o | | ||
| + | | = X + | | ||
| + | | . E O | | ||
| + | | . = o | | ||
| + | | . o | | ||
| + | | o . | | ||
| + | | . | | ||
| + | +-----------------+ | ||
| + | </ | ||
| + | |||
| + | Habremos generado el siguiente archivo: | ||
| + | |||
| + | / | ||
| + | |||
| + | 2. (maquina1) Copiamos el archivo generado en el paso anterio a ' | ||
| + | |||
| + | ssh-copy-id usuario@maquina2 | ||
| + | |||
| + | ==== A mano ==== | ||
| + | |||
| + | 1. (maquina1) Creamos las claves para el usuario ' | ||
| + | |||
| + | ssh-keygen -t rsa | ||
| + | |||
| + | Pulsamos ' | ||
| + | |||
| + | < | ||
| + | Generating public/ | ||
| + | Enter file in which to save the key (/ | ||
| + | Enter passphrase (empty for no passphrase): | ||
| + | Enter same passphrase again: | ||
| + | Your identification has been saved in / | ||
| + | Your public key has been saved in / | ||
| + | The key fingerprint is: | ||
| + | 3c: | ||
| + | The key's randomart image is: | ||
| + | +--[ RSA 1024]----+ | ||
| + | | . + | | ||
| + | | o + o | | ||
| + | | o * o | | ||
| + | | = X + | | ||
| + | | . E O | | ||
| + | | . = o | | ||
| + | | . o | | ||
| + | | o . | | ||
| + | | . | | ||
| + | +-----------------+ | ||
| + | </ | ||
| + | |||
| + | Habremos generado el siguiente archivo: | ||
| + | |||
| + | / | ||
| + | |||
| + | 2. (maquina1) Copiamos el archivo generado en el paso anterio a ' | ||
| + | |||
| + | scp / | ||
| + | |||
| + | 3. (maquina2) Creamos si no lo estan directorios y archivos necesarios. Finalmente incorporamos el archivo de claves a la lista de maquinas autorizadas: | ||
| + | |||
| + | < | ||
| + | [[ ! .ssh ]]; mkdir .ssh | ||
| + | [[ ! .ssh/ | ||
| + | chmod 600 .ssh/ | ||
| + | cat / | ||
| + | </ | ||
| + | |||
| + | 4. (maquina1) Deberiamos ser capaces de iniciar una session SSH desde ' | ||
| + | |||
| + | ssh maquina2 | ||
informatica/linux/ssh/login_intercambio_claves.1233403517.txt.gz · Last modified: 2015/04/13 20:19 (external edit)