5.1 Oracle用户下建立信任
5.11创建.ssh目录
[root@sgdb1 /]# su - oracle

[oracle@sgdb1 ~]$ mkdir .ssh       创建一个.ssh的隐藏目录
[oracle@sgdb1 ~]$ ls -al
total 44
-rw-r--r-- 1 oracle oinstall   33 Jul 12 17:05 .bash_logout
-rw-r--r-- 1 oracle oinstall  438 Jul 12 18:03 .bash_profile
drwxr-xr-x 4 oracle oinstall 4096 Jul 1217:05 .mozilla
drwx------ 2 oracle oinstall 4096 Jul 1218:05 .ssh
-rw------- 1 oracle oinstall  657 Jul 12 18:03 .viminfo
5.12 sgdb1生成密钥rsa类型
id_rsa为私钥,自动保存到.ssh下
id_rsa.pub为公钥,自动保存到.ssh下
[oracle@sgdb1 ~]$ ssh-keygen -t rsa

Generating public/private rsa key pair.
Enter file in which to save the key(/home/oracle/.ssh/id_rsa):  enter
Enter passphrase (empty for nopassphrase):  enter
Enter same passphrase again:  enter
Your identification has been saved in/home/oracle/.ssh/id_rsa.
Your public key has been saved in/home/oracle/.ssh/id_rsa.pub.           
The key fingerprint is:
64:a6:4a:77:db:33:a4:aa:6e:ca:8f:5f:2f:77:0f:40oracle@sgdb1
5.12 sgdb1生成密钥dsa类型
id_dsa为私钥,自动保存到.ssh下
id_dsa.pub为公钥,自动保存到.ssh下
[oracle@sgdb1 ~]$ ssh-keygen -t dsa

Generating public/private dsa key pair.
Enter file in which to save the key(/home/oracle/.ssh/id_dsa): enter                        
Enter passphrase (empty for no passphrase):enter
Enter same passphrase again: enter
Your identification has been saved in/home/oracle/.ssh/id_dsa.
Your public key has been saved in/home/oracle/.ssh/id_dsa.pub.                
The key fingerprint is:
7c:41:b5:0f:81:06:ad:30:07:4f:8b:1a:9b:94:68:14oracle@sgdb1
5.13 sgdb2生成密钥rsa类型
id_rsa为私钥,自动保存到.ssh下
id_rsa.pub为公钥,自动保存到.ssh下
 [oracle@sgdb2 asm]# su - oracle

[oracle@sgdb2 ~]$ mkdir .ssh
[oracle@sgdb2 ~]$ ssh-keygen -t rsa      
Generating public/private rsa key pair.
Enter file in which to save the key(/home/oracle/.ssh/id_rsa):  enter             
Enter passphrase (empty for nopassphrase):  enter
Enter same passphrase again:  enter
Your identification has been saved in/home/oracle/.ssh/id_rsa.
Your public key has been saved in/home/oracle/.ssh/id_rsa.pub.           
The key fingerprint is:
64:a6:4a:77:db:33:a4:aa:6e:ca:8f:5f:2f:77:0f:40oracle@sgdb1
5.14 sgdb2生成密钥dsa类型
id_dsa为私钥,自动保存到.ssh下
id_dsa.pub为公钥,自动保存到.ssh下
 [oracle@sgdb2 ~]$ ssh-keygen -tdsa

Generatingpublic/private dsa key pair.
Enter file inwhich to save the key (/home/oracle/.ssh/id_dsa): enter                        
Enter passphrase(empty for no passphrase): enter
Enter samepassphrase again: enter
Youridentification has been saved in /home/oracle/.ssh/id_dsa.
Your public keyhas been saved in /home/oracle/.ssh/id_dsa.pub.                
The keyfingerprint is:
7c:41:b5:0f:81:06:ad:30:07:4f:8b:1a:9b:94:68:14oracle@sgdb1
5.16 sgdb1配置信任
rsa和dsa为私钥,.pub的为公钥 
ssh下文件authorized_keys是专门存储公钥信息的
把rsa、dsa类型的公钥文件都放入到authorized_keys文件里
下操作
的authorized_keys文件里
[oracle@sgdb1 ~]$ ls .ssh

id_dsa       id_rsa             id_dsa.pub   id_rsa.pub     
[oracle@sgdb1 ~]$ cat.ssh/id_rsa.pub >>.ssh/authorized_keys
[oracle@sgdb1 ~]$ cat.ssh/id_dsa.pub >>.ssh/authorized_keys
[oracle@sgdb1 ~]$ ssh sgdb2  cat .ssh/id_rsa.pub>>.ssh/authorized_keys
oracle@sgdb2's password:
[oracle@sgdb1 ~]$ ssh sgdb2  cat .ssh/id_dsa.pub>>.ssh/authorized_keys
oracle@sgdb2's password:  oracle的密码
5.17 sgdb2配置信任
可以把sgdb1中的authorized_keys(密钥文件)复制到sgdb2中
[oracle@sgdb1 ~]$ scp.ssh/authorized_keys   sgdb2:~/.ssh

oracle@sgdb2's password: oracle的密码
5.18 sgdb1上验证信任
[oracle@sgdb1 ~]$ ssh sgdb2 date

[oracle@sgdb1 ~]$ ssh sgdb 2-privdate     //私有ip地址验证
[oracle@sgdb1 ~]$ ssh sgdb 1date
[oracle@sgdb1 ~]$ ssh sgdb 1-privdate    
5.19 sgdb2上验证信任
[oracle@sgdb2 ~]$ ssh sgdb1 date

[oracle@sgdb2~]$ ssh sgdb 1-priv date    
[oracle@sgdb2 ~]$ ssh sgdb2 date
[oracle@sgdb2~]$ ssh sgdb2-priv date    
5.2 Grid 用户下建立信任
步骤同oracle 一样,可参考oracle用户下设置
5.21创建.ssh目录
在grid用户下操作:
[root@sgdb1 /]# su– grid

[grid@sgdb1 ~]$mkdir .ssh       创建一个.ssh的隐藏目录
[grid@sgdb1 ~]$ ls-al
5.22 sgdb1生成密钥rsa类型
id_rsa为私钥,自动保存到.ssh下
id_rsa.pub为公钥,自动保存到.ssh下
[grid@sgdb1 ~]$ ssh-keygen-t rsa

Generating public/private rsa key pair.
Enter file in which to save the key(/home/oracle/.ssh/id_rsa):  enter             
Enter passphrase (empty for no passphrase):  enter
Enter same passphrase again:  enter
Your identification has been saved in/home/oracle/.ssh/id_rsa.
Your public key has been saved in/home/oracle/.ssh/id_rsa.pub.           
The key fingerprint is:
64:a6:4a:77:db:33:a4:aa:6e:ca:8f:5f:2f:77:0f:40oracle@sgdb1
5.23 sgdb1生成密钥dsa类型
id_dsa为私钥,自动保存到.ssh下
id_dsa.pub为公钥,自动保存到.ssh下
  [grid@sgdb1 ~]$ ssh-keygen-t dsa

Generating public/private dsa key pair.
Enter file in which to save the key(/home/oracle/.ssh/id_dsa): enter                        
Enter passphrase (empty for no passphrase): enter
Enter same passphrase again: enter
Your identification has been saved in/home/oracle/.ssh/id_dsa.
Your public key has been saved in/home/oracle/.ssh/id_dsa.pub.                
The key fingerprint is:
7c:41:b5:0f:81:06:ad:30:07:4f:8b:1a:9b:94:68:14oracle@sgdb1
5.24 sgdb2生成密钥rsa类型
id_rsa为私钥,自动保存到.ssh下
id_rsa.pub为公钥,自动保存到.ssh下
 [root@sgdb2 ~]# su – grid

[grid@sgdb2 ~]$ mkdir .ssh
[grid@sgdb2 ~]$ ssh-keygen-t rsa     
Generating public/private rsa key pair.
Enter file in which to save the key(/home/oracle/.ssh/id_rsa):  enter             
Enter passphrase (empty for no passphrase):  enter
Enter same passphrase again:  enter
Your identification has been saved in/home/oracle/.ssh/id_rsa.
Your public key has been saved in/home/oracle/.ssh/id_rsa.pub.           
The key fingerprint is:
64:a6:4a:77:db:33:a4:aa:6e:ca:8f:5f:2f:77:0f:40oracle@sgdb1
5.25 sgdb2生成密钥dsa类型
id_dsa为私钥,自动保存到.ssh下
id_dsa.pub为公钥,自动保存到.ssh下
[grid@sgdb2 ~]$ ssh-keygen -t dsa

Generating public/private dsa key pair.
Enter file in which to save the key(/home/oracle/.ssh/id_dsa): enter                        
Enter passphrase (empty for no passphrase): enter
Enter same passphrase again: enter
Your identification has been saved in/home/oracle/.ssh/id_dsa.
Your public key has been saved in/home/oracle/.ssh/id_dsa.pub.                
The key fingerprint is:
7c:41:b5:0f:81:06:ad:30:07:4f:8b:1a:9b:94:68:14oracle@sgdb1
5.26sgdb1配置信任
[grid@sgdb1 ~]$ ls .ssh

id_dsa       id_rsa             id_dsa.pub   id_rsa.pub      known_hosts
[grid@sgdb1 ~]$ cat.ssh/id_rsa.pub >>.ssh/authorized_keys
[grid@sgdb1 ~]$ cat.ssh/id_dsa.pub >>.ssh/authorized_keys
[grid@sgdb1 ~]$ ssh sgdb2  cat .ssh/id_rsa.pub>>.ssh/authorized_keys
grid@sgdb2's password:
[grid@sgdb1 ~]$ ssh sgdb2  cat .ssh/id_dsa.pub >>.ssh/authorized_keys
grid@sgdb2's password: grid的密码
5.27sgdb2配置信任
可以把sgdb1中的authorized_keys(密钥文件)复制到sgdb2中
[grid@sgdb1 ~]$ scp.ssh/authorized_keys   sgdb2:~/.ssh

grid@sgdb2's password: grid的密码
authorized_keys                             100% 1992     2.0KB/s  00:00 
5.28 sgdb1上验证信任
[grid@sgdb1 ~]$ ssh sgdb2 date

[grid@sgdb1 ~]$ ssh sgdb2-priv date    
[grid@sgdb1 ~]$ ssh sgdb1 date
[grid@sgdb1 ~]$ ssh sgdb 1-priv date    
5.29 sgdb2上验证信任
[grid@sgdb2 ~]$ ssh sgdb1 date

[grid@sgdb2~]$ ssh sgdb1-priv date    
[grid@sgdb2 ~]$ ssh sgdb2 date
[grid@sgdb2~]$ ssh sgdb2-priv date   
 

第5步:建立主机间的信任关系(sgdb1、sgdb2)的更多相关文章

  1. Solaris主机间的信任关系机制

    解决问题: 管理员经常在其他服务器之间登录,是否需要密码切换. 知识点:主机间信任关系.R 命令集 /etc/hosts/equiv 文件 R服务是不加密的,别人可以破解. 主机名 + 用户名. + ...

  2. Android手机与计算机间的”信任关系”

    在iDevices(如iPhone.iPad等等)的取证方面,那个代表”信任关系”的plist无疑是最为关键的迹证,只要有了它,哪怕是最新机型的iDevice及最新版的iOS,且有着指纹保护或pass ...

  3. [域|Domain] The trust relationship between this workstation and the primary domain failed 此工作站和主域间的信任关系失败

    PS> $cred = Get-Credential domain.sample.com;Reset-ComputerMachinePassword -Credential $cred -Ser ...

  4. ssh两台机器建立信任关系无密码登陆

    在建立信任关系之前先看看基于公钥.私钥的加密和认证. 私钥签名过程 消息-->[私钥]-->签名-->[公钥]-->认证 私钥数字签名,公钥验证 Alice生成公钥和私钥,并将 ...

  5. centos下建立双机信任关系

    在有些情况下,我们希望在两台centos机器之间建立ssh连接的时候,可以不用输入密码.最常见的情况就是在使用脚本做数据库备份的时候.这种情况下,我们可以通过公钥/私钥来建立双机之间的信任关系. 网上 ...

  6. 【Linux学习笔记】用nc实现两台主机间的文件传输(不需要输密码)

    通常,可以用scp完成两台主机间的文件传输任务,但在主机间未建立信任关系的情况下,scp每次都需要输入密码,用起来感觉不是很方便,之前这篇笔记介绍过不用输入密码执行脚本或传输文件的方法,但对于一些临时 ...

  7. linux机器间建立信任关系

    linux机器间建立信任关系 如何建立信任关系 在shell脚本中,需要使用scp命令将本地的文件复制到另一台机器中备份.但通常执行scp命令后都需要输入用户密码,这样在定时自动执行shell脚本中就 ...

  8. linux建立信任关系

    (1).切换到需要建立信任关系的用户(2).执行命令:ssh-keygen  -d,然后一直回车.该命令会在用户home目录下生成一个隐藏的.ssh目录.目录里面有两个文件:id_dsa.id_dsa ...

  9. 建立SSH的信任关系

    1.在Client上root用户执行ssh-keygen命令,生成建立安全信任关系的证书.  Client端 # ssh-keygen -t rsa Generating public/private ...

随机推荐

  1. Redis 数据结构之简单动态字符串SDS

    几个概念1:key对象 数据库存储键值对的键,总是一个字符串对象.2:value对象 数据库存储键值对的值,可以是字符串对象,list对象,hash对象,set对象,sorted set对象.    ...

  2. Unity3D系列教程--使用免费工具在Unity3D中开发2D游戏 第一节

    声明:   本博客文章翻译类别的均为个人翻译,版权全部.出处: http://blog.csdn.net/ml3947,个人博客:http://www.wjfxgame.com. 译者说明:这是一个系 ...

  3. Tomcat源代码解析系列

    学web也有一段时间了.为了从底层了解web应用在Tomcat中的执行,决定看一下Tomcat的源代码參见<How Tomcat works>    和大牛博客.对大体架构有了一定的了解, ...

  4. 01-spring-专题IOC

    接口: 1,用于沟通的中介物的抽象化 2,实体把自己提供给外界的一种抽象化说明,用以内部操作分离出外部沟通方法,使其能被修改内部而不影响外界其他实体与其交互的方式(内部可能修改了,但是接口不变). 简 ...

  5. 01-hibernate注解:类级别注解准备工作

    注解简介: 目的:为了简化繁琐的ORM映射文件(.hbm)的配置. JPA与hibernate的关系 JPA:全称 java Persistence API(java持久化API接口) JPA注解是J ...

  6. [机器学习实战] 决策树ID3算法

    1. 决策树特点: 1)优点:计算复杂度不高,输出结果易于理解,对中间值的缺失不敏感,可以处理不相关特征数据. 2)缺点:可能会产生过度匹配问题. 3)适用数据类型:数值型和标称型. 2. 一般流程: ...

  7. 使用 ConfigurationSection 创建自定义配置节

    我们可以通过用自己的 XML 配置元素来扩展标准的 ASP.NET 配置设置集,要完成这一功能,我们必须实现继承System.Configuration.ConfigurationSection 类来 ...

  8. redis命令_ZRANGE

    ZRANGE key start stop [WITHSCORES] 返回有序集 key 中,指定区间内的成员. 其中成员的位置按 score 值递增(从小到大)来排序. 具有相同 score 值的成 ...

  9. js 阻止事件冒泡 支持所有主流浏览器

    function getEvent(){ if(window.event) {return window.event;} func=getEvent.caller; while(func!=null) ...

  10. 使用ss命令代替 netstat

    ss是Socket Statistics的缩写. 顾名思义,ss命令可以用来获取socket统计信息,它可以显示和netstat类似的内容.但ss的优势在于它能够显示更多更详细的有关TCP和连接状态的 ...