linux配置免密登陆

主机示意配置表

Centos7.x系统上yum源方式服务器上安装ansible工具

yum -y install epel-release
yum -y install ansible vim

配置ansible基础配置

sed -i "s/^#(inventory.)/\1/g" /etc/ansible/ansible.cfg #打开主机清单列表文件
sed -i 's/^#(host_key_check.)/\1/g’ /etc/ansible/ansible.cfg #免去主机检查密钥

配置hosts文件

cat >> /etc/hosts << EOF
192.168.3.7 master
192.168.3.8 slaver1
EOF

host文件分发给slaver1机器，输入密码:123456

for i in 8
do
scp /etc/hosts 192.168.3.$i:/etc/
done

配置ansible分组列表

cat >> /etc/ansible/hosts << EOF
[web1]
slaver1

[web:children]
web1
[web:vars]
ansible_ssh_user=“root”
ansible_ssh_pass=“123456”
ansible_ssh_port=“22”
EOF

ansible查看分组列表情况

ansible all --list-host

ansible配置免密登陆

echo ‘’ | ssh-keygen -t rsa -b 2048 -N ‘’ -f /root/.ssh/id_rsa

方法一，输入密码:123456

ansible all -m authorized_key -a “user=root exclusive=true manage_dir=true key=‘$(< /root/.ssh/id_rsa.pub)’” -k -v

方法二

ansible web1 -m copy -a “src=/root/.ssh/id_rsa.pub dest=/root/.ssh/authorized_keys”

方法三

#!/usr/bin/env expect

set PASSWD "xxx"

spawn ansible all -m authorized_key -a "user=root key='{{ lookup('file','/root/.ssh/id_rsa.pub')}}' path='/root/.ssh/authorized_keys' manage_dir=no" --ask-pass -c paramiko

expect {
    "SSH password:" {send "$PASSWD\r"}
}

expect eof
1
2
3
4
5
6
7
8
9
10
11