Shell批量SSH免交互登录认证-创新互联-梓潼大橙子建站

新闻中心

这里有您想知道的互联网营销解决方案

Shell批量SSH免交互登录认证-创新互联

脚本实现功能：批量或单个SSH免交互登录认证

创新互联公司专业为企业提供三沙网站建设、三沙做网站、三沙网站设计、三沙网站制作等企业网站建设、网页设计与制作、三沙企业网站模板建站服务，10余年三沙做网站经验，不只是建网站，更提供有价值的思路和整体网络服务。

脚本应用场景：当部署集群时，大多数实现要配置好管理节点与从节点的SSH免交互登录，针对这样的情况，写了下面脚本，简化工作。

脚本支持系统：Ubuntu和CentOS

#!/bin/bash # Description: configuration local host and remote host ssh keypair authentication, Support Ubuntu and CentOS operation system. # Blog: http://lizhenliang.blog.51cto.com function color_echo() { if [ $1 == "green" ]; then echo -e "\033[32;40m$2\033[0m" elif [ $1 == "red" ]; then echo -e "\033[31;40m$2\033[0m" fi } function os_version() { local OS_V=$(cat /etc/issue |awk 'NR==1{print $1}') if [ $OS_V == "\S" -o $OS_V == "CentOS" ]; then echo "CentOS" elif [ $OS_V == "Ubuntu" ]; then echo "Ubuntu" fi } function check_ssh_auth() { if $(grep "Permission denied" $EXP_TMP_FILE >/dev/null); then color_echo red "Host $IP SSH authentication failure! Login password error." exit 1 elif $(ssh $INFO 'echo yes >/dev/null'); then color_echo green "Host $IP SSH authentication successfully." fi rm $EXP_TMP_FILE >/dev/null } function check_pkg() { local PKG_NAME=$1 if [ $(os_version) == "CentOS" ]; then if ! $(rpm -ql $PKG_NAME >/dev/null 2>&1); then echo no else echo yes fi elif [ $(os_version) == "Ubuntu" ]; then if ! $(dpkg -l $PKG_NAME >/dev/null 2>&1); then echo no else echo yes fi fi } function install_pkg() { local PKG_NAME=$1 if [ $(os_version) == "CentOS" ]; then if [ $(check_pkg $PKG_NAME) == "no" ]; then yum install $PKG_NAME -y if [ $(check_pkg $PKG_NAME) == "no" ]; then color_echo green "The $PKG_NAME installation failure! Try to install again." yum makecache yum install $PKG_NAME -y [ $(check_pkg $PKG_NAME) == "no" ] && color_echo red "The $PKG_NAME installation failure!" && exit 1 fi fi elif [ $(os_version) == "Ubuntu" ]; then if [ $(check_pkg $PKG_NAME) == "no" ]; then apt-get install $PKG_NAME -y if [ $(check_pkg $PKG_NAME) == "no" ]; then color_echo green "$PKG_NAME installation failure! Try to install again." apt-get autoremove && apt-get update apt-get install $PKG_NAME --force-yes -y [ $(check_pkg $PKG_NAME) == "no" ] && color_echo red "The $PKG_NAME installation failure!" && exit 1 fi fi fi } function generate_keypair() { if [ ! -e ~/.ssh/id_rsa.pub ]; then color_echo green "The public/private rsa key pair not exist, start Generating..." expect -c " spawn ssh-keygen expect { \"ssh/id_rsa):\" {send \"\r\";exp_continue} \"passphrase):\" {send \"\r\";exp_continue} \"again:\" {send \"\r\";exp_continue} } " >/dev/null 2>&1 if [ -e ~/.ssh/id_rsa.pub ]; then color_echo green "Generating public/private rsa key pair successfully." else color_echo red "Generating public/private rsa key pair failure!" exit 1 fi fi } EXP_TMP_FILE=/tmp/expect_ssh.tmp if [[ $1 =~ ^[a-z]+@[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}@.* ]]; then install_pkg expect ; generate_keypair for i in $@; do USER=$(echo $i|cut -d@ -f1) IP=$(echo $i|cut -d@ -f2) PASS=$(echo $i|cut -d@ -f3) INFO=$USER@$IP expect -c " spawn ssh-copy-id $INFO expect { \"(yes/no)?\" {send \"yes\r\";exp_continue} \"password:\" {send \"$PASS\r\";exp_continue} } " > $EXP_TMP_FILE # if login failed, login error info append temp file check_ssh_auth done elif [[ $1 =~ ^[a-z]+@[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}-[0-9]{1,3}@.* ]]; then install_pkg expect ; generate_keypair START_IP_NUM=$(echo $1|sed -r 's/.*\.(.*)-(.*)@.*/\1/') END_IP_NUM=$(echo $1|sed -r 's/.*\.(.*)-(.*)@.*/\2/') for ((i=$START_IP_NUM;i<=$END_IP_NUM;i++)); do USER=$(echo $1|cut -d@ -f1) PASS=$(echo $1|cut -d@ -f3) IP_RANGE=$(echo $1|sed -r 's/.*@(.*\.).*/\1/') IP=$IP_RANGE$i INFO=$USER@$IP_RANGE$i expect -c " spawn ssh-copy-id $INFO expect { \"(yes/no)?\" {send \"yes\r\";exp_continue} \"password:\" {send \"$PASS\r\";exp_continue} } " > $EXP_TMP_FILE check_ssh_auth done else echo "Example1: $0 " echo "Example2: $0 " echo "Example3: $0 [root@192.168.1.10@password root@192.168.1.11@password root@192.168.1.12@password ...]" fi

Shell批量SSH免交互登录认证

另外有需要云服务器可以了解下创新互联cdcxhl.cn，海内外云服务器15元起步，三天无理由+7*72小时售后在线，公司持有idc许可证，提供“云服务器、裸金属服务器、高防服务器、香港服务器、美国服务器、虚拟主机、免备案服务器”等云主机租用服务以及企业上云的综合解决方案，具有“安全稳定、简单易用、服务可用性高、性价比高”等特点与优势，专为企业上云打造定制，能够满足用户丰富、多元化的应用场景需求。

本文标题：Shell批量SSH免交互登录认证-创新互联
文章出自：http://sczitong.cn/article/dediep.html

新闻中心

其他资讯