SSh Agent admitted failure to sign using the key

现有2台机器

1、服务器192.168.1.112

2、个人机192.168.1.110

要使110无需密码通过ssh登入112

步骤

1、创建密钥

Java代码  收藏代码

   1. miao@u32-192-168-1-110:~/.ssh$ ssh-keygen -t rsa 
   2.  
   3. Generating public/private rsa key pair. 
   4. Enter passphrase (empty for no passphrase): (忽略) 
   5. Enter same passphrase again: (忽略) 
   6. Your identification has been saved in /home/miao/.ssh/id_rsa. 
   7. Your public key has been saved in /home/miao/.ssh/id_rsa.pub. 

miao@u32-192-168-1-110:~/.ssh$ ssh-keygen -t rsa

Generating public/private rsa key pair.
Enter passphrase (empty for no passphrase): (忽略)
Enter same passphrase again: (忽略)
Your identification has been saved in /home/miao/.ssh/id_rsa.
Your public key has been saved in /home/miao/.ssh/id_rsa.pub.



2、复制公密到服务器

Java代码  收藏代码

   1. miao@u32-192-168-1-110:~/.ssh$ scp id_rsa.pub [email protected]:/home/miao/.ssh/192.168.1.110 
   2. [email protected]'s password:  
   3. id_rsa.pub                                                                   100%  404     0.4KB/s   00:00     
   4. miao@u32-192-168-1-110:~/.ssh$  

miao@u32-192-168-1-110:~/.ssh$ scp id_rsa.pub [email protected]:/home/miao/.ssh/192.168.1.110
[email protected]'s password:
id_rsa.pub                                                                   100%  404     0.4KB/s   00:00   
miao@u32-192-168-1-110:~/.ssh$



3、添加公密到192.168.112的信任区域
Java代码  收藏代码

   1. miao@debian-192-168-1-112:~/.ssh$ cat 192.168.1.110 >> authorized_keys 
   2. miao@debian-192-168-1-112:~/.ssh$  

miao@debian-192-168-1-112:~/.ssh$ cat 192.168.1.110 >> authorized_keys
miao@debian-192-168-1-112:~/.ssh$



注： 2，3两步可由命令ssh-copy-id一步到位

Java代码  收藏代码

   1. miao@ubuntu-192-168-1-110:~/.ssh$ ssh-copy-id [email protected] 
   2. Password: 
   3. Now try logging into the machine, with "ssh '[email protected]'", and check in: 
   4.  
   5.   .ssh/authorized_keys 
   6.  
   7. to make sure we haven't added extra keys that you weren't expecting. 

miao@ubuntu-192-168-1-110:~/.ssh$ ssh-copy-id [email protected]
Password:
Now try logging into the machine, with "ssh '[email protected]'", and check in:

  .ssh/authorized_keys

to make sure we haven't added extra keys that you weren't expecting.



4、启动ssh-agent

如果ssh 192.168.112返回 Agent admitted failure to sign using the key
ps -Af|grep agent查看有无ssh-agent有无运行，若没有

Java代码  收藏代码

   1. miao@u32-192-168-1-110:~/.ssh$ ssh-agent 

miao@u32-192-168-1-110:~/.ssh$ ssh-agent



5、添加id_rsa到ssh-agent

Java代码  收藏代码

   1. miao@u32-192-168-1-110:~/.ssh$ ssh-add id_rsa