我有一个 LDAP 服务器,它有同步帐户。我想用它来SCP所有服务器之间的文件。我添加了同步用户/.ssh/authorized_keys文件并尝试SCP。错误如下:
[rsync@magdev2 fail2ban]$ scp jail.local [email protected]:/tmp
The authenticity of host 'abc.com (10.104.0.24)' can't be established.
ECDSA key fingerprint is 5a:7e:d8:ce:58:8b:45:27:56:ac:b8:be:d2:a9:9e:33.
Are you sure you want to continue connecting (yes/no)? yes
Warning: Permanently added 'abc.avery.com,10.104.0.24' (ECDSA) to the list of known hosts.
Permission denied (publickey,gssapi-keyex,gssapi-with-mic).
lost connection
[rsync@magdev2 fail2ban]$
有什么方法可以实现这一点?
答案1
man ssh-keyscan
ssh-keyscan 是一个用于收集多个主机的公共 ssh 主机密钥的实用程序。它旨在帮助构建和验证 ssh_known_hosts 文件。ssh-keyscan 提供了一个适合 shell 和 perl 脚本使用的最小接口。