Public key/ private key

-

How to make the ssh connection on remote server from Ansible server

Step1: Generate key

ssh-keygen -t rsa -b 4096

Step2: Go to the path

cd /root/.ssh

ls

authorized_keys id_rsa id_rsa.pub known_hosts

Where id_rsa ----> private key (Used to login on the remote server without password)

      id_rsa.pub ---->public key

Note: If someone gets access to this file (id_rsa), they can log in to any server where the matching public key is stored!

Step3: Copy the public key

cat id_rsa.pub

Step4: Paste the public key on remote server

vi ~/.ssh/authorized_keys or vi /root/.ssh/authorized_keys

Step5: Now we can login on remote server

From Private key: ssh -i ~/.ssh/id_rsa user@remote-server

From Public key: 

Note: In case of ansible ansible-playbook playbook.yml --private-key ~/.ssh/id_rsa


Note: In file /etc/ssh/sshd_config, below parameter should be enable:

PubkeyAuthentication yes 

PermitRootLogin yes 

AuthorizedKeysFile .ssh/authorized_keys 

PasswordAuthentication no

Then need to restart the ssh service

systemctl restart sshd








Comments

Post a Comment

Popular posts from this blog

How to enable the syslog monitoring-Zabbix

-
Steps need to be performed:  On the Syslog server side:  1. Install the rsyslog sudo yum install rsyslog 2.  Enable rsyslog service: Start and enable the rsyslog service if it’s not already running: sudo systemctl start rsyslog sudo systemctl enable rsyslog 3.  Configure rsyslog to accept remote logs: Open the rsyslog configuration file: vi /etc/rsyslog.conf Uncomment or add the following lines to enable UDP or TCP log reception: # Provides UDP syslog reception module(load="imudp") input(type="imudp" port="514") # Provides TCP syslog reception module(load="imtcp") input(type="imtcp" port="514") 4.  Restart the rsyslog service: After saving the configuration file, restart rsyslog to apply the changes: sudo systemctl restart rsyslog 5. Ensure the firewall is configured to allow the TCP/UDP port 514 or disable the firewall service. 6. Ensure that SELinux is disable if not disable it Check the status of SELinux sestatus Disa...
Read more

Zabbix installation: Distribution setup

-
  On Zabbix core server: Step1:   Install Zabbix repository rpm -Uvh https://repo.zabbix.com/zabbix/6.0/rhel/8/x86_64/zabbix-release-latest-6.0.el8.noarch.rpm dnf clean all Step2: Install Zabbix server, frontend, agent dnf install zabbix-server-mysql zabbix-web-mysql zabbix-apache-conf zabbix-selinux-policy zabbix-agent Step3:   Configure the database for Zabbix server Edit file /etc/zabbix/zabbix_server.conf DBHost= DBserver_ip DBName= DBUser= DBPassword= DBPort=3306 Step4:  Start Zabbix server and agent processes systemctl restart zabbix-server zabbix-agent httpd php-fpm systemctl enable zabbix-server zabbix-agent httpd php-fpm On Zabbix Database Server: Step1:   Install Zabbix repository rpm -Uvh https://repo.zabbix.com/zabbix/6.0/rhel/8/x86_64/zabbix-release-latest-6.0.el8.noarch.rpm dnf clean all Step2: Install the sql script, zabbix agent  dnf install zabbix-sql-scripts zabbix-selinux-policy zabbix-agent Step3: Install the mysql server yum install my...
Read more

API & API in Zabbix

-
API (Application programming interface):   An API is a set of rules and protocols that allows one software application to interact with another. It defines the methods and data formats that applications can use to request and exchange information. APIs are typically used for both retrieving data from a service (like fetching information from a database or another web service) and sending data to a service (like submitting a form or updating information). Zabbix API: The Zabbix API is a powerful tool that allows you to interact programmatically with the Zabbix monitoring system. It provides endpoints for various operations such as managing hosts, items, triggers, and more. The Zabbix API is a JSON-RPC-based interface provided by Zabbix for programmatically interacting with and managing the Zabbix monitoring system. ### Key Features - **Automate Tasks**: Create, update, or delete objects like hosts, items, and triggers. - **Query Data**: Retrieve monitoring data, configuration detail...
Read more