Koyaushe na kasance cikin takaici ta hanyar haɗawa da injinan Windows. A'a, ni ba abokin gaba ba ne ko kuma mai goyon bayan Microsoft da samfuran su. Kowane samfurin yana wanzu don manufar kansa, amma wannan ba shine abin da wannan ke nufi ba.
Koyaushe yana da zafi sosai a gare ni haɗi zuwa sabobin Windows, saboda ana saita waɗannan hanyoyin ta wuri ɗaya (sannu WinRM tare da HTTPS) ko kuma ba sa aiki sosai (sannu RDP zuwa injunan kama-da-wane a ƙasashen waje).
Saboda haka, tun da gangan ya ci karo da aikin , Na yanke shawarar raba kwarewar saiti na. Wataƙila wannan kayan aiki zai ceci wani mai yawa jijiyoyi.
Zaɓuɓɓukan shigarwa:
- Ta hanyar Chocolatey
- Via Mai yiwuwa, misali rawar
Na gaba, zan yi magana game da batu na farko, tun da komai ya fi ko žasa a fili tare da sauran.
Ina so in lura cewa wannan aikin har yanzu yana kan matakin beta, don haka ba a ba da shawarar yin amfani da shi wajen samarwa ba.
Don haka, zazzage sabon saki, a halin yanzu . Akwai nau'ikan duka biyun tsarin 32 da 64-bit.
Cire kaya a ciki C: Fayilolin Shirin Buɗe SSH
Batun wajibi don daidaitaccen aiki: kawai SYSTEM da admin group.
Shigar da ayyuka ta amfani da rubutun shigar-sshd.ps1 dake cikin wannan littafin
powershell.exe -ExecutionPolicy Bypass -File install-sshd.ps1Bada izinin haɗi mai shigowa akan tashar jiragen ruwa 22:
New-NetFirewallRule -Name sshd -DisplayName 'OpenSSH Server (sshd)' -Enabled True -Direction Inbound -Protocol TCP -Action Allow -LocalPort 22Bayani: applet Sabon-NetFirewallRule amfani a kan Windows Server 2012 da kuma daga baya. A cikin tsofaffin tsarin (ko tebur) zaka iya amfani da umarnin:
netsh advfirewall firewall add rule name=sshd dir=in action=allow protocol=TCP localport=22
Bari mu fara sabis:
net start sshdA farawa, za a samar da maɓallan masauki ta atomatik (idan sun ɓace) a ciki %programdata%ssh
Za mu iya kunna autostart na sabis lokacin da tsarin ya fara da umarni:
Set-Service sshd -StartupType AutomaticHakanan zaka iya canza tsohuwar harsashi (bayan shigarwa, tsoho shine cmd):
New-ItemProperty -Path "HKLM:SOFTWAREOpenSSH" -Name DefaultShell -Value "C:WindowsSystem32WindowsPowerShellv1.0powershell.exe" -PropertyType String -ForceBayyanawa: Dole ne ku ƙayyade cikakkiyar hanya.
Abin da ke gaba?
Sannan mun saita shi sshd_config, wanda za mu sanya a ciki C: Bayanan Shirin. Alal misali:
PasswordAuthentication no
PubkeyAuthentication yesKuma ƙirƙirar kundin adireshi a cikin babban fayil ɗin mai amfani .ssh, kuma a ciki fayil ɗin maɓallai masu izini. Muna rubuta maɓallan jama'a a can.
Muhimmiyar bayani: kawai mai amfani wanda fayil ɗin yake cikin kundin adireshinsa ya kamata ya sami damar rubutawa zuwa wannan fayil ɗin.
Amma idan kuna da matsaloli tare da wannan, koyaushe kuna iya kashe bincika haƙƙin a cikin tsarin:
StrictModes noAf, in C: Fayilolin Shirin Buɗe SSH akwai guda 2 rubutun (FixHostFilePermissions.ps1, FixUserFilePermissions.ps1), wanda ya kamata amma ba dole ba ne don gyara haƙƙoƙi, gami da tare da maɓallai masu izini, amma saboda wasu dalilai ba sa rajista.
Kar a manta da sake kunna sabis ɗin sshd bayan yin amfani da canje-canje.
ru-mbp-666:infrastructure$ ssh [email protected] -i ~/.ssh/id_rsa
Windows PowerShell
Copyright (C) 2016 Microsoft Corporation. All rights reserved.
PS C:UsersAdministrator> Get-Host
Name : ConsoleHost
Version : 5.1.14393.2791
InstanceId : 653210bd-6f58-445e-80a0-66f66666f6f6
UI : System.Management.Automation.Internal.Host.InternalHostUserInterface
CurrentCulture : en-US
CurrentUICulture : en-US
PrivateData : Microsoft.PowerShell.ConsoleHost+ConsoleColorProxy
DebuggerEnabled : True
IsRunspacePushed : False
Runspace : System.Management.Automation.Runspaces.LocalRunspace
PS C:UsersAdministrator>Abubuwan fa'ida / rashin amfani.
Sakamakon:
- Daidaitaccen hanyar haɗi zuwa sabobin.
Lokacin da ƙananan injin Windows, yana da matukar damuwa lokacin:
Don haka, a nan muna tafiya ta ssh, kuma a nan muna amfani da rdp,
kuma gabaɗaya, mafi kyawun aiki tare da bastions shine farkon rami na ssh, kuma RDP ta hanyarsa. - Sauƙi don saitawa
Ina ganin wannan a bayyane yake. - Saurin haɗi da aiki tare da na'ura mai nisa
Babu harsashi mai hoto, adana albarkatun uwar garken biyu da adadin bayanan da aka watsa.
Fursunoni:
- Ba ya maye gurbin RDP gaba daya.
Ba duk abin da za a iya yi daga na'ura wasan bidiyo, alas. Ina nufin yanayi inda ake buƙatar GUI.
Abubuwan da aka yi amfani da su a cikin labarin:
Zaɓuɓɓukan shigarwa ana kwafi daga rashin kunya .
source: www.habr.com