Ọ na-ewe m iwe mgbe niile site na ijikọ na igwe Windows. Mba, abụghị m onye mmegide ma ọ bụ onye na-akwado Microsoft na ngwaahịa ha. Ngwaahịa ọ bụla dị maka ebumnuche nke ya, mana nke ahụ abụghị ihe nke a gbasara.
Ọ na-ewute m mgbe niile ijikọ na sava Windows, n'ihi na a na-ahazi njikọ ndị a site n'otu ebe (ndewo WinRM na HTTPS) ma ọ bụ anaghị arụ ọrụ nke ọma (ndewo RDP na igwe mebere esenidụt).
Ya mere, na-abịa na mberede gafee oru ngo , Ekpebiri m ịkọrọ ahụmịhe nhazi m. Ikekwe ngwá ọrụ a ga-azọpụta mmadụ ọtụtụ irighiri akwara.
Nhọrọ nwụnye:
- Site na Chocolatey
- Site n'ike, dịka ọmụmaatụ ọrụ
Na-esote, m ga-ekwu maka isi ihe mbụ, ebe ọ bụ na ihe niile na-eme ka ndị ọzọ doo anya.
Ọ ga-amasị m ịmara na ọrụ a ka dị na ọkwa beta, n'ihi ya, a naghị atụ aro ka iji ya na mmepụta.
Yabụ, budata ntọhapụ kachasị ọhụrụ, ugbu a ọ dị . Enwere nsụgharị maka sistemụ 32 na 64 bit.
Wepu ya C: Faịlụ mmemme mepere SSH
Ebe amanyere iwu maka ịrụ ọrụ ziri ezi: naanị nke Usoro na admin otu.
Ịwụnye ọrụ site na iji edemede wụnye-sshd.ps1 dị na ndekọ a
powershell.exe -ExecutionPolicy Bypass -File install-sshd.ps1Kwe ka njikọ mbata na ọdụ ụgbọ mmiri 22:
New-NetFirewallRule -Name sshd -DisplayName 'OpenSSH Server (sshd)' -Enabled True -Direction Inbound -Protocol TCP -Action Allow -LocalPort 22Nkọwa: applet Iwu ọhụrụ-NetFirewall eji na Windows Server 2012 na emesia. Na sistemu kacha ochie (ma ọ bụ desktọpụ) ị nwere ike iji iwu a:
netsh advfirewall firewall add rule name=sshd dir=in action=allow protocol=TCP localport=22
Ka anyị malite ọrụ:
net start sshdNa mmalite, igodo nnabata ga-emepụta na-akpaghị aka (ọ bụrụ na-efu) na %data data%ssh
Anyị nwere ike ime ka autostart nke ọrụ ahụ mgbe sistemụ na-amalite na iwu:
Set-Service sshd -StartupType AutomaticỊ nwekwara ike ịgbanwe shei ndabara (mgbe echichi gasịrị, ndabara bụ cmd):
New-ItemProperty -Path "HKLM:SOFTWAREOpenSSH" -Name DefaultShell -Value "C:WindowsSystem32WindowsPowerShellv1.0powershell.exe" -PropertyType String -ForceNkowa: Ị ga-ezipụta ụzọ zuru oke.
Kedu ihe ọzọ?
Mgbe ahụ, anyị na-edozi ya sshd_config, nke anyị ga-etinye na ya C: Data mmemme. Dịka ọmụmaatụ:
PasswordAuthentication no
PubkeyAuthentication yesMa mepụta ndekọ na nchekwa onye ọrụ .SH, na n'ime ya faịlụ igodo ikike. Anyị na-edetu igodo ọha ebe ahụ.
Nkọwa dị mkpa: naanị onye ọrụ nke akwụkwọ ndekọ aha faịlụ dị na ya kwesịrị inwe ikike ide na faịlụ a.
Mana ọ bụrụ na ị nwere nsogbu na nke a, ị nwere ike gbanyụọ ịlele ikike mgbe niile na nhazi:
StrictModes noSite n'ụzọ, na C: Faịlụ mmemme mepere SSH enwere scripts 2 (FixHostFilePermissions.ps1, FixUserFilePermissions.ps1), nke kwesịrị ma na-ejighị n'aka idozi ikike, gụnyere ya igodo ikike, ma n'ihi ihe ụfọdụ ha anaghị edebanye aha.
Echefula ịmalitegharị ọrụ ahụ ssh mgbe itinye mgbanwe.
ru-mbp-666:infrastructure$ ssh [email protected] -i ~/.ssh/id_rsa
Windows PowerShell
Copyright (C) 2016 Microsoft Corporation. All rights reserved.
PS C:UsersAdministrator> Get-Host
Name : ConsoleHost
Version : 5.1.14393.2791
InstanceId : 653210bd-6f58-445e-80a0-66f66666f6f6
UI : System.Management.Automation.Internal.Host.InternalHostUserInterface
CurrentCulture : en-US
CurrentUICulture : en-US
PrivateData : Microsoft.PowerShell.ConsoleHost+ConsoleColorProxy
DebuggerEnabled : True
IsRunspacePushed : False
Runspace : System.Management.Automation.Runspaces.LocalRunspace
PS C:UsersAdministrator>Ọdịmma/ ọghọm dị n'okwu.
Ihe:
- Ụzọ ọkọlọtọ maka ijikọ na sava.
Mgbe enwere igwe Windows ole na ole, ọ na-adịchaghị mma mgbe:
Yabụ, ebe a anyị na-aga site na ssh, ebe a anyị na-eji rdp,
na n'ozuzu, omume kachasị mma na bastions bụ nke mbụ ọwara ssh, na RDP site na ya. - Ịdị mfe nhazi
Echere m na nke a doro anya. - Ọsọ njikọ na arụ ọrụ na igwe dịpụrụ adịpụ
Enweghị shei eserese, na-echekwa ma akụrụngwa ihe nkesa yana ọnụọgụ data ebufere.
Cons:
- Anaghị edochi RDP kpamkpam.
Ọ bụghị ihe niile nwere ike ime site na njikwa, ee. M pụtara ọnọdụ ebe achọrọ GUI.
Ihe eji eme ihe na edemede:
A na-eṅomiri nhọrọ nwụnye n'enweghị ihere .
isi: www.habr.com