Bengilokhu ngikhungathekile ngokuxhuma emishinini yeWindows. Cha, angiyena umphikisi noma umsekeli weMicrosoft nemikhiqizo yabo. Umkhiqizo ngamunye ukhona ngenjongo yawo, kodwa akukhona lokho lokhu okumayelana.
Bekuhlale kubuhlungu kakhulu kimina ukuxhuma kumaseva e-Windows, ngoba lokhu kuxhumana kungenzeka kulungiselelwe endaweni eyodwa (sawubona WinRM nge-HTTPS) noma akusebenzi ngokuzinza kakhulu (sawubona i-RDP emishinini ebonakalayo phesheya kwezilwandle).
Ngakho-ke, ngokuthola iphrojekthi ngephutha , nginqume ukwabelana ngolwazi lwami lokusetha. Mhlawumbe leli thuluzi lizosindisa othile izinzwa eziningi.
Izinketho zokufaka:
- Through the Chocolatey
- Nge-Ansible, isibonelo indima
Okulandelayo, ngizokhuluma ngephuzu lokuqala, ngoba yonke into icacile ngokunye.
Ngingathanda ukuqaphela ukuthi le phrojekthi isesigabeni se-beta, ngakho-ke akunconywa ukuyisebenzisa ekukhiqizeni.
Ngakho-ke, landa ukukhishwa kwakamuva, okwamanje . Kukhona izinguqulo kokubili 32 kanye 64 bit izinhlelo.
Khipha phakathi C: Amafayela OhleloVulaSSH
Iphuzu eliyisibopho lokusebenza okulungile: kuphela UHLELO kanye neqembu labaphathi.
Ukufaka izinsiza kusetshenziswa umbhalo faka-sshd.ps1 etholakala kulolu hlu lwemibhalo
powershell.exe -ExecutionPolicy Bypass -File install-sshd.ps1Vumela ukuxhumana okungenayo ku-port 22:
New-NetFirewallRule -Name sshd -DisplayName 'OpenSSH Server (sshd)' -Enabled True -Direction Inbound -Protocol TCP -Action Allow -LocalPort 22Incazelo: applet I-New-NetFirewallRule esetshenziswa ku-Windows Server 2012 nakamuva. Kuzinhlelo ezindala kakhulu (noma ideskithophu) ungasebenzisa umyalo:
netsh advfirewall firewall add rule name=sshd dir=in action=allow protocol=TCP localport=22
Asiqale isevisi:
net start sshdEkuqaleni, okhiye bosokhaya bazokhiqizwa ngokuzenzakalela (uma bengekho) phakathi %programdata%ssh
Singakwazi ukunika amandla i-autostart yesevisi lapho uhlelo luqala ngomyalo:
Set-Service sshd -StartupType AutomaticUngashintsha futhi igobolondo lomyalo elizenzakalelayo (ngemuva kokufakwa, okuzenzakalelayo ngu cmd):
New-ItemProperty -Path "HKLM:SOFTWAREOpenSSH" -Name DefaultShell -Value "C:WindowsSystem32WindowsPowerShellv1.0powershell.exe" -PropertyType String -ForceIncazelo: Kufanele ucacise indlela ephelele.
Yini okulandelayo?
Bese siyimisa sshd_config, esizoyibeka kuyo C: Idatha Yohlelo. Isibonelo:
PasswordAuthentication no
PubkeyAuthentication yesFuthi dala uhla lwemibhalo kufolda yomsebenzisi .ssh, futhi kuyo ifayela okhiye_abagunyaziwe. Sibhala phansi izikhiye zomphakathi lapho.
Incazelo ebalulekile: umsebenzisi kuphela ogama lakhe litholakala kuhla lwemibhalo okufanele abe nelungelo lokubhalela leli fayela.
Kodwa uma unezinkinga ngalokhu, ungahlala uvala ukuhlola kwamalungelo ku-config:
StrictModes noNgendlela, ku C: Amafayela OhleloVulaSSH kukhona 2 imibhalo (FixHostFilePermissions.ps1, FixUserFilePermissions.ps1), okufanele kodwa ongaphoqelekile ukulungisa amalungelo, okuhlanganisa ne okhiye_abagunyaziwe, kodwa ngesizathu esithile ababhalisi.
Ungakhohlwa ukuqala kabusha isevisi sshd ngemuva kokusebenzisa izinguquko.
ru-mbp-666:infrastructure$ ssh [email protected] -i ~/.ssh/id_rsa
Windows PowerShell
Copyright (C) 2016 Microsoft Corporation. All rights reserved.
PS C:UsersAdministrator> Get-Host
Name : ConsoleHost
Version : 5.1.14393.2791
InstanceId : 653210bd-6f58-445e-80a0-66f66666f6f6
UI : System.Management.Automation.Internal.Host.InternalHostUserInterface
CurrentCulture : en-US
CurrentUICulture : en-US
PrivateData : Microsoft.PowerShell.ConsoleHost+ConsoleColorProxy
DebuggerEnabled : True
IsRunspacePushed : False
Runspace : System.Management.Automation.Runspaces.LocalRunspace
PS C:UsersAdministrator>Izinzuzo/nobubi besihloko.
Izinzuzo:
- Indlela ejwayelekile yokuxhuma kumaseva.
Uma kunemishini embalwa ye-Windows, kuba nzima kakhulu uma:
Ngakho-ke, lapha sihamba nge-ssh, futhi lapha sisebenzisa i-rdp,
futhi ngokuvamile, indlela engcono kakhulu yokwenza ama-bastion kuqala umhubhe we-ssh, kanye ne-RDP ngawo. - Ukusetha kalula
Ngicabanga ukuthi lokhu kusobala. - Isivinini sokuxhuma nokusebenza ngomshini oqhelile
Alikho igobolondo lesithombe, elilondoloza kokubili izinsiza zeseva kanye nenani ledatha edlulisiwe.
Umthengi:
- Ayishintshi ngokuphelele i-RDP.
Akukona konke okungenziwa kusukela ku-console, maye. Ngisho izimo lapho kudingeka khona i-GUI.
Izinto ezisetshenziswe ku-athikili:
Izinketho zokufaka zikopishwe ngokungenamahloni .
Source: www.habr.com