安装SSH插件
Jenkins- 插件管理- 可选插件- 搜索SSH Agent
配置启用SSH Server
Jenkins- 系统管理 - 全局安全配置, 把 SSH Server 设置为启用(默认是禁用)
新增节点
第一种方式(SSH密钥连接):
1.Jenkins主机生成SSH密钥
[root@k8s-master ~]# ssh-keygen -t rsa
Generating public/private rsa key pair.
Enter file in which to save the key (/root/.ssh/id_rsa):
Enter passphrase (empty for no passphrase):
Enter same passphrase again:
Your identification has been saved in /root/.ssh/id_rsa
Your public key has been saved in /root/.ssh/id_rsa.pub
The key fingerprint is:
SHA256:oI7S4uwjskL1wGBt04Xq3F2huICMKSZ8jBTfwiROlNk root@971e942b7a70
The key's randomart image is:
+---[RSA 3072]----+
|.=*.. o. |
|o*=E.o . |
|*oB+o.o . . |
|=* O.o o . |
|+ = * o S |
| o = + . |
|+ o . |
|*+ |
|*=. |
+----[SHA256]-----+
2.发送Jenkins主机公钥至要远程主机上
[root@k8s-master ~]# ssh-copy-id 192.168.1.20
3.测试Jenkins主机免密连接远程主机
[root@k8s-master ~]# ssh root@192.168.1.20
Last login: Fri Mar 4 10:44:53 2022 from k8s-master
[root@k8s-node2 ~]#
4.添加Jenkins主机SSH私钥key为凭据
[root@k8s-master ~]# cat /root/.ssh/id_rsa
-----BEGIN RSA PRIVATE KEY-----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-----END RSA PRIVATE KEY-----
5.添加从节点
添加节点页面解释:
将Jenkins本机生成的SSH密钥的公钥发送至要远程的宿主机上,并且添加Jenkins主机的私钥key为凭据进行远程连接
Known hosts file Verification Strategy
第二种方式:(ROOT账密连接)
1.添加远程主机的ROOT账号密码为凭据
2.添加从节点
添加节点页面解释:
添加要远程的宿主机的ROOT账号和密码的凭据
Non verifying Verifcation Stragegy