<p class="shortdesc"></p> <section class="section" id="SSH_Key_Login__section_zyl_43g_rvb"><h2 class="doc-tairway">前提条件</h2> <p class="p">1. 您已成功创建ECS实例，可参考<a class="xref" href="https://www.ocftcloud.com/ssr/help/compute/ecs/Quick_Start.Linux_Quick_Start.Create_Instance" target="_blank" rel="external noopener">创建Linux实例</a>。</p> <p class="p">2. 您已下载密钥对。</p> <p class="p">3. 私钥使用未加密的PEM（Privacy-enhanced Electronic Mail）编码的 PKCS#8 格。</p> </section> <section class="section" id="SSH_Key_Login__section_w2q_p3g_rvb"><h2 class="doc-tairway">注意事项</h2> <p class="p">密钥只能下载一次，请妥善保存。如需重新下载，需解绑实例，重新生成。</p> </section> <section class="section" id="SSH_Key_Login__section_xbh_q3g_rvb"><h2 class="doc-tairway">客户端为Windows系统</h2><p class="p"><strong class="ph b">示例1：PuTTY为例连接</strong></p><p class="p"><strong class="ph b">操作步骤</strong></p><p class="p"><strong class="ph b">1</strong>. <strong class="ph b">创建密钥对。</strong></p><p class="p">（1）登录<a class="xref" href="https://www.ocftcloud.com/console/ecs/overview" target="_blank" rel="external noopener">云服务器ECS控制台</a>。</p><p class="p">（2）单击左侧导航栏<span class="ph uicontrol">密钥对</span>，进入<span class="ph uicontrol">密钥对</span>页面。</p><p class="p">（3）单击右上角<span class="ph uicontrol">创建</span>，弹出<span class="ph uicontrol">创建密钥</span>对话框。</p><p class="p">（4）输入描述，选择创建方式，单击<span class="ph uicontrol">确认</span>。</p><div class="p">（5）您的本地电脑将下载.pem格式的密钥。<div class="note note note_note" id="SSH_Key_Login__note_un5_v3g_rvb"><span class="note__title">说明：</span> <ul class="ul" id="SSH_Key_Login__ul_zz3_w3g_rvb"> <li class="li">点击确认后，私钥立即下载到本地，平安金融云不做保存，无法再次下载，请妥善保管。</li> <li class="li">当该密钥对绑定某个 ECS 实例时，如果没有私钥，您将再也不能登录该 ECS 实例，用户名、密码也无法登录。</li> </ul> </div></div><p class="p"><strong class="ph b">2. 密钥対关联实例。</strong></p><p class="p">（1）登录<a class="xref" href="https://www.ocftcloud.com/console/ecs/overview" target="_blank" rel="external noopener">云服务器ECS控制台</a>。</p><p class="p">（2）单击左侧导航栏<span class="ph uicontrol">密钥对</span>，进入<span class="ph uicontrol">密钥对</span>页面。</p><p class="p">（3）在目标密钥操作列单击<span class="ph uicontrol">关联实例</span>，弹出<span class="ph uicontrol">关联实例</span>对话框。</p><p class="p"><img class="image" id="SSH_Key_Login__image_f4w_2jg_rvb" src="https://obs-cn-shanghai.fincloud.pinganyun.com/pacloud/20232006152129-1fb7e343919a.png" width="800"></p><p class="p">（4）勾选目标实例，单击<strong class="ph b">确认</strong>。</p><p class="p">（5）弹出<strong class="ph b">验证码</strong>对话框，输入验证码，单击<strong class="ph b">确定</strong>，完成关联操作。</p><p class="p"><strong class="ph b">3. 转换密钥格式。</strong></p><p class="p">（1）双击打开PuTTYgen。</p><p class="p">（2）在<span class="ph uicontrol">Actions</span>区域，单击<span class="ph uicontrol">Load</span>，导入生成的密钥对文件，导入的格式选择<span class="ph uicontrol">All files (*.*)</span>。</p><p class="p">（3）单击<span class="ph uicontrol">Save private key</span>。</p><p class="p">（4）弹出警告对话框，选择您存放密钥的路径，在文件名后输入<span class="ph uicontrol">密钥名.ppk</span>。例如，将EC-YD60002.pem私钥文件另存为EC-YD60002.ppk密钥文件。</p><p class="p"><img class="image" id="SSH_Key_Login__image_gpz_qkg_rvb" src="https://obs-cn-shanghai.fincloud.pinganyun.com/pacloud/20232006152129-1de0ef2d9e31.png"></p><p class="p"><strong class="ph b">4. 连接linux实例。</strong></p><p class="p">（1）双击打开PuTTY软件。</p><p class="p">（2）单击<strong class="ph b">Connection > SSH > Auth</strong>。</p><p class="p">（3）单击<span class="ph uicontrol">Browse</span>，在弹出的对话框中选择密钥的存储路径。</p><p class="p">（4）选择目标密钥，单击<span class="ph uicontrol">打开</span>，上传转换的.ppk的私钥。</p><p class="p"><img class="image" id="SSH_Key_Login__image_m11_bng_rvb" src="https://obs-cn-shanghai.fincloud.pinganyun.com/pacloud/20232006152129-158553f79a82.png"></p><p class="p">（5）单击<span class="ph uicontrol">Session</span>，配置如下信息：</p><ul class="ul" id="SSH_Key_Login__ul_pwt_vph_rvb"> <li class="li"><strong class="ph b">Host Name (or IP address)：</strong>输入ECS实例的公网IP地址。</li> <li class="li"><strong class="ph b">Connection type：</strong>默认选择SSH。</li> <li class="li"><strong class="ph b">Saved Session（可选）：</strong>您可以输入一个便于识别的名称，下次您可以进入直接登录界面，无需重复输入信息，单击<strong class="ph b">Save</strong>。</li> </ul><p class="p"><img class="image" id="SSH_Key_Login__image_xxh_yph_rvb" src="https://obs-cn-shanghai.fincloud.pinganyun.com/pacloud/20232006152129-1b0587179f73.png"></p><p class="p">（6）单击<span class="ph uicontrol">Open</span>。</p><p class="p"><strong class="ph b">5. 验证成功，登录linux实例。</strong><img class="image" id="SSH_Key_Login__image_psf_bqh_rvb" src="https://obs-cn-shanghai.fincloud.pinganyun.com/pacloud/20232006152129-1e8fa7319201.png"></p><p class="p"><strong class="ph b">示例2：Xshell为例连接</strong></p><p class="p"><strong class="ph b">操作步骤</strong></p><p class="p">1. 双击打开Xshell。</p><p class="p">2. 单击<span class="ph menucascade"><span class="ph uicontrol">工具</span><abbr> > </abbr><span class="ph uicontrol">用户密钥管理者（U）</span></span>。</p><img class="image" id="SSH_Key_Login__image_of4_gqh_rvb" src="https://obs-cn-shanghai.fincloud.pinganyun.com/pacloud/20232006152129-1326da4a9c5d.png" width="800"><p class="p">3. 弹出<span class="ph uicontrol">用户密钥</span>对话框，选择之前保存的pem文件，单击<span class="ph uicontrol">导入</span>。</p><img class="image" id="SSH_Key_Login__image_pmp_jqh_rvb" src="https://obs-cn-shanghai.fincloud.pinganyun.com/pacloud/20232006152129-1705a1989607.png" width="800"><p class="p">4. 新建连接，在<span class="ph uicontrol">连接区域</span>输入名称、协议，主机（ip）、端口号22。</p><img class="image" id="SSH_Key_Login__image_glc_mqh_rvb" src="https://obs-cn-shanghai.fincloud.pinganyun.com/pacloud/20232006152129-14ce16fd9cf7.png" width="800"><p class="p">5. 单击<span class="ph uicontrol">用户身份验证</span>，配置如下信息：</p><ul class="ul" id="SSH_Key_Login__ul_g22_nqh_rvb"> <li class="li"><strong class="ph b">方法（M）：</strong>选择Public Key。</li> <li class="li"><strong class="ph b">用户名（U）：</strong>填写root。</li> <li class="li"><strong class="ph b">用户密钥（K）：</strong>选择导入的pem密钥即可。</li> </ul><img class="image" id="SSH_Key_Login__image_y24_4qh_rvb" src="https://obs-cn-shanghai.fincloud.pinganyun.com/pacloud/20232006152129-1eb270af942c.png" width="800"><p class="p">6. 弹出<span class="ph uicontrol">SSH安全警告</span>对话框，单击<span class="ph uicontrol">接收并保存</span>。</p><img class="image" id="SSH_Key_Login__image_lzn_rqh_rvb" src="https://obs-cn-shanghai.fincloud.pinganyun.com/pacloud/20232006152129-1ec882c49f06.png"></section> <section class="section" id="SSH_Key_Login__section_m5v_sqh_rvb"><h2 class="doc-tairway">客户端为Linux系统</h2> <p class="p">若您的客户端为Linux操作系统，可按如下步骤执行命名：</p> <p class="p">1. 变更权限，给予私钥文件仅本人可读权限。例如，chmod 400 /Downloads/ EC-YD60002.pem</p> <pre class="pre codeblock" id="SSH_Key_Login__codeblock_h2r_vqh_rvb"><code>chmod 400 <与云服务器关联的私钥的存储路径></code></pre> <p class="p">2. 执行以下命令，进行远程登录。例如，ssh -i /Downloads/ EC-YD60002.pem root@101.xxx.xxx.xxx</p> <pre class="pre codeblock" id="SSH_Key_Login__codeblock_h4m_xqh_rvb"><code>ssh -i <与云服务器关联的私钥的存储路径> root@< IP address></code></pre> </section>