windows10 install ssh server
I'll guide you through setting up SSH from Ubuntu Linux to a Windows 10 OpenSSH server without using a password (using key-based authentication instead).
Here's a step-by-step process:
-
Generate SSH keys if you don't have them:
ssh-keygen -t ed25519
(Press Enter at all prompts to accept defaults)
-
Copy your public key:
cat ~/.ssh/id_ed25519.pubSelect and copy the output (starts with "ssh-ed25519" and ends with your username@hostname)
-
Ensure OpenSSH Server is installed:
- Go to Settings > Apps > Optional features
- Check if "OpenSSH Server" is listed
- If not, click "Add a feature" and install it
-
Start and enable the OpenSSH Server service:
# Run PowerShell as Administrator Start-Service sshd Set-Service -Name sshd -StartupType 'Automatic'
-
Create/configure the authorized_keys file:
# Create .ssh directory if it doesn't exist New-Item -Path "$env:USERPROFILE\.ssh" -ItemType Directory -Force # Create or edit the authorized_keys file # Paste your copied public key into this file notepad "$env:USERPROFILE\.ssh\authorized_keys"
-
Set proper permissions:
# Restrict permissions on the .ssh directory icacls "$env:USERPROFILE\.ssh" /inheritance:r icacls "$env:USERPROFILE\.ssh" /grant:r "$($env:USERNAME):(F)" # Restrict permissions on the authorized_keys file icacls "$env:USERPROFILE\.ssh\authorized_keys" /inheritance:r icacls "$env:USERPROFILE\.ssh\authorized_keys" /grant:r "$($env:USERNAME):(F)" icacls "$env:USERPROFILE\.ssh\authorized_keys" /grant:r "system:(F)"
-
Verify the SSH server configuration:
-
Edit the file
C:\ProgramData\ssh\sshd_config -
Ensure these lines are uncommented (remove # if present):
PubkeyAuthentication yes AuthorizedKeysFile .ssh/authorized_keys # 注释掉这两行; #Match Group administrators # AuthorizedKeysFile __PROGRAMDATA__/ssh/administrators_authorized_keys -
Restart the SSH service:
Restart-Service sshd
-
Now test the connection:
ssh username@windows-ip-addressReplace "username" with your Windows username and "windows-ip-address" with your Windows machine's IP address.
If you still get a password prompt, you can use verbose mode to troubleshoot:
ssh -v username@windows-ip-addressThis will give you more information about what might be going wrong with the key-based authentication.
ssh -i ~/.ssh/id_ed25519 -v sheng@192.168.2.10
-v 可以发现ssh通讯细节
-i 指定公钥文件