cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Error in PGP module for SFTP Receiver Channel ?

Former Member

on ‎07-04-2013 4:28 PM

0 Kudos

Hi Experts,

As per the business scenario, i am using the SFTP Receiver adapter to send some large Data to our banker and as per the banks requiremnt the file should be digitally signed. I have tried using the PGP module available with PI. currently we are on PI 7.3.

i am getting the following error.

Transmitting the message to endpoint <local> using connection HTTP_AAE_http://sap.com/xi/XI/System failed, due to: com.sap.engine.interfaces.messaging.api.exception.MessagingException: java.lang.Exception: No private key with signing capability found in '/usr/sap/GD1/J00/sec/sonawaneug-S3.pfx'.

we are using CLASS III Digital Certificate given by CA - ncodesoluations. following are the details of the digital signature

Signature Algorithm

:

SHA256

i am attaching the scrren-shots also along with this message. pl. check.

The moduleKey which i am using in Receiver SFTP channel is 'pgp' whether i should use 'pgpenc' ?

The CA has given the .pfx file. how to use this in module parameter value. do we have to give as .txt ?

looking for your help.

Regards,

Umesh

Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (4)

Answers (4)

Former Member
‎07-05-2013 10:28 AM
0 Kudos

Hi All

Attaching the SFTP Reciver Channel Module View....

Show replies
Show replies
former_member200386
Active Participant
‎07-05-2013 1:35 PM
0 Kudos

Hi Umesh,

You need to use your Partner Public key as well. and mention applyEncryption as true.

for your question. how check the pgp format.

open your public key. check starting and ending blocks it has to be start & stop with pgp block.

Thanks & Regards,
pavan

Former Member
‎07-06-2013 4:52 AM
0 Kudos

Dear Pavan,

   As per the requirment i need to do only digital signature no Encryption. hope it is optional?

Regards,

Umesh

Former Member
‎07-05-2013 10:19 AM
0 Kudos

Show replies
Show replies
former_member200386
Active Participant
‎07-05-2013 9:13 AM
0 Kudos

Hi Umesh,

There is nothing to do with naming convention as .txt or .pfx. can you please check your own private key is well PGP formatted. and also check CA team that the key which you are using to applying digital signature is valid one or not.

If it's possible please share your module configuration screen shots.

Thanks & Regards,

Pavan

Show replies
Show replies
Former Member
‎07-05-2013 10:16 AM
0 Kudos

Hi Pavan,

  

Can you pl. elaborate how to check my own private key as well PGP formatted. I tried installing this on my machine & checked with CA. the signature looks okay...

i will upload the screen-shots. I dont know how to do this.

one more thing which modulekey to use 'PGP' or PGPENC' ?

Regards,

Umesh

Former Member
‎07-05-2013 11:37 AM
0 Kudos

Hi Pavan,

   I have attached the screen-shot pl. check.

Regards,

Umesh

former_member194612
Active Participant
‎07-05-2013 7:16 AM
0 Kudos

Hi Umesh,

"i am attaching the scrren-shots also along with this message. pl. check."

its is missing , pls attach .its helpful if you attach your module config also.

Thanks,

satish

Show replies
Show replies
Former Member
‎07-05-2013 10:10 AM
0 Kudos

Can Anybody help me how to attached file here. I have word document where all the scree-shots are there. I tried converting it to one of the acceptable format of JPG or jif. but it is not accepting.

file size is also less than 1 MB.

pl. help...

Former Member
‎07-05-2013 11:35 AM
0 Kudos

Hi Satish,

  I have attached the screen-shot. pl. check.

Regards,

Umesh

former_member194612
Active Participant
‎07-05-2013 12:51 PM
0 Kudos





















 





































Hi Umesh,

please check the link for creating the keys
and import private keys

http://wiki.sdn.sap.com/wiki/display/XI/Generating+SSH+Keys+for+SFTP+Adapters+-+Type+1

Give a Module key for the PGP
Encryption Module as ‘‘pgpenc’’ , in Module Name
‘‘localejbs/PGPEncryption’’

Hope this info will help you to solve your query.

Module
  Key		Module Parameter
Parameter Value
pgpenc
keyRootPathPath to the location on the PI Server where the PGP
certificates are stored
partnerPublicKey<ReceiverPublicKeyName>.asc
ownPrivateKey<SenderPrivateKeyName>.asc
pwdOwnPrivateKeyPassphrase for the Sender Private Key
applyEncryptionTRUE
encryptionAlgoEncryption Algorithm, for example AES_128
applySignatureTRUE
signingAlgoSigning Algorithm, for example MD5
applyCompressionCompression Algorithm, for example ZIP
formattext
Former Member
‎07-05-2013 1:43 PM
0 Kudos

dear Satish,

   Can you pl. tell me why do i need to do this. I am already having the digital certificate from CA.

can you pl. explain in detail. what is thedifference between Encryption Module 'pgp' & 'pgpenc'

the PartnerPublicKey & ownPrivateKey has to be .asc.?

as i have mentioned i have .pfx file given by CA. will that not work.?

Regards,

Umesh

Former Member
‎07-06-2013 5:08 AM
0 Kudos

Dear Satish,

   I tried using the EncryptionModule as 'pgpenc' instead of 'pgp' But still it is giving me the same error.

can anybody help me. I required this urgently.

Regards,

Umesh

Former Member
‎07-09-2013 8:16 AM
0 Kudos

Hi Guys,

   Can any one help me... Still my problem is not getting  solved.

can anybody tell me whether PGP module of SAP takes care of certificates as per Indian Scenario.

compatible with CCA standards. IT Act of  INDIA.?

As per my understanding we are using PGP Module as Signer Tool ?

is there any limitation ?

Regards,

Umesh

former_member200386
Active Participant
‎07-09-2013 8:41 AM
0 Kudos

HI Umesh,

By seeing at your error it seems to me that there will be problem with your private key. Please check with another set of private key.

Thanks & Regards,
Pavan

Ask a Question