on 09-20-2016 5:18 PM
Hello
We have an external party where we need to securely transfer the files to their system. They have recommended using SFTP and asked us to send the Public key with RSA 2048 key.
My questions are as follows.
1. Since we are transferring the files to them, does the SFTP server resides at their end.
2. Who needs to generate the keys , is it them or us and if so generating simple public/private key in NWA is enough?
3. They mentioned that as soon as they receive our public key, they will create an account and send us user credentials.this raises question as why we are generating the keys if the SFTP server is at their side.
Regards
Sam
Thanks for the replies, the question more now is about keys.
1. Why don't we simply generate a public/private key in NWA? Why does it need to be associated with winscp or any other SSH tools, does NWA itself is not enough?
2. Do i need to download and install these winscp or similar tools in my company landscape or can i just use my own personal laptop and generate the keys and load it into NWA.
Reason being is that i don't want to create more work for infrastructure on this.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Sam,
1.Yes, SFTP server resides at their end.
2. There is no restriction either you can generate it or they can generate and provide you the private key.
here you have 2 options to generate keys :
i.) using some external tool you can generate the Private and Public key , and then import the private key and then convert it into PKS12/PKS8 format and import into nwa.
ii.)Create a private key in NWA the export it and extract public key from that and share with third party.
3.They link the public key with the USER ID on there side, again as i told there is no restriction either you can provide them public key or they can share you the private key.
For more details on generating keys :
Br,
Manoj
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Sam,
In option 2 you can create a private key in nwa but to extract public key you need to go for some external tool like Open SSL ...so using the private key created from NWA and using the tool you can extract public key which need to be shared to the third party.
for option 1 i.e generating both Private key/Public key using tool use below link:
Generating SSH Keys for SFTP Adapters - Type 1 - Process Integration - SCN Wiki
for option2 generating private key in nwa and extracting public key from that use below link :
Generating SSH Keys for SFTP Adapters - Type 2 - Process Integration - SCN Wiki
Br,
Manoj
Thanks manoj
I am almost clear now. Only confusion is that the blogs you gave all relate to sender SFTP adapter.
I need to generate public/private key and send the public key to my external party who will then associate with their SFTP server and provide me the user credential.
So, literally i am using SFTP receiver adapter. Till which step would i need to follow for this .
Hello Sam,
Basically the keys are used for handshake and authentication.
So once the deploy the public key and from PI you will deploy private key, communication will happen through key authentication.
SFTP will reside in there side only make sure no network issue/port/firewall will not be a barrier for connection.
For Key generation you can check the below link
https://wiki.scn.sap.com/wiki/display/XI/Generating+SSH+Keys+for+SFTP+Adapters+-+Type+1
Link for SFTP adapter
Some discussion on the same
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
93 | |
10 | |
10 | |
9 | |
9 | |
7 | |
6 | |
5 | |
5 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.