We can setup a secure and reliable file transfer based on SSH File Tranfer Protocol (SFTP). SFTP is a protocol for secure remote login and an enhancement of SSH (Secure Shell).
We create SSH public key and give it to SFTP server team to configure that on it. It helps to connect the system to SFTP without entering its password.
So, here we will build these SSH keys to bridge the gap to enter into SFTP and setup a reliable and secure file transfer.
We create SSH public key and give it to SFTP server team to configure that on it. It helps to connect the system to SFTP without entering its password.
So, here we will build these SSH keys to bridge the gap to enter into SFTP and setup a reliable and secure file transfer.
Pre-requisites
- Install WinSCP tool (you may use other tools but it simple and easy to use).
- Putty (FAMOUS) - This and WinSCP can be combined.
The above requisites are enough to generate the keys and have it ready for the development. Now, let's start the configuration:
- Start WinSCP -> Click on Tools -> Run PuTTYgen
- Select Parameters - RSA and Enter the number of bits as 2048. Click Generate.
- After clicking generate button, the seeking bar begin to increase when you begin to create some randomness in the blank area. The key will generate in 2-3 minutes.
- Now, finally after generating, we can save the Public and Private (ppk) key and Public Key to be saved in SFTP.
Note:
- The public key starts with ssh-rsa has to be pasted in SFTP server.
- The public key saved as Save public key is different from the public key to be pasted in SFTP server.
- We also need to make sure, there should not be any new line character in our key.
Now, we will have 3 files generated. 1. PPK Private Key 2. SSH Public Key 3. SSH Public Key to be pasted on SFTP Server.
We will have three files as named above.
They will look like:
Test them with WinSCP if the private key is able to connect it to the SFTP server.
- For this, first request the administrator of SFTP to save the SSH Public Key on SFTP in authorized key file or raise an incident to SAP Support Launchpad to paste the public key on SFTP.
- After this, open WinSCP and fill the following details as shown:
In Advanced > Click Authentication under SSH >Select ppk Private Key
When we login for the first time, a warning appears with server's fingerprint. This is a good sign. It shows that it is able to reach SFTP server. Just click Yes.
If we have chosen PassPhrase while generating the key it will ask for passphrase else it will connect.
And, that is it. You are connected to SFTP server. 😊
Note:
Just make sure, we have placed the privateKey_SFTP.ppk in the correct folder from which we have uploaded the key for authentication. Else it will show the below message.
Hi Srishti,
ReplyDeleteThis article is very informative. Can you also explain how and where to configure the above certificates in CPI? Thanks in advance,
Mahesh.