Skip to Content
author's profile photo Former Member
Former Member

Digital signature SFTP channel:No private key with signing capability found

Hi Experts,

I am trying to digitally sign messages being sent to the SFTP server using the PGP modules and I am getting the below error :

PGP Encryption Module: No
private key with signing capability found in
/usr/sap/<SID>/<instance>/sec/<sid>_private_key.key. (<sid>_private_key.key is the name of the private key file given by me )

I have followed the instructions in "Generating SSH Keys for SFTP Adapters - Type 2 - Process Integration - SCN Wiki".

Please see the below screen capture of the channel configuration.Quick help will be much appreciated, I also tried exporting the private key from NWA key storage, imported it in the /usr/sap/<SID>/<instance>/sec/ directory and calling that key in the module but same is the result.

I tried checking the XPI_INSPECTOR logs as well but no futher information is available there.

Thanks & Regards,

Harish.

Capture.PNG (12.6 kB)
Add a comment
10|10000 characters needed characters exceeded

Assigned Tags

Related questions

3 Answers

  • Best Answer
    author's profile photo Former Member
    Former Member
    Posted on Jan 24, 2014 at 04:18 PM

    Hi Guys...My issue has been solved long back but just wanted to update this discussion so that it may help others.

    It was a very silly mistake from my end, I used SXDA_TOOLS transaction to upload the "Key" file and the encoding of the file was changed.

    Inspite of facing similar issues in the past, I did not use direct upload via FILEZILLA or WINSCP.

    Please use one of the file transfer tools or upload it via some ABAP report as a ZIP file and then UNZIP it using RSBDCOS0 report at OS level.

    Add a comment
    10|10000 characters needed characters exceeded

  • Posted on Dec 13, 2013 at 08:31 PM

    Hi,

    your error is "The file specified in the parameter ownPrivateKey does not contain an appropriate private key.". Please check the path of private key and try to define in module configuration.

    Please also check the below discussion

    PGPEncryption Module: A Simple How to Guide

    Regards,

    Harish

    Add a comment
    10|10000 characters needed characters exceeded

    • Former Member

      Hi Harish,

      I am having some other issues in verifying it with the SFTP server (via putty) so currently I can't verify the private key with the sftp server.Is there any other way I can verify the correctness of the key ?

      I exactly followed the same procedure as in the link (type 2) above.I tried some online tools to check if the private and public key are matching.

      Also I have got the certificate signed via "Sap's test CA certificate", is it a case that SAP's test CA certificate has no such SIGNING capability ?


  • author's profile photo Former Member
    Former Member
    Posted on Dec 14, 2013 at 01:40 PM

    Any help here please, points will be awarded for a helpful answer .😕

    Add a comment
    10|10000 characters needed characters exceeded

Before answering

You should only submit an answer when you are proposing a solution to the poster's problem. If you want the poster to clarify the question or provide more information, please leave a comment instead, requesting additional details. When answering, please include specifics, such as step-by-step instructions, context for the solution, and links to useful resources. Also, please make sure that you answer complies with our Rules of Engagement.
You must be Logged in to submit an answer.

Up to 10 attachments (including images) can be used with a maximum of 1.0 MB each and 10.5 MB total.