cancel
Showing results for 
Search instead for 
Did you mean: 

Encryption using SSH in PI 7.31 single stack

Former Member
0 Kudos

Hi Experts,

The receiver system is generating the public/private key pairs using cuteFTP using by following the screens sequentially attached here.

Step 1:- open cuteFTP Tools --> Global options

Step 2: Select the paths for public & private key pairs, then click on Create identity file. Then they have chosen key type as "RSA".

Step 3: They gave input of pass phrase and click next.

Step 4: Then they gave name to public & private keys and clicked Finish.

They gave key size as 1024 and key type as RSA. More over they selected security type as SSH2 security but not openPGP security .

So can I use the public key generated using these ways SAP PI receiver comm. channel to encrypt the data before pushing to receiver FTP folder?

Here the scenario is drag and drop the xls file generated on application server of ECC and push the encrypted file using public key generated as above to a folder in FTP server form where the bank transfers the file to their servers. Please suggest the ways to do it

Thanks,

Nithin.

Accepted Solutions (0)

Answers (4)

Answers (4)

Former Member
0 Kudos

Hi Raghu,

Your phone number please?

Thanks,

Nithin

former_member186851
Active Contributor
0 Kudos

Hello Nithin,

As Per SCN rules mobile nos and mail IDs should not be shared.

Let us know what doubts you have so that we can solve and others also will get benefited.

Former Member
0 Kudos

Hi Raghu,

How to encrypt using my key i.e., how to generate the key pairs from PI end?

Thanks,

Nithin.

former_member186851
Active Contributor
0 Kudos

Hello Nithin,

Refer the links shared by Sathi.

You need deploy private key in PI and share the Publi key to the user to decrypt

Former Member
0 Kudos

Hi Raghu,

Following the Type 1 link would be sufficient right? Generally using public key we decrypt it right? I mean we ask partner to share the public key and partner decrypts using the private key.

But you say use private key to encrypt it and whereas public key to share with partner.

Also how to call the private key stored in NWA key store in comm. channel?

Thanks,

Nithin.

sahithi_moparthi
Contributor
0 Kudos

Hi Nitin,

In Case of Outbound :

PI uses private key to encryprt the messages and sends to client.Client decrypt the message using there private key.

Incase of Inbound:

Client uses there private key to encrypt the messages and sends to PI,We use our private key to decrypt the message.

In Communication channel you have an option to select keystore.Once your keys are stored in NWA,directly it will reflect in the channel.You can select the desired key.

former_member186851
Active Contributor
0 Kudos

Hello Nithin,

Get the Public key from SFTP user and upload the same in store,Basis should you help with this activity.

Once it is done mention the same in the PGP Encryption module.Below is the link which Inaki already shared.

PGPEncryption Module: A Simple How to Guide

Former Member
0 Kudos

Hi Raghu,

Thanks for ur reply, as I mentioned above in cuteFTP software only two types of keys are present RSA & DSA as shown in screen.

But pls elaborate how to achieve this.

Thanks,

Nithin.

former_member186851
Active Contributor
0 Kudos

Hello Nithin,

If you encrypting using client or your key?

iaki_vila
Active Contributor
0 Kudos

Hi Nithin,

AFAIK SSH2 is supported in SFTP adapter, at least the page 9 of this document assures that: http://a248.g.akamai.net/n/248/420835/6661b9a28841075fe03239c02eb6a36c6a26dd37bd71dc202a47287abd468e...

And in this wiki, the author has generated it and test it Generating SSH Keys for SFTP Adapters - Type 1 - Process Integration - SCN Wiki

Check Shabarish blog as well:

Regards.

Former Member
0 Kudos

Hi Inaki, Experts,

The message flow looks like this:

PI should post the encrypted files that is pulled from ECC to Intermediate server[Inter-Server] from where the 3rd party transfers the files using a software installed on Inter-Server. Also the same software installed on Inter-server generates the public/private key pairs using SSH RSA and key size 1024. But is it possible to achieve the encryption using the public key generated as described since it is generated using SSH RSA ?


Thanks,

Nithin.

former_member186851
Active Contributor
0 Kudos

Hello Nithin,

Should be possible.

Ensure the key generation falls under the algorithm mentioned in the link.