on 06-08-2016 7:37 AM
Dear Experts,
The requirement is regarding a bank interface in which SAP ECC generates the transaction files and those files need to pulled from shared folder & should be encrypted in PI and PI should post the encrypted files to designated folder on gateway server of our client. Then bank guys will install sftp client which polls the same folders & if any file is found then it will transfer it to bank server. I knew that ts could be achieved by NFS to FTP scenario by using encryption utility. My questions are regarding the receiver side of PI : 1) Is gateway server[on client lanscape] is a physical server. 2) What all required information is required for PI consultant reg this interface like gateway server IP, etc. 3) Does gateway server should have SFTP access enabled in it? 4) After SFTP setup is completed, should I ping the gateway server IP from PI server which is Linux? 5) What type of Keys/Certificates are required to be generated by Bank guys for encryption of files ? 6) Should the keys/certificates are to be generated on Gateway server machine itslef?
Thanks,
Nithin.
Hi,
1) Is gateway server[on client lanscape] is a physical server.
-->> It should be SFTP server.
2) What all required information is required for PI consultant reg this interface like gateway server IP, etc.
-->> you need the server host/ip, folder path, port and keys
3) Does gateway server should have SFTP access enabled in it?
-->> it is ideal to have SFTP else FTP will also work.
4) After SFTP setup is completed, should I ping the gateway server IP from PI server which is Linux?
-->> yes, the connectivity should be there from PI to server
5) What type of Keys/Certificates are required to be generated by Bank guys for encryption of files ?
-->> for encryption you need the PGP keys. The keys needs to store on server level and use the PGP module to encrypt. if you also want signing then you need .p12 keys (private and public key pair). The message is encrypted with receivers (banks) PGP key (public PGP key of bank) and sign using PI's private (.p12) key.
6) Should the keys/certificates are to be generated on Gateway server machine itslef?
-->> It can be generated via a software and installed on gateway.
regards,
Harish
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Ramu,
Thanks for your reply. Is gateway server a physical server that will have access like normal PC. Whom should we contact for setting up?
-->> Yes it should be on a physical server as directory exposes as FTP/SFTP. I am not expert in file system, but i believe the infrastructure guys needs to set this up.
Which would be better option among certificates/keys vs PGP keys for encryption/decryption?
-->> PGP keys are required to encrypt the file using PGP module. the option available with PGP is
1. Encryption only - you can perform this partner public pgp key
2. Encryption with signing - you need partners public pgp key for encryption and own private key for signing
Hope this help
Harish
Hi Harish,
Thanks for ur time. Sorry for wrong 2nd question, I mean to ask.
Which would be better option among SSL certificates/keys (or) PGP keys for encryption/decryption? I am aware of encryption/decryption using PGP keys, but can we do encryption/decryption by SSL keys/certificates. If so pls guide which would be better option to go.
Thanks,
Ramu.
User | Count |
---|---|
93 | |
10 | |
10 | |
9 | |
9 | |
7 | |
6 | |
5 | |
5 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.