cancel
Showing results for 
Search instead for 
Did you mean: 

Where and How to load SFTP Host Key in PI

0 Kudos

Hello,

We transmit files from PI to our vendor's SFTP Server using Certificate based authentication(we gave our PI's public key that they added to their key ring and we use PI's Private Key to establish handshake between PI and vendor's SFTP server).

Recently, Vendor updated the Host key of their SFTP Server and provided us in open SSH format. We were informed that we need to load this key in the Keystore.

We are not sure -

1. In which keystore of PI we need to load this.

2. How to convert it from Open SSH to X.509 certificate.

3. If not in the key store, where do we need to load this Host Key in PI.

When we try to send the test file, it failed with "UnsupportedOperationException: received authentication request from server which could not be processed:" error.

Any thoughts on where and how to load this Host key in PI?

Thanks,

Sarat

manoj_khavatkopp
Active Contributor
0 Kudos

Have u tried updating just the latest finger print of the server ,restart the channel and resend the file.

Accepted Solutions (1)

Accepted Solutions (1)

0 Kudos

This is now resolved. Actually, PI automatically loads the SSH Host key(and does the same if there is a new one available too) of an SFTP server upon successful connection.

In our case, the user we used in PI was somehow deactivated and so couldn't connect to the SFTP server.

Thanks,

Sarat

Answers (2)

Answers (2)

vicky20691
Active Contributor
0 Kudos

Hi Sarat,

Follow the below guide for complete understanding of sftp keys both part 1 and part 2.

1. Not in keystore you can store the ssh keys in OS level (mostly .ssh folder and known_hosts folder)

https://blogs.sap.com/2016/05/23/the-key-to-unlock-the-key-generation-mystery-sftpssh/

https://blogs.sap.com/2016/06/06/the-key-to-unlock-the-key-generation-mystery-setting-up-sftp-server...

apu_das2
Active Contributor
0 Kudos

In case of SFTP communication PI need to provide public certificate to SFTP vendor.

If you are using encryption then you need need certificate from SFTP vendor but that should not be SSH key.