on 03-22-2019 3:14 PM
Hello,
We transmit files from PI to our vendor's SFTP Server using Certificate based authentication(we gave our PI's public key that they added to their key ring and we use PI's Private Key to establish handshake between PI and vendor's SFTP server).
Recently, Vendor updated the Host key of their SFTP Server and provided us in open SSH format. We were informed that we need to load this key in the Keystore.
We are not sure -
1. In which keystore of PI we need to load this.
2. How to convert it from Open SSH to X.509 certificate.
3. If not in the key store, where do we need to load this Host Key in PI.
When we try to send the test file, it failed with "UnsupportedOperationException: received authentication request from server which could not be processed:" error.
Any thoughts on where and how to load this Host key in PI?
Thanks,
Sarat
This is now resolved. Actually, PI automatically loads the SSH Host key(and does the same if there is a new one available too) of an SFTP server upon successful connection.
In our case, the user we used in PI was somehow deactivated and so couldn't connect to the SFTP server.
Thanks,
Sarat
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Sarat,
Follow the below guide for complete understanding of sftp keys both part 1 and part 2.
1. Not in keystore you can store the ssh keys in OS level (mostly .ssh folder and known_hosts folder)
https://blogs.sap.com/2016/05/23/the-key-to-unlock-the-key-generation-mystery-sftpssh/
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
In case of SFTP communication PI need to provide public certificate to SFTP vendor.
If you are using encryption then you need need certificate from SFTP vendor but that should not be SSH key.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
84 | |
23 | |
11 | |
9 | |
8 | |
5 | |
5 | |
5 | |
5 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.