Obtain an SSH Known Host Key Automatically and Check It In

Edit online

To use the SSH/SFTP protocol to connect to your trading partner's SFTP server, you must obtain the public part of a Known Host Key for that SFTP server.

Before you begin

One method is to obtain the key automatically during the check-in process.
Before you begin:
  • Obtain the host name or IP address and the port of the server you are connecting to.
  • Configure the default SSHKeyGrabberAdapter service instance to use the appropriate perimeter server and (if used) proxy server. See the adapter documentation for details.

About this task

To obtain an SSH Known Host key automatically and check it in:
Note:
  • The ssh-dss host key algorithm is deprecated as OpenSSH 7.0 has disabled it. It is very weak and OpenSSH 7.0 does not recommend its usage. If you still want to use this key-type/algorithm, you must include the property security.SSHClientSignatureList_SSHD=ssh-dss,ssh-dss-cert-v01@openssh.com,ssh-rsa-cert-v01@openssh.com in the customer_overrides.properties file.
  • For SFTP Client Adapter 2.0:

    Keys of type DSS of length > 1024 is not supported by Sterling B2B Integrator, if the keys are generated by Sterling B2B Integrator.

    If you still want to use such keys of length >= 1024, you must use the external tools like PuttyGen and checkin to the system as OpenSSH keytype.

Procedure

  1. From the Administration Menu, go to Trading Partner > SSH > Known Host Key.
  2. In the Check in section, next to New Known Host Key, click Go!
  3. Enter the Key Name. Do not use spaces or special characters.
    Note: Key Name can have up to 255 characters.
  4. Select Obtain key from a Remote Host.
  5. Ensure that Enabled is selected and click Next.
  6. Enter the remote host or IP address and the port and click Next.
    Sterling B2B Integrator connects to the remote host, collects the key, and displays a summary of key information for review.You can then check in the key, or save the file for later check in.
    To: Perform these steps:
    Save the file to disk
    1. Choose one of the following formats and click Go!
      • OpenSSH
      • SECSH
    2. Complete the download and the save dialogs.
    3. If you do not want to check in the key at this time, stop here.
    Check in the key
    1. Click Next.
    2. Review the key information before check in and click Finish.