Use Server Authentication for Inbound and Outbound Connections

In a basic SSH key implementation, you use both local host keys and known host keys for SFTP communications with your trading partner and target server. The key distribution is illustrated in the following diagram:

In this scenario, SSP has the private host key in the Local Host Key Store to support the inbound SFTP connection with the trading partner, and the public host key in the Known Host Key Store to support the outbound SFTP connection with the target server.

To implement this model:
  1. Provide SSP’s public local host key to your trading partner.
  2. Acquire the target server’s public host key.
  3. Create a local host key store and import SSP’s private key into the local host key store. Refer to Manage Local Host Key Stores and Keys on page 272.
  4. Create a known host key store and import the target server’s public host key into the known host key store. See Manage Known Host Key Stores and Keys on page 277.
  5. In the SFTP Adapter configuration on the Basic tab, select the local host key store you created and specify the location and name of the local host key you imported into the local host key store.
  6. In the outbound node tab of the SFTP server connection definition in the netmap, select the known host key store you created and specify the location and name of the known host key you imported into the known host key store.
Parent topic: SSH Key Implementation Models Using SSP