I.1 Configuring FTP/SFTP

This section details about the configurations required for FTP/SFTP.

Adding FTP/SFTP Configuration for File Transfer

In OFSAA, certain modules require transfer of files from the web application server to the OFSAA server over SSH.

To ensure the OFSAA server recognizes the web application server during file transfers, follow these steps:

1. Log in to the web application server.
2. Type sftp <user>@<OFSAAServer>.
3. Specify Yes when prompted for permission.
4. This will add an entry into the known_hosts file. A confirmation message is displayed.

Setting Up SFTP Private Key

Note:

• To set up SFTP Private Key for Oracle Linux 8.x or Red Hat Enterprise Linux 8.x., see Doc ID 2890010.1.
• For installation, log in to OFSAA Unix user using Putty tool, and generate a pair of authentication keys using the ssh- keygen command. If required, set passphrase. Otherwise OFSAAI_SFTP_PASSPHRASE tag in the OFSAAI_InstallConfig.xml file must be set to NA.

To set up SFTP private key, follow these steps:

1. Enter the commands as: ofsaapp@OFSASERVER:~> ssh-keygen -t rsa Generating public/private rsa key pair.
2. Enter file in which to save the key (/home/ofsaapp/.ssh/id_rsa): Created directory /home/ ofsaapp/.ssh.
3. Enter passphrase (empty for no passphrase): Enter same passphrase again:

   Your identification has been saved in /home/ofsaapp/.ssh/id_rsa. Your public key has been saved in /home/ofsaapp/.ssh/id_rsa.pub. The key fingerprint is: 3e:4f:05:79:3a:9f:96:7c:3b:ad:e9:58:37:bc:37:e4

   ofsaapp@OFSASERVER:~> cat /home/ofsaapp/.ssh/id_rsa.pub >>/home/ofsaapp/.ssh/authorized_keys

4. Ensure the following permissions exist for the given folders:
   • Permission of .ssh must be 700
   • Permission of .ssh/authorized_keys must be 640
   • Permission of .ssh/id_rsa must be 400
   • Permission of Unix user created must be 755