In this tutorial, you will:
- Create a shared account for a local SFTP server using password authentication.
- Create a shared account for a local SFTP server using SSH key authentication.
- Create a shared account for a local FTPES server using password authentication.
Create a Shared Account with Password Authentication for a Local SFTP Server
Step 1 | From the UDMG Admin UI navigation pane, select Shared Accounts. The Shared Accounts list displays. |
---|---|
Step 2 | Click the Add icon () above the Shared Accounts tab. |
Step 3 | The Shared Account Details displays:
|
Step 4 | Click the Save icon (). |
Step 5 | From the UDMG Admin UI navigation pane, select Local Servers. The Local Servers list displays. |
Step 6 | Select or create a SFTP server, for example stonebranch-sftp-01. The server details are populated on the Details tabs: |
Step 7 | Select the Accounts tab. |
Step 8 | Select the Pencil icon to add a shared account to the local SFTP server. |
Step 9 | Search for stonebranch-01 and add using the arrow. Click the Save changes button. |
Step 10 | It's now possible to connect to the SFTP server with this account credentials: $ sftp -P 4100 stonebranch-01@0.0.0.0 stonebranch-01@0.0.0.0's password: Connected to 0.0.0.0. sftp> ls sftp-01-in |
Create a Shared Account with SSH Key Authentication for a Local SFTP Server
Step 1 | Follow the above steps again to create another shared account stonebranch-02. |
---|---|
Step 2 | If you don't already have a public key, generate a new SSH key for this account, for example: $ ssh-keygen -t ed25519 -C "stonebranch-02" -N "" -f stonebranch-02 Generating public/private ed25519 key pair. Your identification has been saved in stonebranch-02. Your public key has been saved in stonebranch-02.pub. The key fingerprint is: SHA256:gNvc9Km/Zoe6b/UEtfD0mIjjhiRO/eYujv/SU4+d8sk stonebranch-02 The key's randomart image is: +--[ED25519 256]--+ | | | . . o | | . ... . * = | | +o+o.o.o = .| | .oooS+o. . | | . ..= o . | | .= + * . | | .o.O +.=. | | .o=%*+ oE | +----[SHA256]-----+ Note The public key must be in OpenSSH format. |
Step 3 | From the UDMG Admin UI navigation pane, select Local Servers. The Local Servers list displays. |
Step 4 | Select or create an SFTP server, stonebranch-sftp-02. |
Step 5 | Follow the above steps again to add the shared account, stonebranch-02 to the local server. The details are populated in the Accounts tab. |
Step 6 | Click the Certificates / Keys tab. |
Step 7 | Click the Add icon (). |
Step 8 | The Certificate Details displays.
The fields can be resized for easier display, simply move up or down the resize grabber in the corner of the field. |
Step 9 | Click Submit button. The SSH key is stored for this account and client connection can be performed with SSH key authentication. |
Step 10 | It's now possible to connect to the SFTP server with this account private key: $ sftp -i stonebranch-02 -P 4101 stonebranch-02@0.0.0.0 Connected to 0.0.0.0. sftp> ls sftp-01-in |
Create a Shared Account with Password Authentication for a Local FTPES Server
Step 1 | From the UDMG Admin UI navigation pane, select Shared Accounts. The Shared Accounts list displays. |
---|---|
Step 2 | Click the Add icon ( Shared Accounts tab. ) above the |
Step 3 | The Shared Account Details displays:
|
Step 4 | Click the Save icon ( ). |
Step 5 | From the Shared Accounts list, select the newly created user stonebranch-10. Select the Local Servers tab. The list of associated Local Servers displays. Initially, the account is created without any reference and cannot be used for authentication to any of the local servers. By associating it with 1 or more local servers, it is allowed for each of them. |
Step 6 | Select the Pencil icon to associate a Local Server to the Shared Account. |
Step 7 | Search for stonebranch-ftpes-01 and add using the arrow. Click the Save changes button. |
Step 8 | The Local Server list is updated for the account |
Step 9 | It's now possible to connect to the FTPES server with this account credentials. |
Step 10 | The association between Local Server and Shared Accounts can also be edited from the Accounts tab of the Local Server: |