This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Register Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

SecurID® Governance & Lifecycle Knowledge Base

Find answers to your questions and identify resolutions for known issues with knowledge base articles written by SecurID Governance & Lifecycle experts.

How to configure Secure FTP (SFTP) on the Hardware Appliance in RSA Identity Governance & Lifecycle

Article Number

000028934

Applies To

RSA Product Set: RSA Identity Governance & Lifecycle
RSA Product/Service Type: Appliance
RSA Version/Condition: All
 

Issue

By default the RSA Identity Governance & Lifecycle hardware appliance is configured to allow the transfer of files to and from the hardware appliance via FTP. Your site may require that you transfer data files securely to the RSA Identity Governance & Lifecycle server using SFTP rather than the FTP protocol. This document describes how to configure SFTP for the RSA Identity Governance & Lifecycle hardware appliance using a username and password method rather than using public and private keys.
 

Resolution

To configure SFTP for the RSA Identity Governance & Lifecycle hardware appliance, login as the root user and create a new SFTP user as follows. Note that an SFTP account requires shell access to the appliance. In this example a user called sftpuser is created.
  1. Create the user:

useradd sftpuser
  1. Change the user directory to point to the ftp directory:

usermod sftpuser -d /home/oracle/ftp
  1. Check that the user creation was successful:

cat /etc/passwd
The output should look similar to:

# cat/etc/passwd
sftpuser:x:1001:500::/home/oracle/ftp:/bin/bash
  1. Create a password for the user:

# passwd sftpuser
New password: <enter new password here>
Retype new password: <re-enter new password here>
passwd: password updated successfully
  1. Change the home directory and files to owner sftpuser and group oinstall:

chown sftpuser:oinstall /home/oracle/ftp –R
  1. Check that the owner and group modifications were successful:

ll /home/oracle/ftp
The output should look similar to the following:

# ll /home/oracle/ftp
total 56
-rw------- 1 sftpuser oinstall    0 May 18  1996 .bash_history
-rw-r--r-- 1 sftpuser oinstall 1177 Sep 25  2018 .bashrc
drwx------ 2 sftpuser oinstall 4096 Jun 27  2017 .config
-rw-r--r-- 1 sftpuser oinstall 1637 Sep 11  2014 .emacs
drwxr-xr-x 2 sftpuser oinstall 4096 Jun 27  2017 .fonts
-rw-r--r-- 1 sftpuser oinstall  305 Aug 21  2015 .i18n
-rw-r--r-- 1 sftpuser oinstall  861 Sep 11  2014 .inputrc
drwx------ 2 sftpuser oinstall 4096 Jun 27  2017 .local
-rw-r--r-- 1 sftpuser oinstall 6043 Aug  9  2018 .muttrc
-rw-r--r-- 1 sftpuser oinstall 1028 Sep 25  2018 .profile
-rw-r--r-- 1 sftpuser oinstall 1952 Aug 21  2015 .xim.template
-rwxr-xr-x 1 sftpuser oinstall 1112 Jun  3  2016 .xinitrc.template
drwxr-xr-x 2 sftpuser oinstall 4096 Jun 27  2017 bin
drwxr-xr-x 2 sftpuser oinstall 4096 Mar 13 06:31 public_html
  1. Change the primary group of the user to oinstall:

usermod -g oinstall sftpuser
  1. Check that the group was successfully changed:

groups sftpuser
The output should look similar to the following:

# groups sftpuser
sftpuser : oinstall


NOTE: If the Operating System ISO is re-installed, the SFTP user will need to be recreated.


 

Notes

For more information on configuring and using FTP with RSA Identity Governance & Lifecycle, please see Appendix A of the RSA Identity Governance & Lifecycle documentation for your specific version.
 
0 Likes
Was this article helpful? Yes No
No ratings

In this article

Version history
Last update:
‎2021-04-23 06:31 AM
Updated by:
Administrator Administrator

Related Content

© 2023 RSA Security LLC or its affiliates. All rights reserved.