Configuring FTP key-based connection - Adobe Campaign

Learn how to configure an FTP (File Transfer Protocol) key-based connection by generating SSH keys.

Description description

Environments

  • Adobe Campaign Classic v7 (ACC v7)
  • Adobe Campaign Classic v8 (ACC v8)

Issue

Learn how to configure an FTP key-based connection.

Resolution resolution

In the Campaign v7 release, the FTP/SFTP external account can only support the user/password authentication method. An improvement has been created to add the key-based authentication method.

However, there’s a workaround. The File Transfer workflow activity is configured with a FTP/SFTP external account and can be supported by the key-based authentication method.

First, generate a new SSH (Secure Shell) key pair with the following command: ssh-keygen -m pem -t rsa -b 2048 -C "your_email@example.com".

Note: The file name to store the SSH keys must be id_rsa.

For Example:

  • The id_rsa files must be stored on the Campaign application server under the Neolane home/.ssh directory for Linux or under the Adobe Campaign v7.ssh directory for Windows.
  • Generate the SSH key pair without a passphrase.
  • The SSH key pair can be installed via the Control Panel. You may need the assistance of the Support team to install the key pair.
  • An external FTP server will require an extra step. (The SSH key pair must be installed by someone who has access to the external FTP server ).

To test the FTP connection, build a simple workflow as follows:

To display the session logs, follow these steps:

  • Enable Verbose on the WFSERVER process.
  • Enable the Display the session logs option from the File Transfer activity.

  • Enable the Execute in the engine option from the workflow properties.

  • After executing the workflow, the Workflow Audit log should display the following information:

  • As shown above, the File Transfer activity retrieves the SSH key pair from the id_rsa.pub and id_rsa files.

Additional information

For Campaign v8 (since the 8.5.1 release), a new key-based authentication option has been added for the SFTP external account alongside the existing user/password authentication method.

• The SSH key pair (private and public) is saved on the Campaign application server under the /var/ssh folder.

• The SSH key pair must be saved in PEM (Privacy Enhanced Mail) format and be RSA with 4096 bits. The command used to generate the key is: ssh-keygen -b 4096 -t rsa -m PEM -f <filename>.

Note: Generate the SSH key pair without a passphrase. For now, the passphrase isn’t in working condition. The Campaign Product Team is currently addressing this issue.

recommendation-more-help
3d58f420-19b5-47a0-a122-5c9dab55ec7f