View Attach (2) Info

Add new attachment

Only authorized users are allowed to upload new attachments.

List of attachments

Kind Attachment Name Size Version Date Modified Author Change note
png
 ecdsa.png 30.2 kB 1 05-Dec-2023 05:32 Sandor
png
 strong_ssh.png 226.6 kB 2 05-Dec-2023 05:32 Halmágyi Árpád

This page (revision-9) was last changed on 09-Apr-2024 12:15 by Ada Csaba

This page was created on 05-Dec-2023 05:32 by Sandor

Only authorized users are allowed to rename pages.

Only authorized users are allowed to delete pages.

Difference between version and

At line 1 changed 64 lines
Setup CrushFTP SFTP with ECDSA Support
This document shows how to properly configure ECDSA support for SFTP on a CrushFTP server. This is needed for VMware NSX-T backups to properly function.
!1. Create ECDSA Key
You will need to use cmd to generate the ssh_host_ecdsa_key. This does require you use Windows 2019 as the underlying OS for CrushFTP since Windows 2019 includes the ssh-keygen commands built in. If you are not able to use Windows 2019, you may wish to install the OpenSSH application on your Windows Server to gain access to the ssh-keygen utility. [https://github.com/PowerShell/Win32-OpenSSH/wiki/Install-Win32-OpenSSH]
__Steps to Create ECDSA Key files__\\
1. Open Command Prompt as Administrator\\
2. Run Below commands to generate key files:
%%prettify
{{{
cd C:\Program Files\CrushFTP
ssh-keygen -A
ssh-keygen -t ecdsa -f ssh_host_ecdsa_key -N ""}}}
/%
__Output:__
%%prettify
{{{
Generating public/private ecdsa key pair.
Your identification has been saved in ssh_host_ecdsa_key.
Your public key has been saved in ssh_host_ecdsa_key.pub.
The key fingerprint is:
SHA256:uoSFybTIOdocoYO69ew/o58ULcKnvRCRJgDNThGYF14 contso\username@server-name
The key's randomart image is:
+---[ECDSA 256]---+
|+==oo.E |
| .+o o |
| oo * |
|.o.X = . |
|+ * O = S |
|.= o O + |
|o + + = |
| o o +o+ |
|. .=+*o |
+----[SHA256]-----+
}}}
/%
!2. Modify CrushFTP SFTP Settings
You will need open the CrushFTP Admin interface to change the SFTP configuration to correctly configure ECDSA support.
1. Login to CrushFTP HTTPS interface with admin\\
2. Click on > Admin > Preferences > and select the SFTP interface you wish to modify\\
3. Click on the SSH Tab, and edit the Server Host Key (DSA): ./ssh_host_ecdsa_key\\
[attachments|ecdsa.png]\\
4. Click on Save\\
5. Test the connection with Filezilla or WinSCP\\
\\
\\
\\
Thanks for the contribution to Russell Hamker
CrushFTP v11 has native support for the new ECDSA and ED25519 hostkey algorithms out of the box, no further configuration needed. See the main [SFTP|SFTP] wiki page.
Version Date Modified Size Author Changes ... Change note
9 09-Apr-2024 12:15 0.167 kB Ada Csaba to previous
8 09-Apr-2024 12:14 0.131 kB Ada Csaba to previous | to last
7 05-Dec-2023 05:32 2.242 kB Halmágyi Árpád to previous | to last
6 05-Dec-2023 05:32 2.025 kB Sandor to previous | to last
5 05-Dec-2023 05:32 2.054 kB Sandor to previous | to last
4 05-Dec-2023 05:32 1.962 kB Sandor to previous | to last
3 05-Dec-2023 05:32 1.97 kB Sandor to previous | to last
2 05-Dec-2023 05:32 1.947 kB Sandor to previous | to last
1 05-Dec-2023 05:32 1.941 kB Sandor to last
« This page (revision-9) was last changed on 09-Apr-2024 12:15 by Ada Csaba
G’day (anonymous guest)
CrushFTP11 | What's New

Referenced by
LeftMenu

JSPWiki