Oracle JCA Adapter for FilesFTP 4-85 Verifying - Enter Export Password: 3. Enter a PEM pass phrase when prompted. This is the pass phrase that you created while generating OpenSSL server key and certificate in Section 4.4.3.3.2, Generating OpenSSL Server Key and Certificate. 4. Enter an export password for the PKCS12 file. 5. Re-enter the export password for verification. 6. Enter the requested details. The mykeyz.p12 file is generated in the OpenSSL\bin directory. 7. Copy the mykeyz.p12 file to the managed Oracle WebLogic Server instance running the Oracle FTP Adapter. For example, scratchuserprivatemykeyz.p12

4.4.3.3.5 Configuring Oracle FTP Adapter Deployment Descriptor to Use the New Key

You must perform the following steps to configure the Oracle FTP Adapter deployment descriptor: 1. Navigate to http:servername:portnumberconsole. 2. Use the required credentials to open the home page of the Oracle WebLogic Server Administration Console.

3. Select Deployments in the Domain Structure pane.

The Oracle WebLogic Server Administration Console - Summary of Deployments page is displayed.

4. Click FtpAdapter.

The Oracle WebLogic Server Administration Console - Settings for FtpAdapter page is displayed.

5. Click the Configuration tab, and then click the Outbound Connection Pools tab.

The Outbound Connection Pool Configuration table is displayed. 6. Select the JNDI name for the Ftp Adapter instance that you wish to configure. For example, eisFtpFtpAdapter. 7. Configure the deployment descriptors listed in Table 4–10 : Table 4–10 JCA Properties for Oracle File and FTP Adapters Property Name Property Value useFtps Set the value to true. walletLocation Set it to the location of the PKCS12 file in the managed Oracle WebLogic Server instance: scratchuserprivatemykeyz.p12. walletPassword Set the value to the export password generated in Step 4 of Section 4.4.3.3.4, Converting the Server Key From PEM to PKCS12 Format. keyStoreProviderName Set the value to sun.security.provider.Sun keystoreType Set the value to PKCS12 4-86 Oracle Fusion Middleware Users Guide for Technology Adapters

4.4.4 Using SFTP with Oracle FTP Adapter

SSH file transfer protocol SFTP is a network protocol that enables secure file transfer over a network. Oracle FTP Adapter supports the use of the SFTP feature on Windows and Linux. This section provides an overview of the SFTP functionality and describes how to install and configure this feature. This section includes the following tasks: ■ SFTP Overview ■ Install and Configure OpenSSH for Windows ■ Set Up Oracle FTP Adapter for SFTP

4.4.4.1 SFTP Overview

FTP is the network protocol that enables clients to securely transfer files over the underlying SSH transport. SFTP is not similar to FTP over SSH or File Transfer Protocol FTP. Figure 4–47 displays the communication process between an SSH client and an SSH server. SFTP is supported in Windows and Linux. Figure 4–47 SFTP Communication SFTP has the following features: ■ Encryption ■ Authentication ■ Integrity ■ Data Compression

4.4.4.1.1 Encryption The SSH protocol uses public key cryptography for encryption.

This section explains how data is encrypted:

1. The SSH subsystem uses symmetric key ciphers such as Data Encryption Standard

DES or Blowfish to generate a session key. The SSH protocol currently uses the Diffie-Hellman Key Exchange Algorithm to derive the symmetric key for the session.

2. The data is encrypted using the session key.

keystoreAlgorithm Set the value to SunX509 pkiProvider Must be left blank. jsseProvider Must be left blank. Table 4–10 Cont. JCA Properties for Oracle File and FTP Adapters Property Name Property Value SSH Client SSH Server Integrity Encryption Authentication