cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Communication channel Error for SFTP Adapter

Go to solution
former_member215447
Explorer

on ‎06-26-2013 11:04 AM

0 Kudos

Hi All,

We have configured private key based authentication for SFTP communication channel in Integration Directory.

But, in the RWB we are getting error for the communication channel as below

"Exception received: java.lang.UnsupportedOperationException: received authentication request from server which could not be processed: destination=ftpadm@portnumber; name=; instruction=prompt=Account locked due to 15 failed logins Password: "

Can you please help to resolve this behaviour of the comunication channel.

Thanks,

Kasi Gupta

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

former_member215447
Explorer
‎09-11-2013 7:40 PM
0 Kudos

Hi Peter and All,

Thank you. We have resolved the issue. It was the file permission to the ftpadm user's home directory which was causing the error. The ftpadm home directory was having 777 as the permission. Once we changed it to 744 , the issue got resolved.

Complete permission for everyone was not allowed as per security policy which was causing the trouble.

Thank you all for your valuable inputs.

Thanks,

Kasi Gupta

Show replies
Show replies

Answers (2)

Answers (2)

former_member215447
Explorer
‎09-06-2013 3:00 PM
0 Kudos

Hi Peter,

We re-configured the public certificates. Yet,We are still facing the error. Instead this time we are receiving error as below.

'Transmitting the message to endpoint <local> using connection IDoc_AAE_http://sap.com/xi/XI/System failed, due to: com.sap.engine.interfaces.messaging.api.exception.MessagingException: javax.resource.ResourceException: java.lang.UnsupportedOperationException: received authentication request from server which could not be processed: destination=ftpadm@sftpserver; name=; instruction=prompt=Password: '

the issue with ftpadmin is resolved but the the message monitor throws error that ftpadm user / password is required despite we providing the public certificates.

I used the below link to configure the scenario. Can you please check and let us know if we are missing something

http://wiki.sdn.sap.com/wiki/display/XI/Generating+SSH+Keys+for+SFTP+Adapters+-+Type+2

Thanks,

Kasi Gupta.

Show replies
Show replies
Former Member
‎09-09-2013 12:19 PM
0 Kudos

Looks like the configuration of your ftp server is not consistent.

Or the client certificate isn't correctly configured on the ftp server.

Check the documentation for the ftp server for using client certificates for authentication and check if everything is set up according to the ftp server vendors documentation.

In addition configure password authentication in your communication channel and test it this way. If login works with username/password it's almost sure that there is a configuration error with the ftp server.

Dimitri
Active Contributor
‎06-26-2013 12:11 PM
0 Kudos

Dear Kasi,

Seems like the user you use in the adapter got locked. Unlock it and verify the password, otherwise it will get locked again very soon.


Kind regards,

Dimitri

Show replies
Show replies
former_member215447
Explorer
‎07-12-2013 10:39 AM
0 Kudos

We have unlocked the ftpadm user. Yet,The strange issue we are facing is that.. in the Integration Directory we have configured the user id as ftpadm and the private key for ftpadm user with which the connection will be established with the sftp server..

But when we check the message monitor logs, it is erroring out with ftpadmin user is locked. We are not sure why is it picking the ftpadmin user though we have configured the private key for ftpadm user.

Kindly provide your suggestions please.

Former Member
‎09-02-2013 2:45 PM
0 Kudos

That's because the private key is used instead of a password and not instead the username when establishing the connection.

And if the public key on the target system doesn't match the private key on your side the login is rejected and after 15 unsuccessfull login attempts the login policies on the target system lock the user from further login requests.

So you have to get the certificates sorted out on both systems.

Ask a Question