Replies: 7 comments 7 replies
-
Please provide more details on how you use it today @andy812 we are no FTP/SFTP experts here. |
Beta Was this translation helpful? Give feedback.
-
I have a use case that might cover @andy812 need. For a client I work on we have to provide an SFTP end point to a third party so they can push, unattended, CSVs and PDFs to our infrastructure. The third party is much bigger than we are so they are providing their standard operating process. We have to provide them:
and they provided us: the public key they will be authenticating with so we can associate that key to the user. Why a public key instead of a password? Because their standard operating process uses SSH public key authentication when doing unattended file transfer (something I assume is very common). For me, the decision on this topic, will determine if we can use Min.io for that project or use another platform. |
Beta Was this translation helpful? Give feedback.
-
Hi |
Beta Was this translation helpful? Give feedback.
-
Hello. A separate authentication mechanism is a good idea, I'll be glad to see it in the future. |
Beta Was this translation helpful? Give feedback.
-
I read about the sftp server configuration here and can see the recommendation to use these options: My thinking is that a remote sftp user would authenticate using their private key and the minio server would have this user's corresponding public key available? I am comparing to this containerized setup for a sftp server: sftp:
image: atmoz/sftp:alpine
ports:
- "8022:22"
volumes:
- ./my-share:/home/sftpuser/my-share
- ./sftp/login.defs:/etc/login.defs
- ./sftp/sftpusers.conf:/etc/sftp/users.conf:ro
- ./sftp/keys/id_rsa.pub:/home/sftpuser/.ssh/keys/id_rsa.pub:ro
- ./sftp/keys/one_pubkey:/home/sftpuser/.ssh/keys/one_pubkey.pub:ro
- ./sftp/keys/another_pubkey:/home/sftpuser/.ssh/keys/another_pubkey.pub:ro
- ./sftp/keys/hostkeys/ssh_host_ed25519_key:/etc/ssh/ssh_host_ed25519_key:ro
- ./sftp/keys/hostkeys/ssh_host_rsa_key:/etc/ssh/ssh_host_rsa_key:ro Is the And currently there is no way to make the minio sftp service aware of public ssh keys that users can authenticate against? |
Beta Was this translation helpful? Give feedback.
-
I would be interested in pubkey access via SFTP as well. |
Beta Was this translation helpful? Give feedback.
-
FYI, RELEASE.2024-05-07T06-41-25Z added support for this. |
Beta Was this translation helpful? Give feedback.
-
MinIO with FTP/SFTP features is a good replacement for standard FTP/SFTP server. But in many cases we should authenticaticate users (local users and Active Directory accounts) using their private keys. Is it possible to add FTP/SFTP key based authentication in MinIO for full-featured replacement of standard FTP/SFTP server?
Beta Was this translation helpful? Give feedback.
All reactions