SFTP server

SFTP server


Buckaroo can set up a SFTP server for your Buckaroo account. You can request this additional service through your account manager or by contacting our Merchant Support department at wecare@buckaroo.nl

Terminology

Customer – Merchant: Party that purchases services from Buckaroo.
SFTP – Secure FTP: SFTP works with SSH and is tunneled over an ssh connection. This is not the same as FTP over SSL/TLS.
SFTP client: Software that can make contact with an SFTP server. Examples are Winscp and Filezilla.
Client certificate and SSH private key refer to the same thing.

URLs

Putty (PuTTYgen) – https://www.putty.org/
WinSCP - https://winscp.net/
Filezilla - https://filezilla-project.org/

Necessities

To use the Buckaroo SFTP server, 5 things are needed:

  • SFTP client
  • Hostname SFTP Buckaroo: sftp.buckaroo.nl
  • Login name
  • Client certificate (SSH private key)
  • Passphrase (password to load the private key)

Structure

By default, 3 directories are created on the server that are visible when logging in:

  • .ssh
  • uploads
  • downloads

The .ssh directory is used for client-server communication. There are 2 files in the directory:

  • authorized_keys: This is the public key of the client.
  • id_dsa: This is the private key of the client.

If these are removed, communication is no longer possible!
The upload directory is used by the customer to upload files and logically the download directory is used to offer data from Buckaroo to the customer.

Format client certificate

The customer receives the login name and client certificate (including passphrase) from Buckaroo. This client certificate is an AES-128-CBC private key and is provided ONCE ONLY. There are several format options for private keys. We follow that of OPENSSH. If the customer wants to use the PuTTY format, it must first be converted. This is possible via PuTTYgen:

  1. Launch PuTTYgen.
  2. Click on Load and select the key.
  3. Now you will be asked for the passphrase.
  4. If this goes well, the following will be indicated: “Successfully imported foreign key”.
  5. Finally, it is possible to save the key in the PuTTY format via Save private key.
Error message

If the following error message appears within PuTTYgen, the snapshot version (of PuTTYgen) must be be used in which AES encryption is supported: Couldn't load private key (ciphers other than DES-EDE3-CBC not supported)

Communication

The communication can take place with many different SFTP clients. Filezilla is elaborated below.

Filezilla (for Windows)

Note the version of Filezilla you are using. It may be that the format must first be converted to PuTTY format. See above for description.
Filezilla is an open source package and can be obtained for free from https://filezilla-project.org.

  1. Start up Filezilla and go to Edit -> Settings
    Settings filezilla

  2. Go to SFTP. Via Add key file it is possible to search and load the key.
    Settings SFTP filezilla

  3. Now it's time to enter the passphrase.

  4. Then click OK twice to close. The private key is now loaded.

  5. Go to File -> Site Manager.
    site manager

  6. Finally, the login details still need to be entered.

  • Host: sftp.buckaroo.nl
  • Port: 22
  • Server type: SFTP – SSH File Transfer Protocol
  • Logon type: Keyfile
  • User: Provided by Buckaroo
  • Password: Leave blank
  • And CONNECT!

Support

If problems arise with the private key, a new private key (+ public key) must be generated. Please contact support@buckaroo.nl.


Was this article helpful?