This blog details the steps required to enable users to access OIC File Server and also use Key Based Authentication.

Pre-requisites

1. IDCS: Admin Console Access - Enable the File Server. Refer this documentation.

2. OIC User with ServiceAdmin Role - To upload the public key against the user.

Generate SSH Keys

The SSH Keys should be generated in PEM format using the below command. Enter the Passphrase as required

ssh-keygen -t rsa -m PEM

Configure Users

1. Login to OIC Instance with a user who has ServiceAdmin role.

2. Navigate to Settings - > File Server. Under the Settings of File Server make sure Authentication Type is set to Password or Key. If you want to enable only Key based change it accordingly. Copy the Host, IP and Port Details.

   

3. Navigate to Settings -> File Server ->Users

4. Select the User of your choice and Click on Configure Icon

5. Enable the User. Upload the Public Key. Click on Save

6. If you want to give access to specific folders then that can be achieved using the below icon under (Settings -> File Server ->Folders)

   

File Server Connection (WinSCP)

Share the following details to the development team (EFT and OIC)

• Host

• IP

• Port

• Private Key

• Service User Name

1. For connecting from WinSCP , Enter the basic details (without password) and select Advanced → SSH → Authentication

   

2. Select the Private Key. WinSCP support only PPK format. So, first time when we try to connect it will automatically convert the key.

   

3. Click OK and Connect to SFTP.

Note in Gen3 you no longer need to create a separate SFTP Connection in OIC as it is available as one of the activity during the design time. But if you have any specific requirement to create a SFTP Connection then you can definitely go ahead and create one under Connection. Upload the Private key file generated in the beginning.