Your browser does not allow storing cookies. We recommend enabling them.

SSH Tectia

Integrating an Extranet Application with SFTP

SSH Tectia ConnectSecure can be integrated to an existing application through the SFTP API, for example to an application responsible for data warehouse feeds, extranet applications, Windows desktop applications, or third-party file transfer management applications. The counterpart can be SSH Tectia Server or another Secure Shell server.

In this scenario, an end user needs to be able to download files from servers that are located on the Internet. However, direct access from the user workstations to those servers is not possible because of security reasons. Thus, the end users use a web access control application located on the extranet (DMZ). This application manages access rights to individual servers and files.

When the end user has selected the files to download, the web application triggers file transfer through the API. SSH Tectia ConnectSecure then transfers the files to the extranet and the user is provided HTML links to the files.

Integration through SFTP API

Figure 5.3. Integration through SFTP API

With this solution, end users are not accessing external services directly and it is easy to manage the access rights from a centralized web server. External parties do not have to modify their systems but can rely on the trusted Secure Shell standard.


 

 
What to read next:

  • Reduce Secure Shell risk. Get to know the NIST 7966.



    The NISTIR 7966 guideline from the Computer Security Division of NIST is a direct call to action for organizations regardless of industry and is a mandate for the US Federal government.
    Download now
  • ISACA Practitioner Guide for SSH



    With contributions from practitioners, specialists and SSH.COM experts, the ISACA “SSH: Practitioner Considerations” guide is vital best practice from the compliance and audit community.
    Download now