What are my options for SFTP without credentials?

Good Morning,

For the past 5 years or so, we have been transferring 3 files from our Miami office (Unix platform) to our Cayman Islands office (Windows Server 2008 Standard SP2) on a daily basis via FTP using a login and password.

Our current setup is as follows: In the Cayman office we have a domain account set up (ftpusr) which has been given read/write and list access to a directory on the server. The unix system in Miami will use this account to transfer the 3 files to the Cayman office server daily.

We now want to use SFTP to transfer these files, also and most importantly we DO NOT want to use credentials (a login and password) to authenticate with the other side. Instead we want to use some other method of authentication. Like a certificate or key or something else that would make authentication easy and secure.

I need options/ideas on how to accomplish this as I am not sure. But the below points must be met:

1.      Must be SFTP
2.      Must use either a “Free” third-party application or something included in Windows server 2008.
3.      Cannot be an anonymous account.

Kindly advise how this can be accomplished.

Regards,
N
LVL 1
KevinInformation TechnologyAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Alex [***Alex140181***]Software DeveloperCommented:
Must use either a “Free” third-party application or something included in Windows server 2008.
A free SFTP server?! If you find one that is robust, stable and can be used in Production/Live environments, let me please know ;-) I had a similar problem some time ago and I ended up in buying a commercial one (Cerberus FTP) and I'm very glad I did so :-)
About the "SFTP without credentials" thing: what about Private/Public Keys?!
KevinInformation TechnologyAuthor Commented:
Thanks Alexander.

Is there nothing within Windows Server that will give me the SFTP server capability?

Private/Public keys will do, I need to research on these though as this area is very new to me.
Jose Gabriel Ortega CastroCEO Faru Bonon IT - EE Solution ExpertCommented:
On windows server, nope.
On windows server just built-in FTP.
But I've found this maybe is useful: https://docs.microsoft.com/en-us/iis/publish/using-the-ftp-service/using-ftp-over-ssl-in-iis-7


But I have a free SFTP with a self-signed certificate with https://filezilla-project.org/
Download server and it's pretty easy to configure
For FTP config
https://www.youtube.com/watch?v=m4y5_PHqXtM
for FTPS
https://wiki.filezilla-project.org/FTPS_using_Explicit_TLS_howto_(Server)
Creating Active Directory Users from a Text File

If your organization has a need to mass-create AD user accounts, watch this video to see how its done without the need for scripting or other unnecessary complexities.

Alex [***Alex140181***]Software DeveloperCommented:
Sure, FTPS is as secure as SFTP, but in the end, it's just not the same. And if your customers or whoever want/need to transfer their data via SFTP, you have to buy a SFTP server software when you're running it on a Windows machine. If you're able to switch to a *nix server, there may be some other (free) possibilities ;-)
KevinInformation TechnologyAuthor Commented:
@Jose, can Filezilla Server be set up as a service to start upon windows boot? Also does it support private/public keys?

@Alexander, i found this on the net "https://winscp.net/eng/docs/guide_windows_openssh_server" using OpenSSH also this one (http://www.tothenew.com/blog/how-to-setup-sftp-on-windows/) using Cywig. Have you used either one of them? If so, is it possible to set the users path outside of the openSSH/Cywig home directory? I would like to use a windows share for the path of the SFTP user.

Cerberus FTP looks great but for our simple needs of transferring 3 files from one location to another securely, the price for the software just isn't worth it.
Alex [***Alex140181***]Software DeveloperCommented:
I'm using WinSCP just as a client... But the links you found are looking good to me, why not give it a shot ;-)
Isn't private/public key auth bound to SFTP only?! I don't think you can do this with FTP(S), but I'm not quite sure...

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
KevinInformation TechnologyAuthor Commented:
Thank you both for the ideas.

I found that Filezilla Server does not support SFTP. And looks like you are right Alexander, private/public keys are only used with SFTP and not FTPS.

I will be using the OpenSSH with Cywig method to set up my SFTP.

Kind Regards,
N
Alex [***Alex140181***]Software DeveloperCommented:
You're welcome ;-)
Good luck!
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows Server 2008

From novice to tech pro — start learning today.