https://wiki.1701technology.com/index.php?action=history&feed=atom&title=Windows_SFTP_with_PGP_using_CLIWindows SFTP with PGP using CLI - Revision history2026-05-06T14:01:38ZRevision history for this page on the wikiMediaWiki 1.34.1https://wiki.1701technology.com/index.php?title=Windows_SFTP_with_PGP_using_CLI&diff=81&oldid=prevMichael.mast at 18:58, 2 June 20162016-06-02T18:58:34Z<p></p>
<table class="diff diff-contentalign-left" data-mw="interface">
<col class="diff-marker" />
<col class="diff-content" />
<col class="diff-marker" />
<col class="diff-content" />
<tr class="diff-title" lang="en">
<td colspan="2" style="background-color: #fff; color: #222; text-align: center;">← Older revision</td>
<td colspan="2" style="background-color: #fff; color: #222; text-align: center;">Revision as of 18:58, 2 June 2016</td>
</tr><tr><td colspan="2" class="diff-lineno" id="mw-diff-left-l14" >Line 14:</td>
<td colspan="2" class="diff-lineno">Line 14:</td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>(The following needs more details) <br></div></td><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>(The following needs more details) <br></div></td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>*Create your SSH keys. I had created them using my Linux workstation, then had WinSCP convert them to the PPK format that WinSCP requires. WinSCP can create keys for you, but that is outside of this documents scope at the moment.</div></td><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>*Create your SSH keys. I had created them using my Linux workstation, then had WinSCP convert them to the PPK format that WinSCP requires. WinSCP can create keys for you, but that is outside of this documents scope at the moment.</div></td></tr>
<tr><td colspan="2"> </td><td class='diff-marker'>+</td><td style="color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><ins style="font-weight: bold; text-decoration: none;">*For the server you will be downloading from, obtain the host key. WinSCP will be able to provide this in it's logs when you attempt to connect.</ins></div></td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>*Create your PGP keys. I created pgp keys using my workstation, and provided the vendor the public key. I am using the private key with password protection (for transferring the key from my workstation to the server) to decrypt with.</div></td><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>*Create your PGP keys. I created pgp keys using my workstation, and provided the vendor the public key. I am using the private key with password protection (for transferring the key from my workstation to the server) to decrypt with.</div></td></tr>
<tr><td class='diff-marker'>−</td><td style="color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #ffe49c; vertical-align: top; white-space: pre-wrap;"><div>*On the Windows domain I am working in, I created a dedicated user with limited access to run the scheduled job as</div></td><td class='diff-marker'>+</td><td style="color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div>*On the Windows domain I am working in, I created a dedicated user with limited access to run the scheduled job as<ins class="diffchange diffchange-inline">. But do whatever works in your environment. The important thing to rememeber is to import the key you want to use for decryption.</ins></div></td></tr>
<tr><td colspan="2"> </td><td class='diff-marker'>+</td><td style="color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><ins class="diffchange diffchange-inline"> gpg --import <key></ins></div></td></tr>
<tr><td colspan="2"> </td><td class='diff-marker'>+</td><td style="color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><ins class="diffchange diffchange-inline"><br></ins></div></td></tr>
<tr><td colspan="2"> </td><td class='diff-marker'>+</td><td style="color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><ins class="diffchange diffchange-inline">==The Batch Script==</ins></div></td></tr>
<tr><td colspan="2"> </td><td class='diff-marker'>+</td><td style="color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div> </div></td></tr>
<tr><td colspan="2"> </td><td class='diff-marker'>+</td><td style="color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><ins class="diffchange diffchange-inline">Really sorry for just dumping this without a lot of explanation, and yes I know there are more efficient methods of doing this.</ins></div></td></tr>
<tr><td colspan="2"> </td><td class='diff-marker'>+</td><td style="color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><ins class="diffchange diffchange-inline"><syntaxhighlight lang='POSH'></ins></div></td></tr>
<tr><td colspan="2"> </td><td class='diff-marker'>+</td><td style="color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><ins class="diffchange diffchange-inline">WinSCP /command "open sftp://<username>@XXX.XXX.XXX.XXX/path/to/files/ -privatekey=D:\path\to\private\keyfile.ppk -hostkey=""ssh-rsa XXXX xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx""" "get *.pgp D:\path\to\local\destination\" exit</ins></div></td></tr>
<tr><td colspan="2"> </td><td class='diff-marker'>+</td><td style="color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><ins class="diffchange diffchange-inline">WinSCP /command "open sftp://<username>@XXX.XXX.XXX.XXX/path/to/files/ -privatekey=D:\path\to\private\keyfile.ppk -hostkey=""ssh-rsa XXXX xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx""" "mv *.pgp /path/to/remote/archive" exit</ins></div></td></tr>
<tr><td colspan="2"> </td><td class='diff-marker'>+</td><td style="color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><ins class="diffchange diffchange-inline">for %%i in (D:\path\to\local\destination\*.txt.pgp) do (gpg --batch --yes --passphrase Concur --output "%%i.txt" --decrypt "%%i")</ins></div></td></tr>
<tr><td colspan="2"> </td><td class='diff-marker'>+</td><td style="color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><ins class="diffchange diffchange-inline">move D:\path\to\local\destination\*.txt D:\path\to\local\destination\Decrypted\</ins></div></td></tr>
<tr><td colspan="2"> </td><td class='diff-marker'>+</td><td style="color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><ins class="diffchange diffchange-inline">move v*.txt.pgp D:\path\to\local\destination\Archive\</ins></div></td></tr>
<tr><td colspan="2"> </td><td class='diff-marker'>+</td><td style="color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><ins class="diffchange diffchange-inline"></syntaxhighlight></ins></div></td></tr>
</table>Michael.masthttps://wiki.1701technology.com/index.php?title=Windows_SFTP_with_PGP_using_CLI&diff=80&oldid=prevMichael.mast: Created page with "This is the process I went through when configuring a scheduled task on a Windows Server to do the following *Download files over SFTP (aka SCP aka SSH aka You get the point)..."2016-06-02T18:47:19Z<p>Created page with "This is the process I went through when configuring a scheduled task on a Windows Server to do the following *Download files over SFTP (aka SCP aka SSH aka You get the point)..."</p>
<p><b>New page</b></p><div>This is the process I went through when configuring a scheduled task on a Windows Server to do the following<br />
*Download files over SFTP (aka SCP aka SSH aka You get the point) using keys without passdwords.<br />
*Move the remote files to an archive location on the remote server after download finished.<br />
*Decrypt the downloaded files<br />
*Sort the decrypted files so the developers could do whatever they needed to with them.<br />
<br><br />
==Prep Work==<br />
The following programs will need to be downloaded and installed on the server running job<br />
*WinSCP https://winscp.net/eng/index.php<br />
*GPG4Win https://www.gpg4win.org/download.html<br />
<br><br />
During installation make sure to enable PATH integration.<br />
<br><br />
(The following needs more details) <br><br />
*Create your SSH keys. I had created them using my Linux workstation, then had WinSCP convert them to the PPK format that WinSCP requires. WinSCP can create keys for you, but that is outside of this documents scope at the moment.<br />
*Create your PGP keys. I created pgp keys using my workstation, and provided the vendor the public key. I am using the private key with password protection (for transferring the key from my workstation to the server) to decrypt with.<br />
*On the Windows domain I am working in, I created a dedicated user with limited access to run the scheduled job as</div>Michael.mast