Charan Teja Sri Rama (CharanTejaS1426)
Navy Federal Credit Union

Navy Federal Credit Union
CharanTejaS1426 Member since 2020 5 posts
Navy Federal Credit Union
Posted: October 20, 2020
Last activity: December 29, 2020
Posted: 20 Oct 2020 10:09 EDT
Last activity: 29 Dec 2020 16:06 EST

REST Service to update Keystore record (for updating FTP Private Key)

We are integrating with our Enterprise MFT (Managed File Transfer) tool to transfer the files from Azure BLOB (Pega's respository) to On-prem network folder(s). The Standard authentication method used in the integration process is UserID+Password+ClientKey (SSH private key).

Our Organization has policy of rotating SSH keys twice in a year and we are using unique key pair for each environment (DEV/INTG/STAGING/PERF/PROD). We are on Azure Cloud and our Cloud Security policy enforces to use unique key pair for each environment.

At present we have 15 Pega instances (supporting multiple Pega applications) where we need to update the keystore record manually by logging into each Pega instance, this is going to be more laborious work when the number of Pega instances increases.

REST service in Pega platform to update the Keystore record (associated with SSH private key) directly helps us a lot.

The REST service needs to accept file (private key) and keystore password (SSH pass phrase).

Please let me know if there are any alternative ways of automating this process.

***Edited by Moderator Marissa to update Content Type from Idea to Question***
Pega Platform 8.4.2 Security Financial Services Lead System Architect