C
C
SFTP use Cert's Private Key for Authentication (Windows)
See more SFTP Examples
Demonstrates how to use the private key of a pre-installed certificate (on Windows) for SFTP authentication. The certificate's private key must be marked as "exportable" when originally installed.Chilkat C Downloads
#include <C_CkCert.h>
#include <C_CkPrivateKey.h>
#include <C_CkSshKey.h>
#include <C_CkSFtp.h>
void ChilkatSample(void)
{
BOOL success;
HCkCert cert;
HCkPrivateKey privKey;
const char *privKeyPem;
HCkSshKey sshKey;
HCkSFtp sftp;
success = FALSE;
// This example assumes the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.
cert = CkCert_Create();
// Load the certificate from the Windows certificate store
success = CkCert_LoadByCommonName(cert,"my_cert_common_name");
if (success == FALSE) {
printf("%s\n",CkCert_lastErrorText(cert));
CkCert_Dispose(cert);
return;
}
// Get the private key.
privKey = CkPrivateKey_Create();
success = CkCert_GetPrivateKey(cert,privKey);
if (success == FALSE) {
printf("%s\n",CkCert_lastErrorText(cert));
CkCert_Dispose(cert);
CkPrivateKey_Dispose(privKey);
return;
}
privKeyPem = CkPrivateKey_getPkcs8Pem(privKey);
if (CkPrivateKey_getLastMethodSuccess(privKey) == FALSE) {
printf("%s\n",CkPrivateKey_lastErrorText(privKey));
CkCert_Dispose(cert);
CkPrivateKey_Dispose(privKey);
return;
}
sshKey = CkSshKey_Create();
success = CkSshKey_FromOpenSshPrivateKey(sshKey,privKeyPem);
if (success == FALSE) {
printf("%s\n",CkSshKey_lastErrorText(sshKey));
CkCert_Dispose(cert);
CkPrivateKey_Dispose(privKey);
CkSshKey_Dispose(sshKey);
return;
}
// Connect to an SSH/SFTP server
sftp = CkSFtp_Create();
success = CkSFtp_Connect(sftp,"sftp.example.com",22);
if (success == FALSE) {
printf("%s\n",CkSFtp_lastErrorText(sftp));
CkCert_Dispose(cert);
CkPrivateKey_Dispose(privKey);
CkSshKey_Dispose(sshKey);
CkSFtp_Dispose(sftp);
return;
}
// Authenticate with the SSH server using a username + private key.
// (The private key serves as the password. The username identifies
// the SSH user account on the server.)
success = CkSFtp_AuthenticatePk(sftp,"mySshLogin",sshKey);
if (success == FALSE) {
printf("%s\n",CkSFtp_lastErrorText(sftp));
CkCert_Dispose(cert);
CkPrivateKey_Dispose(privKey);
CkSshKey_Dispose(sshKey);
CkSFtp_Dispose(sftp);
return;
}
printf("OK, the connection and authentication with the SSH server is completed.\n");
// This example is only to show the connection + authentication using a private key associated with a certificate in the Windows certificate store...
CkCert_Dispose(cert);
CkPrivateKey_Dispose(privKey);
CkSshKey_Dispose(sshKey);
CkSFtp_Dispose(sftp);
}