While Slate supports retrieving files from a remote SFTP server, this practice is generally discouraged because the import process will fail if the remote SFTP server becomes unavailable for any reason, such as during a network connectivity or maintenance issue. All imports should be sent to the Technolutions SFTP servers, where we provide high availability and where uploads can take place at any time. Imports from a remote host also do not use certificate-based authentication that provides the highest level of security, and only password authentication is used. We strongly encourage using best practices for the import process, but do also support pulling a file from a remote SFTP server if required by your business process.

🔔 Important!

Using basic FTP is highly discouraged because it is inherently insecure. It does not encrypt data during transfer, and all data is sent in clear-text format.

The outbound connections initiated from the IP addresses provided in the Outbound Networks Knowledge Base article should be allowed.

Step 1: Creating a remote service account user

The service account that you create stores the SSH Private Key used to import files from a remote server using the User ID for this account.

🔑 Required Permission: Security Administrator

1. Go to Database → User Permissions

2. Select New User.

3. Configure the following settings:

   • First Name, Last Name, Preferred Name: Since this is a service account, provide a recognizable name that clearly states that this is a service account, rather than using an existing Slate user’s name.

   • Email: Provide an email address for a real user who will receive email notifications for this service account.

   • User Type: Service Account (Remote)

   • User ID: Enter an appropriate user ID. This ID will also be used on the remote system.

   • SSH Private Key: The service account requires an SSH key. If you do not already have a key pair to use, you can use an SSH key generator, such as the one provided here. Note that the corresponding public key must be installed on the remote server for this account’s User ID to access it.

   • Active: Select the checkbox for Enable account for access.

   • Expires After: If this account is temporary, you can set an expiration date for it. Select the field, and a date picker appears.

4. Select Save.

The SSH Private Key should be an RSA key of at least 2048 bits and be saved without a passphrase.

In addition, the private key should include the wrapper comments as shown in this example:

The private key in this example has been shortened for illustrative purposes. If you’re using PuTTYgen to generate a key, use the Conversions → Export OpenSSH Key to format the newly generated Private Key correctly. Save the OpenSSH Key without a passphrase by ignoring PuTTYgen's warnings.

Step 2: Scheduling the import

1. Go to Database → Source Formats.

2. Select the source format that you will be using to import data from the remote server.

3. Select Edit.

4. Select the Import Automation tab.

5. Enter the following configurations:

   • Import Path/Mask: This defines the location and the file name on the remote sftp server. For the path, provide a string with the remote path on the server along with the name of the file.

   • Import Remote Server: Enter the protocol, username, password, and hostname (for example, sftp://remoteuser:mypasswordthatshouldbecomplex@ft.technolutions.net).

     • The protocol should be sftp for SFTP connections (recommended), ftps for FTPS connections, ftpes for FTPES connections, or ftp for insecure FTP connections. Note: If you must use FTP, we highly recommend using PGP encryption.

     • The username must match the user name in the remote system.

     • The password must be the password that the remote system expects for the user name.

     • The hostname is the remote server address.

     • You can specify a port number. For example: sftp://remoteuser:mypasswordthatshouldbecomplex@ft.technolutions.net:22

   • Import Frequency: Provide the time, in minutes, for the import to repeat.

6. Select Save.

⭐ Best Practice

Use date and time variables to prevent file name errors. If you’re downloading the file from a directory called Files on the remote server, and the file name should be test%FT%T.txt, enter /Files/test%FT%T.txt. Path names on many servers, including Unix or Linux servers, are case-sensitive.