/support/notes/service/sap_logo.png){kind=logo}
SAP Knowledge Base Article - PublicSymptom
- SFTP integration for SuccessFactors Employee Central cannot be established in DC66 while SSH-RSA is the only supported algorithm for SF SFTP public key authentication.
-
SSH-RSA is prohibited by local (Queensland Government / ASD) security policy, as it is no longer considered secure.
-
ASD-approved cryptographic standards do not permit SSH-RSA, as a result, customer's in DC66 cannot enable SSH-RSA on their SecureTransport system due to regulatory compliance restrictions.
Environment
SAP SuccessFactors HCM Suite
Reproducing the Issue
- Attempt to connect to the server in DC66 using SSH-RSA encryption.
- Observe that the connection succeeds when SSH-RSA is used.
- Remove SSH-RSA and attempt to connect using alternative algorithms such as rsa-sha2-512 or ECDSA.
- Observe that the connection fails as these algorithms are not supported by the current server configuration.
Cause
This is an expected behavior as SHA-256/SHA-512 keys are not supported in the current version of the SFTP server software.
Resolution
The latest version of the SFTP software is planned to be deployed on 1H 2026 release (b2605)
For release timelines, please review SAP SuccessFactors Product Release & Road Map Information.
See Also
- SAP SuccessFactors Product Release & Road Map Information
- SAP SuccessFactors Patches Knowledge Base
- KB Article 2171560 - How to be notified of new or updated SAP Notes or KBAs
- KB Article 3564902 - Security Center - Other Keys - Outdated SHA1 encryption used in key pair
Keywords
Product
SAP SuccessFactors HCM Suite 2511
/support/notes/service/facebook.svg)
/support/notes/service/twitter.svg)
/support/notes/service/youtube.svg)
/support/notes/service/linkedin.svg)
/support/notes/service/instagram2.svg)