Linux- and Windows-based SFTP servers are supported.
Jobs can be executed from SFTP sources on the following running environments:
- Trifacta Photon
- HDFS-based Spark, which includes Cloudera and Hortonworks
- Spark on EMR
- Azure Databricks
- Files and folders whose names begin with underscore (
_) are not visible.
- Ingest of over 500 files through SFTP at one time is not supported.
- You cannot run jobs using Avro or Parquet sources uploaded via SFTP.
Binary file types, such as Excel or PDF, or files that require use of the conversion service cannot be imported via SFTP connections.
- You cannot publish compressed Snappy files to SFTP destinations.
- You cannot publish Hyper format to SFTP destinations.
Acquire user credentials to access the SFTP server. You can use username/password credentials or SSH keys. See below.
- Verify that the credentials can access the proper locations on the server where your data is stored. Initial directory of the user account must be accessible.
If preferred, you can use SSH keys to for authentication to the SFTP server.
NOTE: SSH keys must be private RSA keys. If you have OpenSSH keys, you can use the ssh-keygen utility to convert them to private RSA keys.
Whitelist SFTP server
If you are running jobs on EMR or Azure Databricks, you must add the SFTP server to the whitelist of IPs that are permitted to communicate with the cluster. For more information, please see the documentation that is provided with your software distribution.
You must also add the SFTP server to the whiitelist of file storage systems. Details are below.
By default, this connection type is automatically enabled for use.
NOTE: You must provide the protocol identifier and storage locations for the SMTP server. See below.
Configure file storage protocols and locations
The Trifacta platform must be provided the list of protocols and locations for accessing SFTP.
- You can apply this change through the Admin Settings Page (recommended) or
trifacta-conf.json. For more information, see Platform Configuration Methods.
Locate the following parameters and set their values according to the table below:
Parameter Description filestorage.whitelist
A comma-separated list of protocols that are permitted to access SFTP.
NOTE: The protocol identifier
"sftp"must be included in this list.
For each supported protocol, this parameter must contain a top-level path to the location where Trifacta platform files can be stored. These files include uploads, samples, and temporary storage used during job execution.
NOTE: A separate base URI is required for each supported protocol. You may only have one base URI for each protocol.
NOTE: For SFTP, three slashes at the end are required, as the third one is the end of the path value. This value is used as the base URI for all SFTP connections created in Trifacta Self-Managed Enterprise Edition.
The above example is the most common example, as it is used as the base URI for all SFTP connections that you create. If you add a server value to the above URI, you limit all SFTP connections that you create to that specified server.
- Save your changes and restart the platform.
Enforce authentication methods
By default, the Trifacta application enables use of two different authentication mechanisms:
- Basic - use a password to access the SFTP server
- SSHKey - use a public SSHKey and password to access the SFTP server
Along with basic and SSH key, the SFTP servers in your environment may be configured with other authentication methods, and those methods sometimes take precedence. As a result, when using default authentication methods, SFTP connections from the Trifacta platform can fail to connect to the SFTP server.
To eliminate these issues, you can configure the Trifacta application to enforce usage of one of the following authentication schemes. These schemes are passed to the SFTP server during connection time, which forces the server to use the appropriate method of authentication. When the following parameter is specified, SFTP connections can be configured using the listed methods and should work for connecting to the server.
NOTE: Enforcement applies to connections created via the APIs as well. After configuration, please be sure to use one of the enforced authentication methods when configuring your SFTP connections through the application or the APIs.
- To apply this configuration change, login as an administrator to the Trifacta node. Then, edit
trifacta-conf.json. Some of these settings may not be available through the Admin Settings Page. For more information, see Platform Configuration Methods.
Locate the following parameter in the configuration file:
Set the parameter value according to the following:
Preferred authentication method Parameter value Description Basic
Basic password authentication method is used to connect to the SFTP server.
NOTE: You must configure your SFTP server connection in the platform to use the Basic method.
SSH Key authentication method is used.
NOTE: You must configure your SFTP server connection in the platform to use the SSHKey method.
Both methods of authentication are supported.
- Save your changes and restart the platform.
Java VFS service
Use of SFTP connections requires the Java VFS service in the Trifacta platform.
NOTE: This service is enabled by default.
For more information on configuring this service, see Configure Java VFS Service.
Create through application
Any user can create a SFTP connection through the application.
NOTE: Only an administrator can make a connection available for all users.
- Login to the application.
- In the left nav bar, select the Connections icon. See Connections Page.
- In the Connections page, click Create Connection. See Create Connection Window.
- In the Create Connection window, click the SFTP connection card.
Specify the properties for your SFTP server.
Property Description Host
The hostname of the FTP server to which you are connecting. Do not include any protocol identifier (
Port The port number to use to connect to the server. Default port number is
Select one of the following:
basic- authenticate via username and password
SSH Key- authenticate via username and SSH key
User Name The username to use to connect. Password (Basic credential type) The password associated with the username. SSH Key (SSH Key credential type) The SSH key that applies to the username. Test Connection Click this button to test the connection that you have specified. Default Directory Absolute path on the SFTP server where users of the connection can begin browsing. Block Size (Bytes)
Fetch size in bytes for each read from the SFTP server.
NOTE: Raising this value may increase speed of read operations. However, if it is raised too high, resources can become overwhelmed, and the read can fail.
Connection Name The name of the connection as you want it to appear in the application. Description This description is displayed in the application.
For more information, see Create Connection Window.
Create through APIs
- Acquire the vendor and type information. See Connection Types.
Create the connection through the APIs. See https://api.trifacta.com/ee/8.2/index.html#operation/createConnection
This page has no comments.