Yes, you should send the id_dsa.pub to the windows server. In there, you should somehow associate the key file with the Windows user account you are going to use for SFTP.
Looks like the manufacturer of TitanFTP has written a Quick Start Guide about this:
http://www.southrivertechnologies.com/docs/Quick%20Start%20Guides/Titan%20FTP/QS-Titan_FTP_SFTP_Host_Key_Authentication.pdfSee steps 18-24 of the listed procedure.
Note: The SSH/SFTP protocol includes two kinds of cryptographic keys:
- "Host keys" to allow the client to reliably identify the server he/she is connecting to.
- "User keys" to optionally allow the server to authenticate client users without using passwords.
TitanFTP confuses the issue by calling both kinds of keys "host keys". They are identical in structure, but their purpose is different.
The host key is generated at the server side. Any SSH/SFTP server MUST offer a host key to the client - this is a protocol requirement.
If the client has not connected to this server before, the client usually requires the user to confirm the connection (usually with a friendly message requiring you to confirm the identity of the server you're connecting to), then stores the host key for future use.
If the client has a previously-stored host key for this server, it is compared to the host key sent by the server at the beginning of the connection - and if the keys are different, the client will display a BIG warning message: either the server has been reinstalled or your connection has been diverted to a fake server.
The user keys are generated at the client side and the public half of the key can be sent to the server to allow you to authenticate without passwords, exactly as you've doing now.
If you're connecting from HP-UX to Windows only, you don't need to receive an user key file from the Windows server. The file transfer direction is not important: after the connection is opened, you can use it to both upload & download ("push" and "pull" from the client's point of view) files between your HP-UX client and the Windows server.
But if you need the Windows machine to connect to your HP-UX machine and initiate file transfers, then the Windows machine is acting as a client and HP-UX is the server. In this case, you should create a SSH key for the user running the SFTP commands at the Windows side, and copy the id_dsa.pub to the .ssh/authorized_keys file of the destination user at the HP-UX side. This file can take several keys if necessary; the format is one key per line. The lines may be *very* long.
MK
MK
