DaFIS Feeds - Secure File Transfer
Due to
UCD Cyber-Safety policy requirements, we must discontinue use of the FTP protocol for receiving DaFIS batch feed files.
Impact
- New server name for receiving DaFIS feed files
- You must establish a new login ID on our server to send your files
- You must use secure FTP (aka SFTP or scp) to transmit your files
- The file naming conventions for batch feed files now include a timestamp
- Feeds from non-UCD IP locations need to contact us about firewall rules
- The processing days and run times will not change
Change Summary
| |
Now |
Legacy |
| Drop-off Host Name |
fis-depot.ucdavis.edu |
fis-gle.ucdavis.edu |
| Allowable protocols |
SSH - SFTP, SCP |
FTP, SSH |
| Login and account contact information |
Renew now, review annually
Technical and business contact information required |
One-time setup
Technical or business contact information required |
| File Naming Convention |
type.origination.timestamp
Example: journal.BB.200802101342 |
type.origination
Example: journal.BB |
| Processing Days and Run Times |
No changes |
|
| File Content Format |
No changes |
|
Making the Change
- You will receive an e-mail message with an account request form. The form will be pre-initialized with your new account name. Complete the form and return by e-mail; also mail a paper copy of the form with your signature to the address listed on the form.
- After you have completed and returned the account form, you will be contacted to set up an initial password - typically within two business days.
- You must use secure FTP (aka SFTP or scp) to transmit your files.
- Follow the instructions below to set up your new account and the secure file transfer method. For manual file transfers, you may use an interactive/GUI tool. For automated/scripted file transfers, SSH key exchange should be used.
- When setup is successful, begin using the new fis-depot file drop-off method to send your DaFIS feeds.
- Notify us by e-mail so that we can disable your legacy FTP account.
Other Notes
| Account setup |
- We will proactively contact you by sending an e-mail to the feed notification e-mail address for each feed/origination code. If you have not received a form by e-mail, you can contact us at dafisfeeds@ucdavis.edu to request the form.
- We will designate the account name for your new account.
- We will ask for both technical and business contacts in your department.
- We will ask you to renew your account and verify technical and business contacts on an annual basis.
|
| Firewalls |
- If you are sending your file from outside of the UC Davis IP address space, let us know. We will need a add a rule in our firewall to allow your SSH connection. Provide us with the IP address you will be sending the file from.
- For your own firewall rules, allow port 22 (SSH) outgoing from your server to fis-depot.ucdavis.edu
|
| SFTP |
- Low cost (through campus software licensing) and open source tools are available.
- Files can be sent manually using an interactive/GUI tool.
- For automated/scripted file transfers, SSH key exchange should be used.
- Secure FTP runs over the SSH protocol, port 22.
|
| File Naming Convention |
- The old file naming convention did not require a timestamp in the file name. This has been problematic for feeds processed on a daily basis - only one feed can be processed per day. The new file naming convention allows multiple feeds to be stored and processed for each run. You may continue to use the legacy file naming convention, but no special runs will be offered to compensate due to the inability to store two files under the old file naming convention.
|
Acquiring Software
Application Configuration and Usage Examples
| Application |
Interactive |
Scripted |
| Putty: psftp.exe |
|
|
| Putty: pscp.exe |
|
|
| SecureFX |
|
|
| SFTPDrive |
|
|
| SFTP |
|
|
Contact Information
Please direct any questions and correspondence regarding DaFIS feeds and this change to
dafisfeeds@ucdavis.edu.
