irp clearinghouse - cdn.ymaws.com€¦ · ftp connection to the irp clearinghouse. the intended...

International Registration Plan, Inc.

Phone (703) 963-2326 FAX (703) 831-8757

IRP, Inc. – Official Use Only: Do not share with or forward to additional parties except as necessary to conduct the business for which this document was clearly intended. If in doubt, contact the originator for additional guidance.

IRP Clearinghouse

FTP Connection Instructions

RELEASE 1.2

APRIL 2017

INTERNATIONAL REGISTRATION PLAN, INC.

FTP Connection Instructions Release 1.2


This document was produced by International Registration Plan (IRP), Inc.

No part of this document may be reproduced or transmitted in any form or by any means,

electronic or mechanical, including photocopying, recording, or information storage or retrieval

systems, for any purpose other than the intended use by IRP, Inc., without the express written

permission of IRP, Inc.

© 2017 IRP. All rights reserved.


Copyright © 2017 IRP, Inc. April 2017 1


1. TABLE OF CONTENTS

Contents

1. Table of Contents ................................................................................................................................................. 1

2. Revision Log ......................................................................................................................................................... 2

3. Introduction ......................................................................................................................................................... 2

4. Background .......................................................................................................................................................... 2

5. Support ................................................................................................................................................................. 2

6. Solution Summary ............................................................................................................................................... 2

7. Getting Started ..................................................................................................................................................... 2

8. Detailed Instructions ........................................................................................................................................... 3

8.1 FTP Server Configuration ............................................................................................................................. 3

8.2 Authentication ................................................................................................................................................ 3

8.3 Jurisdiction User Accounts ............................................................................................................................ 3

8.4 Password Security ......................................................................................................................................... 4

8.5 Client Side Software ...................................................................................................................................... 4

9. Client Software Configuration ........................................................................................................................... 4

9.1 Configure FileZilla for SFTP Connection ..................................................................................................... 4

9.2 Configure FileZilla for FTPS Connection ..................................................................................................... 6

9.3 Configure PuttySFTP Client for SFTP Connection ...................................................................................... 10

9.4 Configure CuteFTP Client for SFTP/FTPS Connection .............................................................................. 11




2. REVISION LOG

Revision# Date Change description

1.0 March 2011

New Document

1.1 Sept 2015 Minor changes/edits

1.2 April 2017 Added Connection Name for Data Standardization FTP connection in Section 8.1.

3. INTRODUCTION

The purpose of this document is to provide detailed instructions for establishing a secure FTP connection to the IRP Clearinghouse. The intended audience is jurisdiction network personnel responsible for setting up the environment for transmitting jurisdiction registration data to the IRP Clearinghouse.

4. BACKGROUND

In February 2012, IRP, Inc. awarded a contract for hosting, infrastructure and application maintenance to Celtic Systems. The IRP Clearinghouse will move to a new data center and when moved, the current AAMVAnet connection will be disconnected and discontinued. Jurisdictions currently sending IRP registration data transmittals to the Clearinghouse using FTP will need to establish a new, secure connection directly to the Clearinghouse in the new environment.

5. SUPPORT

IRP Clearinghouse Support – (703) 963-1296 or [email protected]

6. SOLUTION SUMMARY

The standard secure FTP solution for the Clearinghouse uses SFTP protocol. On an exception basis, a jurisdiction can request the use of FTPS protocol if that is the protocol normally implemented in their environment.

7. GETTING STARTED

To get started, please request FTP credentials by sending the following information in an email to [email protected] Jurisdiction Name Contact

Email address Phone (direct line or include extension)

mailto:[email protected]

mailto:[email protected]




Fax Address

Specify on the request if the jurisdiction is requesting an SFTP or FTPS solution.

When your request is received, your account will be set-up and the jurisdiction contact will receive credentials (User/Jurisdiction ID and Password) for accessing the site. Note: The user will be prompted to change the initial password as soon as the user enters the site the first time.

8. DETAILED INSTRUCTIONS

8.1 FTP Server Configuration

Protocol IP / Port

FTP Production Host IP Chftpprod.irpch.org FTP Test Host IP Chftptest.irpch.org FTP Data Standards Chftpdatastandards.irpch.org SFTP port 22 FTPS Explicit port 21 FTPS Implicit port 990

Server Side Software: Operating system: Windows server 2012 GlobalSCAPE EFT Server 6.4.1

8.2 Authentication

Normal authentication is used with password only.

8.3 Jurisdiction User Accounts

There will be one user account per jurisdiction with full permission for the home directory

The jurisdiction user has full control over the home directory

One jurisdiction cannot see other jurisdictions’ directories

Max disk space allowed is 100MB

Maximum one connection per user.

User will be forced to change password after initial log in.




8.4 Password Security

A strong password is required in accordance with the following: 1. Minimum password length is 8 characters 2. Must contain 1 uppercase (A-Z) character 3. Must contain 1 lowercase (a-z) character 4. Must contain 1 numeric (0-9) character

The account will lock out a user for 30 minutes after 5 invalid login attempts over a 5 minute period.

The user is forced to change their first-time password immediately upon first use.

The password does not expire.

The system prohibits reuse of the previous 4 passwords.

8.5 Client Side Software

There is a need to minimize the number of client packages to assure adequate support to the solution. The client software products listed below have been tested in the new environment. Jurisdictions are urged to select one of the products below but can choose other software at the client level if their current environment and support requires a different selection. The connection between the client and server is more dependent on the client network configuration than the client package itself. It is the jurisdiction’s responsibility to configure their network for the correct communication.

Suggested Client Software:

FileZilla (http://filezilla-project.org/download.php?type=server) CuteFTP Pro (http://www.globalscape.com/products/ftp_clients.aspx) Puttyftp (http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html)

9. CLIENT SOFTWARE CONFIGURATION

Note: Each of the screen prints in this section displays an IP address for the Host entry. When configuring the client software, do not use the IP address. Instead, replace the IP address with the associated name shown in section 8.1.

9.1 Configure FileZilla for SFTP Connection

Create a new entry in the site manager using the following information in the General tab: Site name – IRP Inc Host Port -- 22

http://filezilla-project.org/download.php?type=server

http://www.globalscape.com/products/ftp_clients.aspx

http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html




Protocol -- SFTP Login type -- Interactive User Information in the Advanced tab needs to be configured according to the jurisdiction’s network configuration.

Click “Connect”

FileZilla will ask for the user password.




Note: When the user logs into the FTP server for the first time, the FTP server will force the user to change the provided password. In this case FileZilla will ask for user credentials four times. This is due to the enforcement of changing the password for the first login. 9 Current password Current password New password Confirm password

9.2 Configure FileZilla for FTPS Connection

Create new entry in site manager with following information in General tab. Site name – IRP Inc Host Port -- 21 Protocol – FTP Encryption – Require explicit FTP over TLS – Require implicit FTP over TLS Login type -- Interactive User Advanced information need to be configured according to your network configuration. Explicit FTP over TLS




Implicit FTP over TLS




Click “Connect”

Trust the certificate provided




FileZilla will ask for the user password




Note: When the user logs into the FTP server for the first time, the FTP server will force the user to change the provided password. In this case FileZilla will ask for the user credentials four times. This is due to the enforcement of changing the password for the first login. Current password Current password New password Confirm password

9.3 Configure PuttySFTP Client for SFTP Connection

Open putty SFTP client and pass following commands.

To open the connection, provide the current password For first time users: System will ask for password change Enter old password Enter new password Reenter new password




9.4 Configure CuteFTP Client for SFTP/FTPS Connection

Go to Site Manager for adding and managing connections.

Right click on General FTP sites and click on the connection wizard:




Enter the Host IP address or domain name:




Enter USERID/password

Set the default folder of your local system. This is the path to your local machine where you keep the Clearinghouse data files.




To configure SFTP or FTPS, go to properties by right clicking on the connection you just added.




For FTPS:




SFTP




FTPS -Explicit

irp clearinghouse - cdn.ymaws.com€¦ · ftp connection to the irp clearinghouse. the intended...

Documents