Supported Cipher Suites for SFTP in NetSuite 2026.1
NetSuite 2026.1 now supports various cipher suites and host-key types for secure SFTP connections, enhancing data transfer security.
SFTP connections in NetSuite are now fortified with enhanced encryption capabilities. Starting in NetSuite 2026.1, the platform supports a wider range of cipher suites and host key types that ensure secure file transfers. This is crucial for businesses prioritizing data security in their integrations.
Supported Encryption Algorithms
The following encryption algorithms are supported for SFTP connections:
- Bulk-Cipher Algorithms:
- AES-128-CBC
- AES-128-CTR
- AES-128-GCM
- AES-192-CBC
- AES-192-CTR
- AES-256-CBC
- AES-256-CTR
- AES-256-GCM
- ChaCha20-Poly1305
These algorithms utilize Advanced Encryption Standard (AES) in various configurations, providing flexibility depending on the security needs of the server.
Host Key Algorithms
Your SFTP server must also support at least one of the following host key types:
- RSA
- DSA
- ECDSA Managing these cryptographic elements properly is essential for maintaining secure communications.
Authentication Mechanisms
NetSuite accommodates the following authentication methods for SFTP connections:
- Username and password
- Password with SSH key (with or without passphrase)
- SSH host key
When establishing a connection, the host key must be provided, and any changes to the host key require manual management.
Implementation Considerations
For seamless integration with third-party services or data transfers, it is vital to ensure that your SFTP server configurations align with these supported protocols and algorithms. Additionally, verify that any required firewall policies are established through your SFTP provider to avoid connectivity issues.
Using Password GUIDs
To authenticate, use a password GUID generated by a Suitelet via Form.addCredentialField(options). Ensure that the originating credential field contains the SFTP domain as per the configuration parameters.
This method also allows for enhancing security by never exposing credentials in plain text within NetSuite.
Real-World Usage
When utilizing SFTP connections in NetSuite, administrators should audit their server configurations regularly to adapt to any security updates or changes in best practices. Take note:
- Stay Updated: Regularly review and update the supported ciphers and algorithms as listed by your SFTP provider.
- Test Connections: Ensure connections are tested from the NetSuite account to validate configurations before going live.
Who This Affects
- Administrators: Responsible for configuring SFTP settings and monitoring security compliance.
- Developers: Integrating SFTP into application workflows requires an understanding of supported ciphers and authentication methods.
- IT Security Teams: Ensuring robust security protocols are in place for data transfers.
Key Takeaways
- NetSuite 2026.1 enhances SFTP security through multiple supported cipher suites.
- Configuration of host key algorithms is essential for secure connections.
- Proper management of password GUIDs ensures credentials remain confidential.
- Administrators should regularly validate configurations to adapt to evolving security standards.
Frequently Asked Questions (4)
What cipher suites are supported in NetSuite 2026.1 for SFTP connections?
Which host key algorithms must my SFTP server support for compatibility with NetSuite 2026.1?
How do authentication mechanisms work for SFTP connections in NetSuite 2026.1?
What steps can administrators take to maintain secure SFTP connections in NetSuite?
Weekly Update History (1)
Updated Supported Cipher Suites and Host Key Types to include other supported ciphers for SFTP connections.
View Oracle DocsWas this article helpful?