![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(131.20000000000002, 86%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELM%3C/text%3E%3C/svg%3E)
Azure Data Factory
An Azure service for ingesting, preparing, and transforming data at scale.
Azure Data Factory’s SFTP linked service supports only RSA/DSA OpenSSH private keys. ECDSA OpenSSH keys are not supported for SFTP authentication in ADF.
From the SFTP connector documentation:
- The SFTP connector supports an RSA/DSA OpenSSH key.
- The key file content must start with
-----BEGIN [RSA/DSA] PRIVATE KEY-----. - If the private key file is in PPK format, it must be converted to OpenSSH format (for example, using PuTTY tools).
Because of this limitation, an SFTP linked service in ADF cannot be configured to authenticate with an ECDSA OpenSSH key. To meet a strict ECDSA-only security requirement, an alternative integration approach outside ADF’s native SFTP connector would be required (for example, a custom process that supports ECDSA and then stages data where ADF can read it), but that is not supported directly by the SFTP linked service.
Key configuration options that are supported in ADF SFTP linked services:
-
userName: SFTP user. -
privateKeyPathorprivateKeyContent: RSA/DSA OpenSSH private key only. -
passPhrase: Optional, if the private key is encrypted.
There is no documented procedure to enable ECDSA keys with the built‑in SFTP connector; only RSA/DSA keys are supported.
References: