Sample code for 30+ languages & platforms
Delphi DLL

SFTP use Cert's Private Key from PFX (.pfx/.p12)

See more SFTP Examples

Demonstrates how to use the private key associated with a certificate from a .pfx/.p12 file.

Chilkat Delphi DLL Downloads

Delphi DLL
uses
    Winapi.Windows, Winapi.Messages, System.SysUtils, System.Variants, System.Classes, Vcl.Graphics,
    Vcl.Controls, Vcl.Forms, Vcl.Dialogs, Vcl.StdCtrls, SshKey, PrivateKey, Cert, SFtp;

...

procedure TForm1.Button1Click(Sender: TObject);
var
success: Boolean;
cert: HCkCert;
pfxFilepath: PWideChar;
pfxPassword: PWideChar;
privKey: HCkPrivateKey;
privKeyPem: PWideChar;
sshKey: HCkSshKey;
sftp: HCkSFtp;

begin
success := False;

// This example assumes the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

cert := CkCert_Create();

pfxFilepath := 'qa_data/pfx/my.pfx';
pfxPassword := 'secret';

// A PFX typically contains certificates in the chain of authentication.
// The Chilkat cert object will choose the certificate w/
// private key farthest from the root authority cert.
// To access all the certificates in a PFX, use the 
// Chilkat certificate store object instead.
success := CkCert_LoadPfxFile(cert,pfxFilepath,pfxPassword);
if (success = False) then
  begin
    Memo1.Lines.Add(CkCert__lastErrorText(cert));
    Exit;
  end;

// Get the private key.  
privKey := CkPrivateKey_Create();
success := CkCert_GetPrivateKey(cert,privKey);
if (success = False) then
  begin
    Memo1.Lines.Add(CkCert__lastErrorText(cert));
    Exit;
  end;

privKeyPem := CkPrivateKey__getPkcs8Pem(privKey);
if (CkPrivateKey_getLastMethodSuccess(privKey) = False) then
  begin
    Memo1.Lines.Add(CkPrivateKey__lastErrorText(privKey));
    Exit;
  end;

sshKey := CkSshKey_Create();
success := CkSshKey_FromOpenSshPrivateKey(sshKey,privKeyPem);
if (success = False) then
  begin
    Memo1.Lines.Add(CkSshKey__lastErrorText(sshKey));
    Exit;
  end;

// Connect to an SSH/SFTP server
sftp := CkSFtp_Create();
success := CkSFtp_Connect(sftp,'sftp.example.com',22);
if (success = False) then
  begin
    Memo1.Lines.Add(CkSFtp__lastErrorText(sftp));
    Exit;
  end;

// Authenticate with the SSH server using a username + private key.
// (The private key serves as the password.  The username identifies
// the SSH user account on the server.)
success := CkSFtp_AuthenticatePk(sftp,'mySshLogin',sshKey);
if (success = False) then
  begin
    Memo1.Lines.Add(CkSFtp__lastErrorText(sftp));
    Exit;
  end;

Memo1.Lines.Add('OK, the connection and authentication with the SSH server is completed.');

// This example is only to show the connection + authentication using a private key associated with a certificate in the Windows certificate store...

CkCert_Dispose(cert);
CkPrivateKey_Dispose(privKey);
CkSshKey_Dispose(sshKey);
CkSFtp_Dispose(sftp);

end;