Transfer Data Using Cerberus

Introduction

Apex uses a Secure File Transfer Protocol (SFTP) service as our vehicle for sharing data with project partners. Part of the Apex Data ecosystem includes access to our SFTP host, Cerberus. This allows us the flexibility to offer two different options for sharing data with Apex’s servers.

This document will introduce and review both data transfer options offered by Apex. Please contact us with any questions you have about this process and what to expect.

Option Overview

Manual Data Transfer

• Access is provided through an individual user account used to access their user-interface similar to File Explorer

• This option utilizes a single point of contact who is tasked with accessing Cerberus to complete the data transfer for each exchange.

• Accounts are secured with 2-factor authentication.

Automated Data Transfer

• Access is provided through SSH/Secure Shell integrated authentication.

• This option will require IT staff for support and configuration.

• Accounts with this configuration cannot access the Manual Data Transfer user interface.

Instructions

MANUAL DATA TRANSFER

• User accounts are protected with 2-factor authentication (2FA). The use of an authenticator will be required for access to Cerberus.

• The configuration process will include steps to pair your Cerberus account with the authentication application of your choice

GETTING STARTED

1. Contact Apex

   1. Email your assigned Project Support team or apexdatasharing@apexeval.org.  Please include the following information in your email, or have it available for your call.

      1. The first and last name of the point of contact who will be responsible for logging in and completing the data transfer process.

      2. Their email address.

      3. What site(s) they will represent.

   2. An invitation email will be sent to the account owner, and Apex will follow up, providing their account credentials.

2. Cerberus uses 2FA and will require the use of an authentication app. Apex recommends Google Authenticator.

   1. When account owners log in for the first time, they will complete steps to securely link their chosen authenticator with their Cerberus account.

3. Once signed in, users will complete the data transfer as instructed by their program or project coordinator.

   1. Typically, this will involve uploading a file into a destination folder and then confirming the transfer was completed before signing off.

AUTOMATED DATA TRANSFER

• A main point of contact is required to help facilitate the configuration of private and public SSH keys and their ongoing maintenance.

• Apex may need to safe-list your IP address(es) that will connect to Apex’s SFTP.

GETTING STARTED

1. Contact Apex

   1. Email your assigned Project Support team or apexdatasharing@apexeval.org.  Please include the following information in your email, or have it available for your call.

      1. The first and last name of the main point of contact who will be responsible for assisting with the integrated account.

      2. The email address of the main point of contact.

      3. The email address that the main point of contact would like to use for the SSH integration account, if different.

      4. What site(s) the automated account will represent.

      5. If possible in advance, a public SSH key.

   2. An invitation email will be sent to the account email address, and Apex will follow up, providing any additional information necessary to continue.

2. A final confirmation test will be performed to confirm connectivity and integration success.

   1. Apex strongly recommends using non-protected data for this testing phase. A simple text file is sufficient.