Demiton Logo
Demiton

Connector Guide: ANZ Transactive Host-to-Host

Setting up the ANZ Transactive Global (H2H) connector with mandatory PGP encryption for cross-border and domestic payment files.

The Connectivity Model

Demiton connects to ANZ via the Transactive Global Host-to-Host gateway. This is ANZ's institutional-grade channel.

Critical Security Requirement: ANZ strictly enforces PGP (Pretty Good Privacy) encryption at the payload level. It is not enough to secure the tunnel (SFTP); the file inside the tunnel must also be encrypted. Demiton handles this encryption/decryption automatically in ephemeral memory.

Phase 1: Service Activation

  1. Contact your ANZ Implementation Manager.
  2. Request "Transactive Global Host-to-Host SFTP" access.
  3. File Format: Confirm you will be sending ABA (Standard 13) or ISO 20022 (pain.001) files.
  4. PGP Requirement: Inform them you will be using a Self-Managed PGP Keypair (Generated by Demiton).

Phase 2: Double-Key Exchange

ANZ requires two distinct key exchanges.

1. Transport Layer (SSH)

  • Action: Send the Demiton SSH Public Key to ANZ.
  • Purpose: Allows us to open the door to their SFTP server.

2. Payload Layer (PGP)

  • Action: Navigate to Demiton > Settings > Security > PGP Keys.
  • Download: The demiton_payload_encryption.asc (Public PGP Key).
  • Send: Email this .asc file to the ANZ Security Team.
  • Receive: ANZ will send you their Public PGP Key. Upload this to Demiton so we can encrypt files intended for their eyes only.

Phase 3: Directory Mapping

ANZ uses a specific "Division" logic for folders. You will likely be assigned a structure similar to:

  • Upload: /ANZ/AU/PAYMENTS/IN
  • Download: /ANZ/AU/REPORTS/OUT

Note: Demiton's ANZ Adapter will attempt to auto-discover these paths, but have your "Connectivity Specification Sheet" ready.

Phase 4: Configure the Universal Adapter

  1. Log in to Demiton.
  2. Go to Connectors > Add Connector.
  3. Select ANZ Transactive.
  4. Host: sftp.anz.com (Pre-filled).
  5. Username: Your H2H User ID (Provided by ANZ).
  6. PGP Signing: Toggle Enabled (Required).
  7. Encryption Key: Select the ANZ Public Key you uploaded in Phase 2.
  8. Click Test Connection.

Validation: Demiton will upload a signed, encrypted test packet. If ANZ can decrypt it and acknowledge receipt, the connector will move to "Active" status.