Stitch Documentation
has moved!

Please update your bookmarks to

If you're not automatically redirected after 5 seconds, click here.

Connecting PostgreSQL via SSH Tunnel

Stitch only supports Postgres versions 8.2 and above. While this isn't something that's strictly enforced, we recommend keeping your version current as a best practice.

Replicating Views
Click here for more info on replicating your views.

SSL & Connecting Postgres RDS
Stitch supports SSL connections and connecting a PostgreSQL-based Amazon RDS instance.

In this article, we'll walk you through connecting your PostgreSQL database to Stitch via an SSH Tunnel. You'll need some tech expertise to complete the setup, so we recommend looping in a developer or a member of your tech team to help out if you haven't done this before.

Connecting a PostgreSQL database is a seven-step process:

  1. Retrieve the Stitch public key
  2. Whitelist the Stitch IP addresses
  3. Create a Linux user for Stitch
  4. Create a Postgres user for Stitch
  5. Enter the connection info in Stitch
  6. Define the Replication Frequency
  7. Select tables and columns to sync

Retrieving the Stitch Public Key

The Public Key is used to authorize the Stitch Linux user. In the next step, we'll create the user and import the key.

To retrieve the key:

  1. On the Stitch dashboard page, click the Add an Integration button.
  2. Click the PostgreSQL icon.
  3. When the credentials page displays, click the Encryption Type menu and select the SSH Tunnel option.
  4. The Public Key will display, along with the other SSH fields.

Leave this page open throughout the tutorial - you'll need it in the next section and at the end.

Whitelisting the Stitch IP Addresses

For the connection to be successful, you must configure your firewall to allow access from our IP addresses. Whitelist the following IPs before continuing onto the next step:


Creating a Linux User for Stitch

If the sshd_config file associated with the server is not set to the default option, only certain users will have server access - this will prevent a successful connection to Stitch. In these cases, it's necessary to run a command like AllowUsers to allow the Stitch user access to the server.

This can be a production or slave machine, as long as it contains real-time (or frequently updated) data. You may restrict this user any way you like as long as it retains the right to connect to the PostgreSQL server.

Note that anything inside square brackets - [like this] - is something you need to define when running the commands yourself.

To create the new user, run the following commands as root on your Linux server:

adduser [stitch username] -p
mkdir /home/[stitch username]
mkdir /home/[stitch username]/.ssh

To ensure the user has access to the database, we need to import the Public Key from the first step into authorized_keys. Copy the entire key into the authorized_keys file as follows:

touch /home/[stitch username]/.ssh/authorized_keys
"< [PASTE KEY HERE] >" >> /home/[stitch username]/.ssh/authorized_keys

To finish creating the user, alter the permissions on the /home/[stitch username] directory to allow access via SSH:

chown -R [stitch username]:[stitch username] /home/[stitch username]
chmod -R 700 /home/[stitch username]/.ssh

In the next step, you'll create a database user for Stitch.

Creating a Stitch Postgres User

Your organization may require a different process, but the simplest way to create this user is to execute the following query when logged into Postgres as a user with the right to grant privileges. This user should also own the schema that Stitch is being granted access to.

CREATE USER [stitch username] WITH ENCRYPTED PASSWORD '[secure password]';
GRANT CONNECT ON DATABASE [database name] TO [stitch username];
GRANT USAGE ON SCHEMA [schema name] TO [stitch username];
GRANT SELECT ON ALL TABLES IN SCHEMA [schema name] TO [stitch username];

Replace [secure password] with a secure password, which can be different than the SSH password. Additionally, make sure you replace [database name] and [schema name] with the appropriate names in your database.

If you want to connect multiple databases or schemas, repeat this process as necessary.

Entering the Connection Info into Stitch

To wrap things up, we need to enter the connection and user info into Stitch. Did you leave the PostgreSQL credentials page open? If not, click the Add an Integration button on the dashboard and then click the PostgreSQL icon. Don't forget to select the SSH Tunnel option from the Encryption Type menu.

  • Integration name: This is the name that will display on the Stitch dashboard for the integration; it’ll also be used to create the schema in your data warehouse.

    For example, the name “Postgres Marketing” would create a schema called postgres_marketing in the data warehouse.
  • Host:, or localhost
  • Port: The PostgreSQL port on your server (5432 by default)
  • Database: This is the default database Stitch will connect to. Don’t worry; we’ll find all databases your user has permissions to, but we need an initial database to complete the connection.
  • Username: The Stitch Postgres user's username
  • Password: The Stitch Postgres user's password
  • Remote Address: The IP address or hostname of the server we will SSH into
  • SSH Port: The SSH port on your server (22 by default)
  • Username: The Stitch Linux (SSH) user's username

In addition, click the Connect using SSL checkbox if you're using an SSL connection.

Defining the Replication Frequency

The Replication Frequency controls how often Stitch will attempt to replicate data from your data warehouse. By default, the frequency is set to 30 minutes, but you can change it to better suit your needs.

When you're finished, click the Save Integration button to complete the setup.

Selecting Tables and Columns to Sync

Now that your PostgreSQL database is connected to Stitch, the next step is selecting the tables and fields you want to sync.


Was this article helpful?
0 out of 0 found this helpful


Questions or suggestions? If something in our documentation is unclear, let us know in the comments!