A warning message is shown when opening an ssh session:
 

Warning: Permanently added the ecdsa-sha2-nistp256 host key for IP address '1.1.1.11:22' to the list of known hosts

• Advanced Server Access (ASA)
• Okta Privileged Access (OPA)
• sft ssh

The access address can be set to a DNS name in the /etc/sft/sftd.yaml file. This is often a requirement for connectivity.
 

Example of a server and the access_address is set to "test" below: 

HOSTNAME                       OS_TYPE    PROJECT_NAME    ID                       ACCESS_ADDRESS     
AWS-RHEL8                      linux      Lab             *******************      test 

There are two options to resolve this issue:

1. System-Wide

On the client, set CheckHostIP to the no option in /etc/ssh/ssh_conf, and the warning will not be displayed. The default option is set to yes.

2. A Users Config

This can also be configured in $HOME/.ssh/config

More information about the configuration can be found with the following command: man ssh_config

CheckHostIP

If this flag is set to ''yes'', ssh(1) will additionally check the host IP address in the known_hosts file. This allows ssh to detect if a host key was changed due to DNS spoofing. If the option is set to ''no'', the check will not be executed. The default is ''yes''.