SFTP Gateway Support

3.0

Configure System Settings Using UI

Overview

This document covers the Settings page in the admin web UI.

On the Settings page, you can:

  • Manage admin web users
  • Configure Cloud connections (these define an blob container destination, and related settings)
  • Backup and Recovery

You can navigate to it by clicking on Settings in the top nav menu.

System settings

Admin Users

Admin Users

The admin users can log into the admin web interface and manage users connections and folders.

  1. Add User will open a new editable row in the Admin user table.

  2. Username Required username must be unique among admin users.

  3. Email Address (Optional) email address associated with the admin user.

  4. One Time Password sets a temporary password for the admin user, and they will be forced to reset the password when they log into the web ui for the first time. Can also be used to reset an admin's password.

  5. Status allows you to enable or disable the admin use. Disabled user will not be allowed to login to the admin web ui.

  6. Confirm saves the admin user.

  7. Cancel will close the row without saving.

  8. Edit User will allow make the table row editable to update an admin user.

  9. Delete User removes the admin user.

Cloud Connections

A Cloud Connection defines a blob container destination, and its related settings.

Here is an example of a Cloud Connection:

  • Blob container: https://bryce.blob.core.windows.net/vm310-test
  • Cloud Connection Credentials: Uses the instance profile credentials or the storage accounts connection string

Once a Cloud Connection is defined, you can start creating Folders (every folder must point to a Cloud Connection).

You can point multiple Folders to a single Cloud Connection. This way, the Cloud Connection becomes a single point of change (e.g. you need to rotate an azure Access key).

Click on Create azure Connection, and you will see this page:

Cloud Connection

Fill out the following fields:

Connection Name:

A name you define in order to refer to this Cloud Connection.

Cloud Connection Notes:

Optional field for providing more context about this Cloud Connection.

blob container URL:

Enter the Blob container name. Remember to follow the standard Blob container naming convention:

  • Has to be globally unique (cannot conflict with Blob containers in other azure accounts)
  • Lowercase letters (no uppercase allowed), numbers, and hyphens
  • Must have fewer than 63 characters
  • Only include the Blob container (i.e. don't include the folder path)

Region:

The azure region in which the Blob container is located. If left blank the region of the SFTP Gateway server will be used.

Cloud Connection Credentials:

The Use instance profile credentials option leverages the IAM permissions on the VM instance. This is the recommended approach, because the access key credentials are handled transparently, and rotated for you automatically.

If you want to restrict blob container permissions on a per-user basis, select the Use unique credentials option. You can set azure Access Key credentials on the Cloud Connection. And then each SFTP can have their own dedicated Cloud Connection.

Backup & Recovery

Backup & Recovery

The backup and recovery section and be used to export/import the SFTP users, admin user, folders, and cloud connections of your SFTP Gateway server in a flat YAML backup file. This backup file can that be used to restore your server in the event of failure or migration to a new server.

  1. Export will download all of your users, folders, and cloud connections into a yaml file with the name sftpgw-backup-<date-time>.yaml

  2. File Selector allows you to browse your file system for a specific backup file.

  3. Import will import the file and then display a number of status messages related to the imported items.

Folders in SFTP GatewayNext