Skip to main content
SFTP Management
Michael Stephenson avatar
Written by Michael Stephenson
Updated over 2 months ago

Overview

SFTP Management is a self-service tool that lets you create and manage access to your Element451 SFTP accounts. It gives you the flexibility to control access to your accounts securely and efficiently, all from within your General Settings.

To manage your SFTP accounts, you must be an Element451 administrator or have the SFTP Administrator permission enabled on one of your custom permission groups.

Key Features

  • Two Account Types:

    • Password

    • SSH/RSA

  • Access Control Options:

    • Full Access: Access all directories

    • Directory-Specific Access: Restrict access to a specific directory

  • Audit Logs: Track account activities, including password reveals, instruction sharing, and recipient access to credentials.

  • Multiple Accounts:

    • Create and manage multiple SFTP accounts, each with its own tailored access

Accessing SFTP Management

  1. Click on your avatar in the top right corner of the main navigation menu.

  2. Navigate to General Settings > SFTP Management.


How to Create an SFTP Account

Password SFTP Account

Screenshot of SFPT management interface
  1. Click on the blue “Add SFTP Account" button.

  2. Username: Give your account a username/slug

  3. Type: Select “Password” as your account type.

  4. Generate or Create a Password:

    • Click on the key icon to automatically generate a secure password (recommended).

    • Alternatively, create your own password and confirm it in the “Confirm Password” field.

  5. Directory:

    • Full Access: Leave this field empty if the account needs access to all folders, including the root.

    • Directory: If you wish to restrict a user's access to a specific folder, input the desired path (e.g., folder/subfolder).

  6. Save: Click Save to create the SFTP account.

  7. Share the Configuration (Optional): Once the account is created, you may need to share the login details securely. For detailed steps, refer to the section “How to Share SFTP Configuration” below.

SSH/RSA SFTP Account

  1. Click on the blue “Add SFTP Account" button.

  2. Username: Give your account a username/slug

  3. Type: Select “SSH/RSA” as your account type.

  4. SSH/RSA Public Key: Add your public key

  5. Enter Account Details: Provide a name and any other necessary information.

  6. Directory:

    • Full Access: Leave this field empty if the account needs access to all folders, including the root

    • Directory: If you wish to restrict a user's access to a specific folder, input the desired path (e.g., folder/subfolder)

  7. Save: Click Save to create the SFTP account.

Check out this help article to learn how to generate your own RSA key pair.


Managing Your SFTP Accounts

Once your SFTP accounts are created, they will be displayed in the account listing. From this list, you can view details or delete accounts as needed.

Viewing an Account

Open an account to:

  • See its configuration (server, port, username)

  • Reveal or copy the account password (password accounts)

  • Email configuration and password (password accounts)

  • Access and download the Audit Logs to review account activity

  • Create an SFTP connector for Element451 import/export

Deleting an Account

If you need to change credentials or update or disable access, you must delete the existing account. Once deleted, the account and its credentials will no longer be active.

Before deleting an account, we recommend downloading the audit logs for information retention.


Audit Logs

Tracking Account Activity

Each SFTP account has an attached Audit Log that provides a transparent overview of account activities:

  • Password Reveals: When an internal user views the password.

  • Instruction Sharing: When an internal user sends configuration instructions to a recipient, including the recipient’s email address.

  • Recipient Access: When a recipient views the secure SFTP credentials.

Downloading Audit Logs

You have the ability to download a CSV file containing the audit logs for an SFTP account. This is extremely useful when you need to delete an account as it allows you to preserve and retain the audit logs. To start the download:

  1. Open the SFTP Account

  2. Click the “Download Audit Logs” button in the top right corner.

  3. The download should start immediately.


How to Share SFTP Configuration (Password Accounts)

For added security, password-based SFTP configurations should be shared using the secure send process:

  1. Open the SFTP Account.

  2. Click the “Send Configuration” button in the top right corner.

  3. Enter the recipient’s email address. The credentials will not be shared directly in the email for security reasons.

How does the recipient access the credentials?

  1. The recipient will receive an email with a link to access the secure SFTP credentials. The recipient clicks the link in the email received. The link contained in the email is only active for 72 hours.

  2. A webpage will open, and the recipient can request a Verification Code, which is sent to their email address. When the code is entered, we'll share the SFPT config on-screen, including the password.


Did this answer your question?