Creating and Managing SFTP Users

Administrators can add and manage users who have SFTP only access. For platform user management, see: Creating Additional Users.

To create a new SFTP only user, use the command:

user sftp add <username>

Note

The <username> text needs to follow the rules below:

  • starts with letter (a-z/A-Z)

  • followed by one or more of:

    • letters (a-z/A-Z)

    • digits (0-9)

    • full-stop (.)

    • underscore (_)

    • dash (-)

Add a username and password. See Password Strength Rules.

The system will create a user with the provided name and password provided, with the following restrictions:

  • the system can only be accessed by SFTP

  • user access is restricted to the platform home/ directory only

  • the SFTP user will have a SSH key attached.

  • only the administrator can change the SFTP only user password

To attach a SSH key to the SFTP user:

  1. Copy the SSH public key for the user onto the system

  2. Run user addkey <username> <keyfile> to attach the key to the user

See also: Adding a Key for Automatic User Login.

To change the SFTP user password:

user sftp password <username>

To remove the SFTP user:

user del <username>

SFTP users are listed under the sftp-only-users group when running the user list command.

An SFTP only user can also be added without a password. This option can be used for an SFTP implementation that uses a key only (no password):

user sftp add_nopass