SFTP (and FTPS) protocol support for Azure Files
Exposing the SFTP protocol would facilitate a bunch of scenarios where today 2 VMs (with all the management overhead that implies) are required.
Thanks for the feedback! We are interested in collecting feedback on this request – please vote for it if this is something you like to see.
We’re also interested in learning more what people want to use the SFTP/FTPS for and which protocol they prefer. Please feel free to leave us a comment letting us know more detail!
Program Manager, Azure Files
Chris Butler commented
Our web application has integrations with a number of third party systems who use both SFTP and FTPS to transfer files to and from our service. Being able to offer these third parties direct access to a storage container without having to manage our own VM in the middle would obviously make our lives easier!
While Microsoft reviewing AWS already has an offering https://aws.amazon.com/blogs/aws/new-aws-transfer-for-sftp-fully-managed-sftp-service-for-amazon-s3/
Samuel J commented
SFTP and FTPS support is going to be critical for our application to integrate with enterprise platforms such as SAP, SuccessFactors, Workday, etc. Trying to get access to the API on a customer's instance (if it has one) is a nightmare. From what we've seen in the field, SFTP or FTPS file drop (depending on platform) is by far the preferred method used by integrators and analysts in these ecosystems.
To date we've managed to dodge provisioning any servers (and all the management and security issues that entails), but if Azure isn't able to close this feature gap soon then we'll have no choice. This would undermine Azure's value offering for us. Makes AWS start to look more appealing...
Anthony D. commented
Would like to replace public facing SFTP servers that we use to send data feeds to customers and receive data from vendors with a light-weight infrastructure solution. Currently we need to provision servers just to set up the SFTP software and make that available. In this day and age of cloud services, this seems like an awful waste of compute power.
SFTP is bread and butter for most businesses (read essential). I've been saying this for years to Microsoft / Azure teams but as someone said below falls on deaf ears. Anyhow Amazon now have a service for this - AWS Transfer for SFTP - for those wanting a PaaS / managed SFTP solution. Links to S3 storage bucket, users can be permission-ed down. Haven't looked at Amazon for a while but there are lots of new services its worth having another look.
The 2nd highest voted feature still under review, seriously, what is the point of this feedback if it falls on death ears. Will Gries - bueller bueller
Jeevan S commented
Hi, Developing an application to accept files over the SFTP protocol and deploying them over a cluster of VM's is surely an alternative. But getting the application to be HIPAA and HITRUST compliant is another (let alone the management overhead of the VM)
Assuming the Azure SFTP service would provide the compliance and sign the associated BAA.
So UP voting this idea proposed by Vinncent
Rich Millee commented
This could be such a quick win for Azure Storage. Account control through AZ AD, AIP, compliance requirements, and the list could go on and on. Make our lives easier!
Looks like the response from Will Gries outdates the response from CHEEKATLAPRADEEP-MSFT
on the thread reference by Jeroen H.. So I am keeping my hopes up on this..
Infact I think the Azure AD security for file shares is a step closer to the SFTP enablement on Azure Files
I have also reached out to Azure support and will gries on twitter to see if they can comment on this soon
Jeroen H commented
NOTE: Apparently the Microsoft Storage team lives in its own world and considers the industry standard SFTP a legacy protocol so don't hold your breath :(.
How can I put politely what an absurd, almost obscene, position that is. Particularly in view of the 3000 votes here that should have given them an idea, or else just a quick look at the SFTP page on Wikipedia.
Jeroen H commented
Hi Will Gries,
Could you please give us an update?
Thanks in advance,
Carlos Capellan commented
Four words: FEATURE PARITY WITH AWS
I am using AWS Transfer for SFTP right now (with a Lambda function triggered by S3 object creation) ONLY because it doesn't exist in Azure yet.
Managed SFTP is just essential. Trading partners are always wanting to exchange data over SFTP. I have to set up so much infrastructure to support what should be a service like the one Amazon just released for S3. Then, should be able to have a new file trigger for an Azure Function from the Storage for automation
Wayne Hing commented
Ability to SFTP exposing from any level down of the tree not only at top level.
Hello , im in the process of building a cloud native workflow engine, Azure Function based, that receives files into its ingestion pipeline VIA sftp. And as the poster said above it would be nice to be able to trigger a Azure Function invocation from file drop from SFTP. And that would be without to standup VMs running some SFTP appliance, writing CLI code the watch and wait on the event and then trigger the Azure Function. Any info on approach would be great. Of course a seamless Function Trigger would be great.
Andrew Fitzgerald commented
As a workaround there is an SFTP server in the Azure marketplace - https://azuremarketplace.microsoft.com/en-us/marketplace/apps/cloud-infrastructure-services.sftp-2016
There is a step by step guide on how to deploy their SFTP VM into your Azure tenant - https://cloudinfrastructureservices.co.uk/how-to-setup-sftp-server-2016-in-azure
Yes. We need native support from Azure on this front.
Why should we invest in a VM, for such a small item.
Sanjay R commented
"Management overhead" is real. We could use only one service instead of the three VMs we use today and increasing, just for ftp. Also, sharing data among these ftp servers is a pain as for some reason FileZilla server doesn't recognize drives made of Azure File System. A service like this would be a boon.
Jamie Thomson commented
We are implementing this using blobfuse to linux mount it and then generic ftp server software on the linux machine.