Document history for AWS Transfer Family - AWS Transfer Family

Document history for AWS Transfer Family

The following table describes the documentation for this release of AWS Transfer Family.

  • API version: transfer-2018-11-05

  • Latest documentation update: July 31, 2024

Change Description Date
Moved API Reference into a separate guide To improve the customer experience, the API Reference is now published separately from the user guide. For the separate API reference, see Welcome to the AWS Transfer Family API. July 31, 2024
Ability for SFTP connectors to list remote files and directories Transfer Family has added the ability for our customers to use SFTP connectors to list files stored in remote SFTP servers. For details, see List contents of a remote directory April 23, 2024
Ability to use a trading partner's self-signed TLS certificate with AS2 message exchange AWS Transfer Family has added the option to import and use a trading partner's public, self-signed TLS certificate for sending Applicability Statement 2 (AS2) messages to their server over HTTPS . April 12, 2024
Addition of security policies for SFTP connectors AWS Transfer Family has added security policies for use with SFTP connectors. For details, see Security policies for AWS Transfer Family SFTP connectors. April 5, 2024
Integrate with Amazon EventBridge AWS Transfer Family now automatically publishes events to Amazon EventBridge for all file transfer operations. For details, see Managing Transfer Family events using Amazon EventBridge. February 8, 2024
Addition of new security policies AWS Transfer Family has added new FIPS and non-FIPS security policies. Also, the default security policy assigned to servers is always the latest security policy. For details, see Security policies for AWS Transfer Family servers. February 5, 2024
Support for static IP addresses for SFTP connectors and AS2 Transfer Family now provides static IP addresses for SFTP connectors and AS2. This enables connection with remote SFTP servers that are secured by IP allowlisting controls. For AS2, we're introducing static IP addresses for asynchronous MDN responses from AS2 servers. January 16, 2024
The user guide has been reorganized to align more closely with the latest version of AWS Transfer Family. Transfer Family has added multiple features since the guide originated, necessitating a restructuring of the guide. January 3, 2024

Logical directory mappings enhancements

Amazon S3 list performance optimization

Transfer Family now supports logical directory mappings up to 2.1 MB. You can also now declare whether a user mapping is to a file. For more information, see Rules for using logical directories.

When creating or updating a server that uses Amazon S3 for storage, you can now optimize the performance of listing your S3 directories (or folders). For more information, see Configuring an SFTP, FTPS, or FTP server endpoint.

November 17, 2023

Alternate port for SFTP servers with virtual private cloud (VPC) endpoints

You can now enable an alternate nonstandard port for your SFTP Transfer Family servers that have VPC endpoints. For more information, see Create a server in a virtual private cloud.

November 17, 2023
Support for SFTP connectors SFTP Connectors extend the capabilities of AWS Transfer Family to communicate with remote servers both in the cloud and on-premises. For more information, see Using SFTP connectors and tracking their progress. July 25, 2023

Support for AS2 Basic authentication

Transfer Family now supports using Basic authentication for servers that use the Applicability Statement 2 (AS2) protocol. For more information, see Basic authentication for AS2 connectors.

June 30, 2023
Support for structured JSON logging

Transfer Family now supports delivering structured JSON logs to Amazon CloudWatch, grouping log steams into custom log groups, and performing common log queries across protocols. For more information, see Amazon CloudWatch logging for AWS Transfer Family.

June 24, 2023

Support for multiple methods of authentication

Transfer Family has support for authenticating by using a password, a public/private key pair, or both. This is available for servers that use the SFTP protocol and a custom identity provider. For more information, see Create an SFTP-enabled server.

May 17, 2023
Support for Pretty Good Privacy (PGP) decryption with files that Transfer Family processes with workflows Transfer Family has built-in support for Pretty Good Privacy (PGP) decryption. You can use PGP decryption on files that are uploaded over SFTP, FTPS, or FTP to Amazon Simple Storage Service (Amazon S3) or Amazon Elastic File System (Amazon EFS). For more information, see Generate PGP keys and Use PGP decryption in your workflow. December 21, 2022
Fully managed support for Applicability Statement 2 (AS2) file transfer protocol with Transfer Family servers You can create servers that use the AS2 protocol for sending and receiving information to and from trading partners who are inside or outside the AWS environment. For more information, see Configuring AS2. July 25, 2022
Support for display banners when creating a server You can add customized messages when you create servers. You can display a pre-authentication message (all protocols), and a post-authentication message (for FTP and FTPS servers). For more information, see Create an SFTP-enabled server, Create an FTPS-enabled server, or Create an FTP-enabled server. February 17, 2022
Support for AWS Lambda as an identity provider You can now connect to a custom identity provider using AWS Lambda with their Transfer Family servers. Previously, you had to supply an Amazon API Gateway URL to integrate a custom identity provider. For more information, see Using AWS Lambda to integrate your identity provider. November 16, 2021
Support for Managed File Transfer Workflows Managed File Transfer Workflows provide you with post-upload processing abstractions for the common tasks that you currently perform manually. For more information, see AWS Transfer Family managed workflows. September 2, 2021
Support for AWS Directory Service for Microsoft Active Directory In addition to service managed and custom identity providers, you can now use AWS Directory Service for Microsoft Active Directory to manage user access for authentication and authorization. For more information, see Using AWS Directory Service for Microsoft Active Directory. May 24, 2021
New AWS Regions AWS Transfer Family is now available in the Africa (Cape Town) Region. For more information about Transfer Family endpoints, see AWS Transfer Family endpoints and quotas in the AWS General Reference. February 24, 2021
New AWS Regions AWS Transfer Family is now available in the Asia Pacific (Hong Kong) and Middle East (Bahrain) Regions. For more information about Transfer Family endpoints, see AWS Transfer Family endpoints and quotas in the AWS General Reference. February 17, 2021
Support for Amazon EFS as a data store Transfer Family now supports file transfers into and out of Amazon Elastic File System (Amazon EFS). Amazon EFS is a simple, scalable, fully managed elastic NFS file system. For more information, see Configure an Amazon EFS file system. January 06, 2021
Support for AWS WAF Transfer Family now supports AWS WAF, a web application firewall that helps protect web applications and API operations from attacks. For more information, see Add a web application firewall. November 24, 2020
Support for multiple security groups in a virtual private cloud (VPC) You can now attach multiple security groups to a server in a VPC. For more information, see Create a server in a virtual private cloud. October 15, 2020
New AWS Regions Transfer Family is now available in the AWS GovCloud (US) Regions. For more information about Transfer Family endpoints for AWS GovCloud (US) Regions, see AWS Transfer Family endpoints and quotas in the AWS General Reference. For information about using Transfer Family in the AWS GovCloud (US) Regions, see AWS Transfer Family in the AWS GovCloud (US) User Guide. September 30, 2020
A security policy with supported cryptographic algorithms can now be attached to your server You can now attach a security policy that contains a set of supported cryptographic algorithms to your server. For more information, see Security policies for AWS Transfer Family servers. August 12, 2020
Support for Federal Information Processing Standard (FIPS) endpoints FIPS-enabled endpoints are now available in North American AWS Regions. For available Regions, see AWS Transfer Family endpoints and quotas in the AWS General Reference. To enable FIPS for an SFTP-enabled server endpoint, see Create an SFTP-enabled server. To enable FIPS for an FTPS-enabled server endpoint, see Create an FTPS-enabled server. To enable FIPS for an FTP-enabled server endpoint, see Create an FTP-enabled server. August 12, 2020
Username character-length increase and additional allowed characters Usernames can now contain at signs (@) and periods (.), and can be a maximum length of 100 characters. To add a user, see Managing users for server endpoints. August 12, 2020
Support for automatic Amazon CloudWatch logging AWS Identity and Access Management (IAM) role creation Transfer Family now supports automatic creation of a CloudWatch logging IAM role to view end-user activity. For more information, see Create an SFTP-enabled server, Create an FTPS-enabled server, or Create an FTP-enabled server. July 30, 2020
AWS Transfer Family now supports Source IP as a factor for authorization. Transfer Family adds support for using end users' source IP addresses as a factor for authorization, enabling you to apply an additional layer of security when authorizing access over Secure File Transfer Protocol (SFTP), File Transfer Protocol over SSL (FTPS), or File Transfer Protocol (FTP). For more information, see Other custom identity provider options. June 9, 2020
AWS Transfer for SFTP is now AWS Transfer Family and adds support for FTP and FTPS. You can now use two additional protocols for your users' file transfers: File Transfer Protocol Secure (FTPS) and File Transfer Protocol (FTP). Users can move, run, secure, and integrate FTP over SSL (FTPS) and plaintext FTP based workflows in AWS, in addition to existing Secure File Transfer Protocol (SFTP) support. April 23, 2020
Support for virtual private cloud (VPC) security groups and Elastic IP addresses You can now create an allowlist for incoming IP addresses using security groups, providing an additional layer of security for servers. You can also associate Elastic IP addresses with your server's endpoint. By doing this, you can enable users behind firewalls to allow access to that endpoint. For more information, see Create a server in a virtual private cloud. January 10, 2020
Support for working in a VPC You can now create a server in a VPC. You can use your server to transfer data over your client to and from an Amazon S3 bucket without going over the public internet. For more information, see Create a server in a virtual private cloud. March 27, 2019
First version of AWS Transfer Family released. This initial release includes setting up directions, describes how to get started, and provides information on client configuration, user configuration, and monitoring activity. November 25, 2018