Document history for Amazon Transfer Family - Amazon Transfer Family
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

Document history for Amazon Transfer Family

The following table describes the documentation for this release of Amazon Transfer Family.

  • API version: transfer-2018-11-05

  • Latest documentation update: April 12, 2024

Change Description Date
Ability to use a trading partner's self-signed TLS certificate with AS2 message exchange Amazon Transfer Family has added the option to import and use a trading partner's public, self-signed TLS certificate for sending Applicability Statement 2 (AS2) messages to their server over HTTPS . April 12, 2024
Addition of security policies for SFTP connectors Amazon Transfer Family has added security policies for use with SFTP connectors. For details, see Security policies for Amazon Transfer Family SFTP connectors. April 5, 2024
Integrate with Amazon EventBridge Amazon Transfer Family now automatically publishes events to Amazon EventBridge for all file transfer operations. For details, see Managing Transfer Family events using Amazon EventBridge. February 8, 2024
Addition of new security policies Amazon Transfer Family has added new FIPS and non-FIPS security policies. Also, the default security policy assigned to servers is always the latest security policy. For details, see Security policies for Amazon Transfer Family servers. February 5, 2024
Support for static IP addresses for SFTP connectors and AS2 Transfer Family now provides static IP addresses for SFTP connectors and AS2. This enables connection with remote SFTP servers that are secured by IP allowlisting controls. For AS2, we're introducing static IP addresses for asynchronous MDN responses from AS2 servers. January 16, 2024
The user guide has been reorganized to align more closely with the latest version of Amazon Transfer Family. Transfer Family has added multiple features since the guide originated, necessitating a restructuring of the guide. January 3, 2024

Logical directory mappings enhancements

Amazon S3 list performance optimization

Transfer Family now supports logical directory mappings up to 2.1 MB. You can also now declare whether a user mapping is to a file. For more information, see Rules for using logical directories.

When creating or updating a server that uses Amazon S3 for storage, you can now optimize the performance of listing your S3 directories (or folders). For more information, see Configuring an SFTP, FTPS, or FTP server endpoint.

 November 17, 2023

Alternate port for SFTP servers with virtual private cloud (VPC) endpoints

You can now enable an alternate nonstandard port for your SFTP Transfer Family servers that have VPC endpoints. For more information, see Create a server in a virtual private cloud.

 November 17, 2023
Support for SFTP connectors SFTP Connectors extend the capabilities of Amazon Transfer Family to communicate with remote servers both in the cloud and on-premises. For more information, see Send and retrieve files by using an SFTP connector. July 25, 2023

Support for AS2 Basic authentication

Transfer Family now supports using Basic authentication for servers that use the Applicability Statement 2 (AS2) protocol. For more information, see Basic authentication for AS2 connectors.

 June 30, 2023
Support for structured JSON logging

Transfer Family now supports delivering structured JSON logs to Amazon CloudWatch, grouping log steams into custom log groups, and performing common log queries across protocols. For more information, see Amazon CloudWatch logging for Amazon Transfer Family.

 June 24, 2023

Support for multiple methods of authentication

Transfer Family has support for authenticating by using a password, a public/private key pair, or both. This is available for servers that use the SFTP protocol and a custom identity provider. For more information, see Create an SFTP-enabled server.

 May 17, 2023
Support for Pretty Good Privacy (PGP) decryption with files that Transfer Family processes with workflows Transfer Family has built-in support for Pretty Good Privacy (PGP) decryption. You can use PGP decryption on files that are uploaded over SFTP, FTPS, or FTP to Amazon Simple Storage Service (Amazon S3) or Amazon Elastic File System (Amazon EFS). For more information, see Generate and manage PGP keys and Use PGP decryption in your workflow. December 21, 2022
Fully managed support for Applicability Statement 2 (AS2) file transfer protocol with Transfer Family servers You can create servers that use the AS2 protocol for sending and receiving information to and from trading partners who are inside or outside the Amazon environment. For more information, see Configuring AS2. July 25, 2022
Support for display banners when creating a server You can add customized messages when you create servers. You can display a pre-authentication message (all protocols), and a post-authentication message (for FTP and FTPS servers). For more information, see Create an SFTP-enabled server, Create an FTPS-enabled server, or Create an FTP-enabled server. February 17, 2022
Support for Amazon Lambda as an identity provider You can now connect to a custom identity provider using Amazon Lambda with their Transfer Family servers. Previously, you had to supply an Amazon API Gateway URL to integrate a custom identity provider. For more information, see Using Amazon Lambda to integrate your identity provider. November 16, 2021
Support for Managed File Transfer Workflows Managed File Transfer Workflows provide you with post-upload processing abstractions for the common tasks that you currently perform manually. For more information, see Amazon Transfer Family managed workflows. September 2, 2021

AWSTransferLoggingAccessV3 – New policy

Amazon Transfer Family added a new managed policy, AWSTransferLoggingAccessV3, and deprecated the policy AWSTransferLoggingAccessV2.

 June 15, 2021
Support for Amazon Directory Service for Microsoft Active Directory In addition to service managed and custom identity providers, you can now use Amazon Directory Service for Microsoft Active Directory to manage user access for authentication and authorization. For more information, see Using the Amazon Directory Service identity provider. May 24, 2021
New Amazon Web Services Regions Amazon Transfer Family is now available in the Africa (Cape Town) Region. For more information about Transfer Family endpoints, see Amazon Transfer Family endpoints and quotas in the Amazon Web Services General Reference. February 24, 2021
New Amazon Web Services Regions Amazon Transfer Family is now available in the Asia Pacific (Hong Kong) and Middle East (Bahrain) Regions. For more information about Transfer Family endpoints, see Amazon Transfer Family endpoints and quotas in the Amazon Web Services General Reference. February 17, 2021
Support for Amazon EFS as a data store Transfer Family now supports file transfers into and out of Amazon Elastic File System (Amazon EFS). Amazon EFS is a simple, scalable, fully managed elastic NFS file system. For more information, see Configure an Amazon EFS file system. January 06, 2021
Support for Amazon WAF Transfer Family now supports Amazon WAF, a web application firewall that helps protect web applications and API operations from attacks. For more information, see Add a web application firewall. November 24, 2020
Support for multiple security groups in a virtual private cloud (VPC) You can now attach multiple security groups to a server in a VPC. For more information, see Create a server in a virtual private cloud. October 15, 2020
New Amazon Web Services Regions Transfer Family is now available in the Amazon GovCloud (US) Regions. For more information about Transfer Family endpoints for Amazon GovCloud (US) Regions, see Amazon Transfer Family endpoints and quotas in the Amazon Web Services General Reference. For information about using Transfer Family in the Amazon GovCloud (US) Regions, see Amazon Transfer Family in the Amazon GovCloud (US) User Guide. September 30, 2020
A security policy with supported cryptographic algorithms can now be attached to your server You can now attach a security policy that contains a set of supported cryptographic algorithms to your server. For more information, see Security policies for Amazon Transfer Family servers. August 12, 2020
Support for Federal Information Processing Standard (FIPS) endpoints FIPS-enabled endpoints are now available in North American Amazon Web Services Regions. For available Regions, see Amazon Transfer Family endpoints and quotas in the Amazon Web Services General Reference. To enable FIPS for an SFTP-enabled server endpoint, see Create an SFTP-enabled server. To enable FIPS for an FTPS-enabled server endpoint, see Create an FTPS-enabled server. To enable FIPS for an FTP-enabled server endpoint, see Create an FTP-enabled server. August 12, 2020
Username character-length increase and additional allowed characters Usernames can now contain at signs (@) and periods (.), and can be a maximum length of 100 characters. To add a user, see Managing users for server endpoints. August 12, 2020
Support for automatic Amazon CloudWatch logging Amazon Identity and Access Management (IAM) role creation Transfer Family now supports automatic creation of a CloudWatch logging IAM role to view end-user activity. For more information, see Create an SFTP-enabled server, Create an FTPS-enabled server, or Create an FTP-enabled server. July 30, 2020
Amazon Transfer Family now supports Source IP as a factor for authorization. Transfer Family adds support for using end users' source IP addresses as a factor for authorization, enabling you to apply an additional layer of security when authorizing access over Secure File Transfer Protocol (SFTP), File Transfer Protocol over SSL (FTPS), or File Transfer Protocol (FTP). For more information, see Working with custom identity providers. June 9, 2020
Amazon Transfer for SFTP is now Amazon Transfer Family and adds support for FTP and FTPS. You can now use two additional protocols for your users' file transfers: File Transfer Protocol Secure (FTPS) and File Transfer Protocol (FTP). Users can move, run, secure, and integrate FTP over SSL (FTPS) and plaintext FTP based workflows in Amazon, in addition to existing Secure File Transfer Protocol (SFTP) support. April 23, 2020
Support for virtual private cloud (VPC) security groups and Elastic IP addresses You can now create an allowlist for incoming IP addresses using security groups, providing an additional layer of security for servers. You can also associate Elastic IP addresses with your server's endpoint. By doing this, you can enable users behind firewalls to allow access to that endpoint. For more information, see Create a server in a virtual private cloud. January 10, 2020
Support for working in a VPC You can now create a server in a VPC. You can use your server to transfer data over your client to and from an Amazon S3 bucket without going over the public internet. For more information, see Create a server in a virtual private cloud. March 27, 2019
First version of Amazon Transfer Family released. This initial release includes setting up directions, describes how to get started, and provides information on client configuration, user configuration, and monitoring activity. November 25, 2018