AWS Transfer for SFTP
User Guide

Server Configuration

When you create a new SFTP server you can assign a custom hostname, as well as enable Amazon S3 event logging using the Amazon CloudWatch service. These are optional assignments, and should you desire to either change an SFTP server's DNS or logging configuration you can do so later from within the Edit Configuration screen.


You cannot change the Identity Provider type once you create a server. To change the identity provider you will need to delete the server and create a new one with the desired Identity provider option.

To edit an SFTP server's configuration

  1. On the Server Configuration screen, choose Edit to open the Edit Configuration page shown following.

  2. On the Servers page, choose the SFTP server whose configuration you want to edit by choosing the check box next to its name.

  3. Choose Edit to open the Edit Configuration page shown following.

  4. (Optional) For Custom hostname, choose from None, Amazon Route 53 alias, or Other DNS provider.

    If you want to use a custom hostname that you have registered, select either Route 53 DNS alias, or Other DNS. This specifies the name resolution method desired to associate with your SFTP server's endpoint. An example of a custom domain would be A custom hostname uses a DNS name that you provide and a DNS service can resolve. You can use Route 53 as your DNS resolver, or use your own DNS service provider. To learn how the service uses Route 53 so traffic from your custom domain is routed to the SFTP endpoint, see Working with Custom Host Names.

    Amazon Route 53 is an AWS DNS service, but you can use a DNS service provider of your own choosing.

  5. Choose an AWS Identity and Access Management (IAM) role for Logging role that enables CloudWatch logging of your SFTP user activity, if desired.

    For more information about setting up the Logging Role, see Monitoring Usage.

  6. Choose Save to save your configuration.