Setting Up Secure FTP User Accounts

This topic does not apply to Oracle Cloud at Customer.

You use the secure FTP (SFTP) user accounts to sign in to the SFTP server so that you can perform FTP operations related to your Oracle Cloud service.

Topics:

About the Predefined SFTP User Accounts

Oracle Cloud automatically creates the necessary SFTP user accounts for you. Each account has a first name, a last name, an email address, and a user name automatically generated by Oracle Cloud. You can’t change this information. Some cloud services do not use the Service SFTP account for any operations. For example, Oracle CRM Cloud Service does not use the Service SFTP account because it has a native file import and export process that works over HTTP.

To activate the SFTP user accounts, an identity domain administrator must sign in to Infrastructure Classic Console or Applications Console and configure the password for each SFTP user account.

The following table describes each SFTP user account and when you use it.

SFTP Account	When Account Is Created	When to Use
Identity Domain SFTP	For every new identity domain established, Oracle Cloud creates one SFTP account for the domain.	You use the Identity Domain SFTP user account only to retrieve the data that Oracle automatically archives when you terminate a paid subscription to an Oracle Cloud service.
Service SFTP	For every instance of a service activated in the identity domain, Oracle Cloud creates an SFTP account for the service.	Use the Service SFTP account to perform data transfer operations for a selected Oracle Cloud service. For example, you use the Service SFTP account to import and export data for Oracle Database Cloud Service. For details about using the Service SFTP account, see the documentation specific to your service.
HCM SFTP	For every instance of an Oracle HCM Cloud Service or an Oracle ERP Cloud Service in the identity domain, Oracle Cloud creates an HCM SFTP account.	You use the HCM SFTP account to manage integration transactions.

SFTP Account

When Account Is Created

When to Use

Identity Domain SFTP

For every new identity domain established, Oracle Cloud creates one SFTP account for the domain.

You use the Identity Domain SFTP user account only to retrieve the data that Oracle automatically archives when you terminate a paid subscription to an Oracle Cloud service.

Service SFTP

For every instance of a service activated in the identity domain, Oracle Cloud creates an SFTP account for the service.

Use the Service SFTP account to perform data transfer operations for a selected Oracle Cloud service. For example, you use the Service SFTP account to import and export data for Oracle Database Cloud Service.

For details about using the Service SFTP account, see the documentation specific to your service.

HCM SFTP

For every instance of an Oracle HCM Cloud Service or an Oracle ERP Cloud Service in the identity domain, Oracle Cloud creates an HCM SFTP account.

You use the HCM SFTP account to manage integration transactions.

Viewing Details of SFTP User Accounts

In both the My Account application and the Infrastructure Classic Console or Applications Console, the service details page displays information about the SFTP user accounts.

The details include the SFTP host address, port number, and user name.

To view details about the SFTP user accounts:

Sign in to Applications Console or Infrastructure Classic Console.
Sign in to the Applications Console if you want to work with Oracle Cloud Applications. Sign in to Infrastructure Classic Console if you want to access Oracle Cloud infrastructure and platform services. If you see Infrastructure Classic at the top of the page when you sign in to Oracle Cloud, then you are using Infrastructure Classic Console and your subscription does not support access to the Oracle Cloud Console.
Click a service name to open the details page for that service.
Click the Overview tile.
Scroll down the page to view the Additional Information section.
This section displays the following details for the SFTP user accounts:
- Domain SFTP Host & Port
- Domain SFTP User Name
- Service SFTP Host & Port
- HCM SFTP User Name (only for Oracle Fusion ERP Cloud Service and Oracle Fusion HCM Cloud Service)
- Service SFTP User Name
Hover the cursor over the field to view the entire host address and port number. For example:

Description of the illustration sftp_host_port.gif
Note the user name for each account. You’ll need this information to set or change the password for this account. See Configuring Passwords for SFTP User Accounts.

In addition, note the SFTP host name and port number. You’ll need this information, along with the user name and password, to sign in to the SFTP server.

Note:

If the list of SFTP user accounts spans multiple pages, then use the Next and Previous buttons to navigate across pages.

Configuring Passwords for SFTP User Accounts

Oracle Cloud automatically creates one Identity Domain SFTP user account per identity domain and one Service SFTP user account per service instance activated in the domain.

To activate the SFTP user accounts, an identity domain administrator must configure the password whenever a new identity domain is established or a new service instance is activated.

Only identity domain administrators can configure the password for the SFTP user accounts, and only for the SFTP user accounts in their designated identity domains.

Note:

When you configure the password for SFTP user accounts, the password is set. It isn’t temporary. The system doesn’t prompt the SFTP user to change the password on the next sign-in.

To configure the password for an SFTP user account:

Sign in to Applications Console or Infrastructure Classic Console.

Sign in to the Applications Console if you want to work with Oracle Cloud Applications. Sign in to Infrastructure Classic Console if you want to access Oracle Cloud infrastructure and platform services. If you see Infrastructure Classic at the top of the page when you sign in to Oracle Cloud, then you are using Infrastructure Classic Console and your subscription does not support access to the Oracle Cloud Console.

Be sure to specify the appropriate identity domain.
Open the navigation menu. Under Account Management, click Users.
The User Management page appears.
Click the SFTP Users tab.
Locate the SFTP user account for which you want to set or change the password. You can browse through the list of accounts or use search to filter the list based on your entered criteria.
Click Action and select Reset Password.
Enter the new password in both the New Password field and the Confirm New Password field.

Make a note of the password that you assign to this SFTP user account. You must communicate this password to any administrator who will be using the account.
Click Save.
The system prompts for confirmation that you want to change the password for the selected user.
Click Save to set the new password.

Be sure to give the new password, along with the other SFTP sign-in information (host, port number, and user name), to the appropriate administrators.