SFTPGo Enterprise for AKS - SFTP, HTTP/S, FTP/S to Azure Blob Storage

SFTPGo is a fully featured Managed File Transfer (MFT) solution that abstracts storage backends, allowing secure access to files via standard SFTP, FTPS, and WebDAV protocols, as well as a built-in HTTPS WebClient.

This offer provides the SFTPGo Enterprise Container Edition, specifically engineered for High Availability (HA) and resilient infrastructure. Unlike traditional single-server deployments, this edition is designed for organizations deploying in scalable, clustered environments (AKS).

Cluster-Ready Features & Scalability

The Container Edition unlocks capabilities specifically designed for cloud-native operations:

• High Availability & Clustering: Native support for Active-Active clustering to eliminate single points of failure.
• Horizontal Scalability: Architecture designed to scale linearly with your workload. Each pod is optimized to support up to 50 concurrent uploads/downloads. Need more capacity? Simply scale out by adding more pods to your cluster.
• Enterprise Integration: Includes plugins for event publishing to Azure Service Bus, RabbitMQ, NATS, Kafka, and other pub/sub platforms.

Note: For deployments requiring massive single-node density or unlimited concurrency per pod, please contact us for a Private Offer regarding our Ultimate Edition.

Core Capabilities

Multi-Protocol & Cloud Storage

Leverage local and cloud storage backends transparently. You can use the same tools and processes to exchange files stored on:

• Protocols: SFTP, FTPS, HTTPS, WebDAV.
• Storage Backends: Local filesystem, Azure Blob Storage, Google Cloud Storage, Amazon S3 (and compatible), and other SFTP/FTP servers.
• Virtual Folders: Map different storage backends to a single user path, allowing transparent access to hybrid cloud storage.

Advanced Security & Access Control

• Encryption: Full PGP encryption/decryption support and Data-at-rest encryption options.
• Authentication: Multi-factor authentication (MFA) compatible with Microsoft/Google Authenticator and Authy. Support for Public Key, Password, and Certificate authentication.
• Access Rules: Geo-IP filtering, per-user/per-directory IP filters, disk quotas, bandwidth throttling, and per-protocol rate limiting.
• Brute Force Protection: Built-in safeguards against attacks.

Identity & Automation

• SSO & Provisioning: Automated user and admin provisioning via OpenID Connect (OIDC).
• Event-Driven Workflows: Execute custom actions (HTTP/S notifications, emails) based on server events (upload, download, delete) or schedules using the EventManager.
• Groups & Virtual Permissions: Simplify administration by assigning settings and virtual permissions to groups rather than individual users.

User Experience

• WebAdmin UI: Easily create and manage users, folders, groups, and resources. Includes real-time monitoring of active connections.
• WebClient UI: Allows end-users to browse files, change credentials, and manage MFA directly in the browser.
• Secure Sharing: Authorized users can create public HTTP/S links to share files externally, with options for password protection or email-based authentication, expiration dates, and download limits.
• Branding: Both UIs (Dark/Light themes available) can be customized to match your corporate brand.

Other Notable Features

• Full REST API for external integration.
• Let's Encrypt TLS certificate support.
• Configurable crypto policies (Ciphers, MACs, Key Exchange algorithms).
• Data retention rules to automatically delete or archive old files.