Set up Secure File Transfer Protocol (SFTP) to import employee data
Use Microsoft Viva Glint Secure File Transfer Protocol (SFTP) to establish regular, automated imports of employee data. In Viva Glint General Settings, import SSH Public Keys and specify public IP addresses to connect, specify users that should be notified about data uploads and warnings, opt-in to PGP encryption, and view your credentials to access your SFTP account.
Your IT team may need to add an IP exception or add hosts and ports to an allow list to connect to SFTP. Learn more.
Learn more about how to set up SFTP with this video and the guidance in this article:
Manage SFTP in General Settings
Manage SFTP settings to connect to your Viva Glint SFTP account:
- From the admin dashboard, select the Configure symbol, then in Service Configuration, choose General Settings.
- In the Technical Configuration section, go to SFTP Setup and select Manage.
- In the SFTP pane that appears, review each field and enter information as needed:
- SSH Public Key: Enter the full text of your public SSH key in this field:
ssh-rsa .... DO NOT share your private key with Viva Glint. To generate a key pair: Learn more. - SFTP IP Addresses: Any account that connects to SFTP must have valid public IP addresses added here. Contact your IT team or use online tools to determine your public IP address(es).
Tip
SFTP IP address fields support subnets, or ranges of IP addresses. Enter ranges rather than individual IP addresses in each field, if needed. For example: 1.1.1.0/24 instead of each IP address 1.1.1.0, 1.1.1.1, 1.1.1.2, ... in its own field.
- Notify People: Search for and add users that should receive file upload notification emails.
- PGP Encryption: This setting is optional. Switch toggle to On to enable file encryption and reveal Glint's public PGP encryption key to encrypt your employee data files.
- SFTP Credentials: Use the credentials shown in the platform to connect to SFTP with a dedicated FTP application and your private SSH key file. Allow at least 1 hour after entering public SSH keys and IP addresses before testing your connection.
- File Protocol: SFTP
- Port: Select 22 or 1122
- Host Name: Varies based on region (US or EU) and selected port
- Username: Company ID
- Password: Use your private SSH key file
- SSH Public Key: Enter the full text of your public SSH key in this field:
Important
Private IP ranges aren't internet routable and don't allow SFTP connection. Don't include private IP addresses, which fall in these ranges:
- 10.0.0.0/8 IP addresses: 10.0.0.0 – 10.255.255.255
- 172.16.0.0/12 IP addresses: 172.16.0.0 – 172.31.255.255
- 192.168.0.0/16 IP addresses: 192.168.0.0 – 192.168.255.255
Note
Once a tenant is deprovisioned or considered in a "LockedOut" state, the public SSH key is deleted and SFTP will no longer work.
Feedback
Coming soon: Throughout 2024 we will be phasing out GitHub Issues as the feedback mechanism for content and replacing it with a new feedback system. For more information see: https://aka.ms/ContentUserFeedback.
Submit and view feedback for