Az.Sftp

0.2.0

Microsoft Azure PowerShell - SFTP module for Azure Storage. Provides cmdlets to generate SSH certificates and establish secure SFTP connections to Azure Storage accounts with hierarchical namespace enabled. For more information on Azure Storage SFTP support, please visit: https://learn.microsoft.com/en-us/azure/storage/blobs/secure-file-transfer-protocol-support

Minimum PowerShell version

5.1

Installation Options

Copy and Paste the following command to install this package using PowerShellGet More Info

Install-Module -Name Az.Sftp

Copy and Paste the following command to install this package using Microsoft.PowerShell.PSResourceGet More Info

Install-PSResource -Name Az.Sftp

You can deploy this package directly to Azure Automation. Note that deploying packages with dependencies will deploy all the dependencies to Azure Automation. Learn More

Manually download the .nupkg file to your system's default download location. Note that the file won't be unpacked, and won't include any dependencies. Learn More

Owners

Copyright

Microsoft Corporation. All rights reserved.

Package Details

Author(s)

  • Microsoft Corporation

Tags

Azure ResourceManager ARM Storage SFTP FileTransfer

Cmdlets

Connect-AzSftp New-AzSftpCertificate

PSEditions

Core Desktop

Dependencies

Release Notes

* Added confirmation prompt when an SSH key pair already exists at the target location
   - Both 'New-AzSftpCertificate' and 'Connect-AzSftp' now detect existing key pairs before generating new ones
   - Users are prompted to choose whether to overwrite existing keys or reuse them
   - Added '-Force' parameter to bypass the confirmation prompt
* Improved verbose and debug logging across all cmdlets
   - Added timing information for key pair generation, certificate requests, and SFTP session duration
   - Enhanced SSH client validation logging with resolved executable paths
   - Added structured log prefixes (KeyPair, CertGen, SSH, SFTP, Auth, Cleanup) for easier filtering
   - Improved credential cleanup logging with operation-level status messages
* Fixed command injection vulnerability in file permission handling [Security]
   - Replaced 'powershell.exe' and 'icacls.exe' subprocess calls with direct .NET ACL APIs on Windows
   - Replaced 'chmod' subprocess call with native P/Invoke on Unix
   - Canonicalized file paths in SSH key generation methods to prevent path traversal

FileList

Version History

Version Downloads Last updated
0.2.0 (current version) 33 5/5/2026
0.1.2 175 4/7/2026
0.1.1 436 3/3/2026
0.1.0 1,357 10/14/2025