Skip to main content

Regenerating SFTP Credentials

Modalius Support
Updated

You can generate new SFTP credentials at any time. This is useful if credentials may have been compromised or when rotating credentials for security.

When to Regenerate

  • A team member who knew the password leaves
  • Credentials may have been shared insecurely
  • You're updating your integration systems
  • Regular security rotation policy

Viewing the Current Password Before Regenerating

Before regenerating, you can view the current credential secret to confirm what is in use:

  1. Open the credential detail page
  2. Click the Reveal button next to the Secret field
  3. The current password will be shown in plain text and can be copied to your clipboard

Tip: Use the View Secret feature to verify which credential is currently active before initiating a rotation.

How to Regenerate

  1. Navigate to Organization > Business Units
  2. Select the business unit
  3. Go to SFTP Credentials
  4. Click Manage and select Rotate Credential
  5. Choose the new credential to swap in, and optionally schedule the rotation for a future time
  6. Confirm when prompted

Important: If the rotation is immediate, the old password stops working right away. Any systems using the old credentials will fail to connect until updated.

Scheduling and Cancelling Rotations

When rotating a credential, you have two options:

  • Immediate rotation - The new credential takes effect right away
  • Scheduled rotation - Set a start time (and optional end time) for the swap to take effect in the future

If a rotation is scheduled, the credential detail page will show a Rotation scheduled banner with the date. You can cancel a pending scheduled rotation at any time:

  1. Open the credential detail page
  2. Click Manage and select Cancel Scheduled Rotation
  3. Confirm the cancellation

Credential Status

Credentials show the following status indicators:

Status Meaning
Active Credential is attached to one or more connections and in use
Inactive Credential is not currently attached to any active connection
Expiring Soon Credential will expire within the next 14 days
Expired Credential has passed its expiration date and can no longer be used
Rotation scheduled A credential swap is scheduled for a future date

AS2 Certificate Credentials

For AS2 connections, credentials are digital certificates rather than passwords. On the credential detail page, the Connection Usage tab shows which connections use the credential, and for certificate-type credentials the tab is labeled AS2 Profile Usage, displaying which AS2 profile the certificate is attached to.

Certificate rotation works the same way - select a new certificate credential to replace the current one, either immediately or on a schedule.

After Regenerating

You must update the new credentials in:

  • Any external systems connecting to your business unit
  • Partner configurations (if they push files to you)
  • Automated scripts or integrations
  • Saved connection profiles in SFTP clients

Notifying Partners

If partners use your SFTP credentials to send files:

  1. Generate the new credentials
  2. Communicate the new password to them securely
  3. Coordinate a switch-over time
  4. Verify files are flowing after the change

Best Practices

  • Use View Secret to verify the current credential before rotating
  • Schedule rotations during low-activity periods when possible
  • Have the new credentials ready before regenerating
  • Test connections immediately after updating
  • Document when credentials were last changed

Permission Required: You need the Manage SFTP Credentials permission to regenerate credentials.

Comments

0 comments

Please sign in to leave a comment.

Powered by Zendesk