An SFTP integration allows our clients' member data to be loaded automatically. It also provides alerts on any errors which occur within data files prior to processing and scheduling.
During the implementation and configuration of the integration, Reward Gateway assigns a unique SFTP to the client. Files uploaded using this SFTP account are processed according to the rules defined by the client, giving them complete control of data transfers.
What is SFTP?
Well, to start with, SFTP stands for Secure File Transfer Protocol – which is why we much prefer saying SFTP. It's is a more secure variant of the classic File Transfer Protocol (FTP). Employee data will be transferred over a Secure Shell (SSH) connection and cannot be viewed by anyone examining the traffic.
What is an SFTP integration?
An SFTP integration allows you to upload your member data directly into the Reward Gateway system for automatic processing.
You'll need to prepare and upload this data, and we recommend discussing this integration with your HRIS provider. To make this process simple and minimise any risks – we also recommend automating the adding, removing, updating, collecting, and sending of data over the SFTP connection.
Once we receive your data, it will be automatically processed and added to our database. This means your offering will be instantly up to date.
Benefits of using an SFTP
The biggest benefit of using this integration is the automation it delivers. Automating data uploads via SFTP means:
- There is a reduced risk of human error in manipulating data by defining a standard extract format.
- It eliminates the need to download data to a desktop before uploading it to Reward Manager.
- Data can be provided at an increased frequency (e.g. daily) with a lower overall administration cost.
- GPG encryption can be used to further secure data transfers.
Step 1: Accessing Reward Manager
To be able to configure an SFTP integration on Reward Gateway, clients must first have an Administrator account that will enable them to access Reward Manager.
If no credentials have been provided to access Reward Manager, please request them from one of our Implementation Specialists.
Step 2: Set up a new SFTP integration
Once logged in to Reward Manager, navigate to Integrations > SFTP using the left-hand menu bar.
Give the integration a name. Make it meaningful so other Administrators can understand the purpose of the SFTP setup (e.g. Acme Company Ltd Leavers Integration).
Setup a Prefix for your file transfer. This is important as Reward Gateway will determine the correct configuration based on your prefix.
Each file transfer MUST contain the filename including the prefix setup here.
GPG / PGP Encryption
If you would like to send your file encrypted, please select the GPD encryption option. After ticking the box to confirm GPG encryption, a public key will be displayed.
Make sure this is copied and encrypt the files with the public key before using a GPG encrypted file.
Reward Gateway supports multiple workflows for processing files:
- Add Members – the data file will only add members onto the platform.
- Refresh Members – the file will be considered a snapshot of all employees working for the client's organisation. Any members not included in the file will be removed automatically and any members that currently do not have accounts on Reward Gateway will have accounts created based on the file.
- Remove Members – the file will only remove members from the platform.
Please select a workflow you would like to follow.
Now, it's time to decide how to authenticate access to the SFTP box, which will allow the data to be processed.
Choose from one of the two supported options (Username & password or SSH) from the drop-down.
Read more about the SSH Key authentication method
Username & password
If the username & password option is chosen, we’ll display the required credentials to enable access to the new dedicated SFTP box.
Make sure you select the "New Password" option and make note of your username and password details somewhere secure. Your password will NOT be shown again.
If the SSH Key method is chosen, the required credentials will be displayed to access the dedicated SFTP box.
Click the Add SSH Key button. All SSH Keys must be in RFC-4716 format.
When generating the SSH keys make sure you follow the recommended Security Guidelines. Check in real time what ciphers we are currently using from this page. You can also check the ciphers on our staging SFTP Server here.
Reward Gateway supports storing multiple SSH Keys against an individual configuration, allowing clients to set up multiple end points on the integration.
Testing and Mapping
Once the initial setup is complete and the authentication details have been copied over, it's time to send a test file.
Please install and open your preferred SFTP Client for your operating system, enter the credentials that we have provided to you, and you will log into our SFTP Server. There you will see two folders, the "outbound" folder will contain files that Reward Gateway wants to share with you and you can't upload anything there, the "inbound" folder will contain files that you want to share with Reward Gateway and this is the folder where you have to upload your files.
OK, now log into our SFTP server with your SFTP Client, enter the "inbound" folder, and upload your test file.
Note: Your SFTP Client should upload files without any additional rename of the file's name during the transfer.
The test file allows the mapping data on the file to the fields on Reward Gateway. This is also a way of identifying that the new SFTP box is working as expected.
Once the SFTP box is connected using the credentials given in the previous step, and the test file has been uploaded, our interface will automatically reflect the changes to show the schema of the test file. It’s important to carefully map the schema to match the fields on Reward Gateway. If any issues are encountered mapping the schema, please contact an Implementation Specialist.
Note: Once mapped, every file sent to us must follow the same structure.
- Column Name: Name of the column on the file.
- Example Data: Example data on the file matching this column.
- Matching Field: Field that column maps to on Reward Gateway. We have automatic mapping on most fields, however, it’s advised to manually check if these fields are required. If the column is mapped to ‘-- Ignore --’ this column will be ignored from the upload.
Click Save to proceed to the next step.
Review all changes carefully in this step and click Finish to complete the setup.
Step 3: Managing notifications
It’s extremely important that clients keep monitoring their SFTP box and the files processing through it.
We advise clients to set up multiple members from their organization to receive update notifications.
To do this, go to your Integration Dashboard, select the SFTP Integration of your choice and select the "Edit Notification Preferences" option under Tools.
Notification Preferences will allow multiple notifications to be received based on certain events while the files are being processed.
Any members set up to receive notifications will receive one when a file is processed. The notification email will contain information about the actions taken through the file.
For example, a notification would be sent to update on the fact that 25 people were revoked access after a file was processed.
Any members set up to receive notifications will also receive one when there have been no files processed for over a month. This is to ensure that employee data is always up to date.