Secure File Transfer Configuration

CME Group offers Secure File Transfer Protocol (SFTP) to securely transfer and view data.

SFTP is a secure, distributed file transfer service that uses SSH authentication and (optional) PGP and public / private key encryption to secure data within directories.

Firm designated Back Office Admin Managers are responsible for managing user access by registering their entity for SFTP access and managing application permissions for individuals that will send / receive files.

Use the below instructions to request access, manage SFTP user access and view data.

Note: This SFTP service is used only for BrokerTec and EBS trade data files.
Clearing and SPAN file downloads are available from the dedicated Clearing SFTP Server.

Contents

• Request SFTP Access
• Access SFTP Management

• Assign User Permission
• Creating SFTP ID
• Claiming SFTP ID - assign access to a new user via an existing SFTP ID
• Accessing SFTP Data and Reports - connection information (IP, port) and sample report names
• Inbound Public SFTP Keys

Request SFTP Access

Prior to requesting entitlements or assigning permissions to access SFTP information, users must have a valid CME Group Login; and activation token. The CME Group Login is required for registration forms and SFTP ID assignment.

• Futures & Options: To request a SFTP ID or install a public key, contact CME Clearing Services.
• BrokerTec/ EBS:

 

1. Entity registers for SFTP and designates a Back-Office Admin Manager to:

Request Post Trade report access by submitting a SFTP Production Registration form.

Request Billing Group report access by submitting a BrokerTec Billing Group SFTP Production Registration Form.

2. CME Group creates a SFTP master account for the entity, then notifies the requestor.

3. The Back-Office Admin Manager, accesses SFTP Management to authorize additional users at their firm to create and manage SFTP ID access.
4. Authorized users can add a SSH Key to login to SFTP; instead of using a password.
5. Optional, PGP is available for symmetric and asymmetric file encryption before and after transfer.
6. After setup and user entitlement assignment, authorized users can receive / review report details via EREP / SFTP (as applicable).

Note: Receiving and Sending Encrypted Files
- To receive encrypted files from CME Group, an authorized user can create a PGP public key for the SFTP ID.
- To send encrypted files to CME Group, an authorized user can download the CME Group PGP Public Key for encryption.

See also: BrokerTec Reporting guide (portal access is required).

 

EBS Report Setup

To request EBS report access:

1. CME Group Login: Users must create or use an existing CME Group Login to register for EBS reporting services and application access to EREP / SFTP / Request Center (ESS).

For application access requests, users (including back-office admin managers) provide their CME Group Login ID and secure token to their entity administrator.

Note: CME Group or entity administrators will never ask for your password.

2. Contact Global Account Management (GAM): CME Group offers a suite of tools to help customers manage registration and on-boarding to applications and services. To get started with self-service solutions and obtain the CME Customer Center Self-Service form, contact GAM.

• For an overview of EBS services, including onboarding, reporting services and registration forms, refer to the EBS Operational Readiness Guide and Applications and Services.

3. Submit Self-Service Form: Submit the completed CME Customer Center Self-Service form to GAM.

See also: CME Customer Center Self-Service Overview

The self-service form is completed by the Entity Officer who identifies back office admin manager(s) that are responsible for:

• System administration
• Assigning user entitlements
• EREP/SFTP application configuration
• Approving self-service requests submitted by entity users
• Submitting EREP/SFTP report registration forms

4. Submit EBS EREP and SFTP Report and Billing Registration Form(s):

• EBS Standard Report EREP Registration form: Request access to a standard set of reports, including: EBS EFIX, EBS Operations and EBS Spot & Metals.
• EBS Credit Report EREP Registration form
• EBS Regulatory Report EREP Registration form
• EBS Session Report EREP Registration form
• EBS Billing Report EREP Registration form
• EBS SFTP Production Registration form - Institution Report
• EBS Institutional Report EREP Registration Form: Request access to institutional reports for spot and metals, billing and credit
• EBS SFTP Post Trade Registration form - Production

For additional setup details, including reports associated with each form, refer to EBS Reporting

 

Access SFTP Management

1. Select the User icon > My Profile.

2. From the My Account menu, select SFTP Management.

Note: The availability of this page is determined by assigned user entitlements.

1. View Details
2. Remove Account Access
3. Remove All Access
4. Permission New User

 

Assign User Permission

Before users can manage SFTP functions, a Back Office Admin Manager must assign permissions to create and manage SFTP IDs.

Prior to adding a new user, request their CME Group Login ID and token, which is used to identify the user.

1. Navigate to the SFTP Management function.

2. From the SFTP Management page, select Permission New User.

3. From the Permissions User for SFTP ID Creation screen, specify user information.

• User: Users must have a valid CME Group Login and token

To obtain a temporary token, users must access CME Group Login > My Profile to generate a token, then provide to the AM.

• Account Type: Clearing, Regulatory, Trade Repository, Billing Group, etc

• Entity: Assigns SFTP management permission to the specified entity and account combination.

4. To finalize permission assignment, select Submit, then confirm the password dialog (to validate your entitlement to assign this permission).

Additional SFTP Functions

• Assign User Permission
• Creating SFTP ID
• Claiming SFTP ID
• Accessing SFTP Data and Reports
• Inbound Public SFTP Keys