Thanks for the details. Follow up questions:
#1 - How do you expect the users to reset their passwords? Using a web portal or through an SFTP client?
#2 - We do have a blog post that talks about the steps and points you to relevant documentation: https://aws.amazon.com/blogs/storage/lift-and-shift-migration-of-sftp-servers-to-aws/. You would need to whitelist source IPs using the subnet (around the NLB)' NACLs. Let me know if it's helpful.
AWS Transfer Multiple Identity ProvidersAccepted Answerasked 7 months ago
SFTP Transfer Family to EFS umaskasked 18 days ago
Does Transfer Family support Password and SSH key authentication together in one single login ?Accepted Answerasked 3 months ago
AWS TRANSFER FAMILY SFTP SERVERasked 7 months ago
HostKey for SFTP Transfer FamilyAccepted Answerasked 6 months ago
Custom Identity Provider - SSH Key and/or Password Authasked 3 years ago
Custom port possible with Transfer for SFTP?Accepted Answerasked 3 years ago
Key auth with custom identity provider for SFTPasked a year ago
Custom Identity Provider blank Message in responseasked 3 years ago
SCP Support for AWS Transfer for SFTP?asked 3 years ago