- On a separate machine from MOVEit Transfer, sign in as an administrator.
- Download the Gateway 2020 for MOVEit Transfer installer from the Customer Portal.
- Open the Gateway installer and click Run to start the install wizard.
- Welcome: To agree to the End User License Agreement and begin the installation, click Next.
- System Check: The installer verifies the following:
- Operating System Version
- Administrator privileges
Click Next.
- Installation Folder: Select a location to install the Gateway server files. Click Next.
- Gateway Configuration Interface. Designate a certificate to use as the identity of the Gateway Configuration interface. This certificate will be used for connections to the administrator interface, typically on port 9443.
Choose one of the following certificate options.
- X.509 (*.pfx or *.p12) certificate from your computer (recommended): Browse to locate the SSL *.pfx or *.p12 file. Since in many cases the hostname of the Gateway server will be the hostname previously assigned to a MOVEit Transfer server, you may wish to use the certificate already installed on your MOVEit Transfer server. If you need to create a *.pfx or *.p12 file from your MOVEit Transfer server, see Create a *.pfx or *.p12 File. Enter the Certificate password in the space provided.
- System-generated self-signed certificate: By default, the installer populates the Certificate Name field with MOVEit Gateway (Demo). In most cases, you will simply accept the proposed value and continue. The Certificate Name value is used to populate the CN parameter in the *.pfx or *.p12 file.
Choose the network interface and port to listen on:
- Network Interface: Select a network interface (IP address) from the drop-down list. In most cases, you will want the Gateway to listen on All Interfaces.
- Port: Enter the TCP port to which Gateway administrators will connect with a browser, to administer MOVEit Gateway. It is recommended that you accept the default of 9443. When configuring the TCP port for the administrative interface, do not choose a port number that is likely to already be in use by the system, such as 443. The default, 9443, is a good choice for most systems.
Click Next.
- SSH Tunnel Authentication Key: Enter the SSH Tunnel Authentication Key used by the MOVEit Transfer Server tunnel, or leave blank to enter the key later.
The SSH Tunnel Authentication Key is managed by MOVEit Transfer. It is located on the Gateway tab of the MOVEit Transfer server Config Utility. For more information, see Step 2: Configure the Gateway Connection on the MOVEit Transfer Server.
Click Next.
- Service Logon Account: Designate which account Gateway should use to run the Gateway service process:
- Local System account
- Different account: Enter the username and password of the different account.
Click Next.
- Gateway Server Hostname: Enter a fully-qualified domain name of the Gateway machine. This is used to create HTTP redirects and is currently used only for client certificate authentication. This hostname should be visible to web browsers accessing the Gateway system. You can edit the name later if required. Doing so will restart all running HTTP proxies.
Click Next.
- Ready to Install: Verify the installation setup. Click Install. After a few moments, the installation is complete.
- To complete the MOVEit Gateway configuration, click Finish.
Note: Your web browser may attempt to open the Gateway Configuration Interface at this point. You will return to the Gateway Configuration Interface after Step 2.
Note: When you see the Enable Windows Firewall, ignore it for now. You will configure the firewall in Step 4.
