What's New for 2017 PLUS

The following features were added to MOVEit Transfer for the 2017 Plus release:

• Multi-factor authentication. Security controls and policies that ensure credentialed end-users are genuine.
• Password expiration policy. Comprehensive user and password policy controls.
• Security updates. Updates, improvements, and fixes based on regular security analysis and testing.
• Unicode support improvements. (Unicode support was originally added for 2017 release.)
• Upload improvements. JavaScript Wizard now gives you the option to follow successful uploads with automatic package notifications. (This matches the features already available in the Java and ActiveX Wizards.)
• MOVEit Product Installer. You can install Transfer and Automation from a single installer (license-file dependent).
• EULA. The MOVEit Transfer end-user license agreement was updated to match other Ipswitch products. It is available for your review when you run the installer.
• Usability improvements.

Multi-Factor Authentication

Multi-factor authentication protects MOVEit Transfer accounts from unverified users when a user's account password is lost, stolen, or compromised. To verify user identity, MOVEit Transfer gives users private access to a uniquely-generated verification code (made available to the user either by email or mobile app). This additional verification step ensures user sign on is genuine.

This feature set includes:

• Admin-level UI controls that enable site administrators to 'implement multi-factor authentication as policy' in just a few clicks.
• Online guide/wizard (tested with users/usability session volunteers) that guides end-users through the app/email verification and setup needed for multi-factor authentication.
• UI controls that enable administrator to require multi-factor authentication policy only for selected user classes.
• UI controls that enable administrators to exempt specific users.
• Users can optionally 'opt in' to use multi-factor authentication when it is not required by policy.
• User identity verification using either a secure email account or mobile authenticator app.

Note: A broad cross-section of commonly used authenticator apps (for example, Google Authenticator) were leveraged during usability testing and found to be compatible.

Password Expiration Policy

These controls enable administrators to enforce policies that prevent password re-use, enable expiration of unused accounts, and enable periodic renewal of user account passwords. Administrators use this feature set to apply appropriate policies based on user class (or even a specific user). These controls align with compliance standards that mandate shorter windows of password reuse and heightened security for users with access to broader sets of functionality and resources.

The feature set also includes:

• Users can reset their account password if they forget or lose it.
• An administrator-controlled user 'grace period' that enables users to renew/reset passwords for less-frequently used accounts.
• Different password expiration policies for different users.
• Reminders for users with passwords that are n days out from expiration.

Security Updates

MOVEit Transfer 2017 Plus underwent a regimen of security testing with an emphasis on controls required for compliance standards. Several vulnerabilities were addressed in this release including:

• Updates to the user sign-on process. (Multi-factor authentication and password management)
• Hardening of the communication and transaction surface with the server.
• Moved to recommended versions of software libraries and frameworks.
• Adjustments needed to harden access permissions.
• Added server or client-side checks (or both) on text fields that contain scripts or HTML.
• Improved security for SAML sign on.
• Bundled MySQL DB includes critical patch updates.

Unicode Support Improvements

Unicode support was added to an earlier release (MOVEit Transfer 2017). In the current release, organization names now support unicode characters.

Performance

• Optimizations made to archive log utility.
• Some fixes and optimizations added for certain heavy use scenarios (see Known Issues).

Send Upon Successful Upload

Using the web UI, users can now elect in advance to send a package notification upon successful package upload. This option was already available from other upload wizards and was recently added to the "web UI" (Javascript upload wizard).

MOVEit Product Installer

• Install multiple MOVEit products from the same installer (includes new silent install).

  Syntax:

  <Installer-Executable> /<Install-Language-Local-in-Hexadecimal> /s ResponseFile=<response-file-name>

  Example:

  MOVEit-Full-Install.exe /L0x0409 /s ResponseFile=C:\Users\myuser\desktop\MOVEitInstall.txt

  —Where MOVEit-Full-Install.exe represents the name of the installer executable. The actual name will include a build number.

• Bootstrap installer downloads latest product builds.

Usability Improvements

• Adjustments to the look-and-feel and styling of the Web UI to match other Ipswitch products.
• Significant styling updates applied to the JavaScript wizard.
• Context sensitive help added to sign on and selected panels of the Web UI.