Previous Topic

Next Topic

Book Contents

Book Index

System Administration and MOVEit Transfer

This topic explains discusses how you can use MOVEit Transfer for your Managed File Transfer (MFT) solution.

Toolkit

Description

Administrative Controls

You can perform application and org-wide actions from a web browser. You perform system-wide configuration and integration tasks from the MOVEit Transfer server node either signed on to the WebUI locally or using the Configuration Utility. For backups, you use a separate Backup and Restore utility, which is bundled with the MOVEit Transfer server software.

Admin and SysAdmin

When you install MOVEit Transfer, you set up a SysAdmin account and an Admin account.

The SysAdmin account can create a new organization, perform IP lockouts and changes, set up new users, and control settings for the system, schemes, and the organization. The account cannot upload or download files, read a user's files, or send/receive messages in any organization other than the System organization

The Admin account is used to perform daily administration, work with users, folders, and so on

For more information, see

Policies and Procedures

MOVEit Transfer has controls needed to implement policies prescribed or mandated by data security standards such as HIPAA, PCI, CIS, and so on. This section outlines some of the controls in MOVEit Transfer designed to help you implement these policies for your organization's folder, file, and message needs.

Authentication Policy Considerations

As you plan your authentication policy, consider:

Multi-Factor Authentication (MFA)

Passwords

Interfaces

Shared Accounts

Groups

External Authentication

Will all users authenticate to the MOVEit Transfer local database, through a trusted LDAP or RADIUS server, or a combination?

Will users leverage single-sign on?

Naming Conventions

Lockouts and Expiration

Allowed Hosts and IPs

Client Certificates/Keys

Automated Users

Most sites set up a FileAdmin user for their MOVEit Automation file transfer automation tool. Your end users or other internal processes can also be automated.

Folder Policy Considerations

As you plan your folder permissions policy, consider:

Structure

Shared Folders

Permissions

Clean Up/Notification

Naming Conventions

Ad Hoc Transfer Policies

You must have a valid Ad Hoc Transfer license (using the MOVEit Transfer Config utility) and you must have enabled Ad Hoc transfer .

Address Book Contacts and Unregistered Recipients -

Unregistered Recipients and Senders - When unregistered recipients sign in, and when unregistered senders self-register:

Secure Note transfer vs. Email Note, per package sender option, and related options

Permissions

Retention

Appearance

As you plan your site's appearance, consider these items:

Banner and Scheme

Display Profiles

International Languages

What is the default language for the organization?

Notifications

Sign-On Banners

Logging and Reporting

Consider the following when planning use of logs and reporting for production operations and tracking.

Filtering Logs

Reports

Retention

How long to keep audit records? After this time, delete or archive the records?

Production Operations

People

Automation

Incident Management

Disaster Recovery

End User Documentation

Administrative Documentation

Other Tasks

Use groups to organize the way users access files and folders.

Set up strong password requirements. For more information, see Settings and Folder pages.

Ongoing Maintenance

Use the logs pages to monitor activity and troubleshoot.