The MOVEit Transfer Config utility is a Windows application (DMZConfig2.exe or DMZConfig.exe in older versions) that controls system-wide configuration of MOVEit Transfer. You launch and run it locally on the server host where MOVEit Transfer runs. To run the utility, you need to either connect a remote desktop session to the server host or have physical access to it. You will also need appropriate 'run-as' or administrator-level permissions launch the utility.
Launch the MOVEit Transfer Config utility (on the MOVEit Transfer Server host):
From Windows Server Applications.
From the Windows server start screen, Click to browse your Windows Server host applications and find the MOVEit Transfer Config selection. Click on it.
From Windows Command Prompt (cmd.exe).
Open a command window and call the executable directly.
For example:
MOVEit Transfer Config utility launches (Database tab shown)
Typical Uses
The MOVEit Transfer utility enables you to view, apply, and manage MOVEit Transfer system-wide defaults, such as:
View or update current licensing.
Transport protocol configuration (FTP/SSH).
Log level and debugging.
Cipher support and selection.
Database connection string configuration.
Filesystem selection.
Email server selection
And more...
License Tab
Product licenses are distributed in the form of a license file.
If you already have a license file, its serial number is listed in the License field.
To add a license file, click Import License File. A browse box opens. Select and import the license. Any change to the license field takes place immediately.
The DMZ Feature Status is a read-only field that lists the product features included in your current license, and the status and expiration date for each feature.
Configuration Utility License View
Feature status is Production, Evaluation, or Off. Evaluation options behave like production options, but evaluation options shut off after their time has expired.
Feature descriptions:
Base License - # organizations: The number of organizations this MOVEit Transfer license is currently authorized to support. When you purchase MOVEit Transfer, a Base License for a minimum of one organization is included.
MOVEit Transfer API: When enabled, allows an unlimited number of copies of MOVEit Transfer API to connect to MOVEit Transfer. Note: Your MOVEit Transfer API license might limit the number of clients that can be deployed.
Ad Hoc Transfer: MOVEit Transfer can be used to send secure, email-like packages with files included. Packages can be composed online using the web interface or read/composed using Microsoft Outlook.
Web Farm - # nodes: Enables server deployment in a web farm environment and controls the number of nodes that can be deployed. Each MOVEit Transfer server deployed in such an arrangement is counted as a node.
Files and Folders: MOVEit Transfer can be used to access files and folders using the web interface.
User Bands - # Users: The licensed (system) maximum number of users, per user band licensing:
1 to 50 Users
51 to 200 Users
251 to 500 Users
Unlimited Users
Note: MOVEit AS2 and AS3 support licensing is controlled in MOVEit Automation, MOVEit Transfer requires no additional license.
Mobile interface: With this licensed option, MOVEit mobile apps (iOS and Android) and the mobile web (iOS and Android) can be used to access MOVEit Transfer.
Gateway.Enables load balanced entry points from the DMZ to MOVEit Transfer web farms.
Secure Folder Sharing. Enables collaborative folder sharing between regular and temp users (not just admins). (Admins can still control and override which users can share.)
Status Tab
Sections:
Diagnostic Log Settings: Debug Level and Max Size for each component
Primary Services: Status and Stop/Start button for each service
Configuration Utility Status View with Maximum Log Size Settings
Diagnostic Log Settings
Diagnostic logging levels and log file sizes for the major MOVEit Transfer components are set here. For each component, you can adjust the Debug Level and Max Size.
Debug Level: specifies the amount of debugging information to be logged. Options:
All Debug logs everything.
None logs nothing.
Success (default) logs an amount that is a balance between performance and troubleshooting capability
Some Debug best for diagnosing errors on your own.
Note: PSC/MOVEit Transfer support typically requests that you run at least one test of a failed event at All Debug.
Max Size: Maximum size in megabytes of the log file before it is renamed and a new file is created in its place.
Diagnostic MOVEit Transfer component options:
Web: sets the debug level for the Web Interface and scheduling components of MOVEit Transfer.
FTP: sets the debug level for the FTP component of MOVEit Transfer.
SSH: sets the debug level for the SSH component of MOVEit Transfer.
While in production, set Core Application debug level to User Errors and the FTP and SSH debug levels to Connect Messages.Any SysAdmin can set debug levels and download the resulting logs.
Primary Services
In this section you can:
Start all services
Stop all services
Specify the refresh interval
For individual services, the screen lists:
Service name
Service status
A button to stop/start the individual service.
Mobile enables you to stop and start the mobile server service.
Important: Restart of Xfer Status Service clears Live View. As new data arrive, Live View populates the summary and status tables.
High Availability Service and Load Balancing Service Sections
High Availability Service - appears if MOVEit Transfer is in a web farm
Load Balancing Service - appears if Windows Network Load Balancing is the load balancer for the web farm.
You can:
View the status of each service
Start or stop or start each service
Start All or Stop All services.
Note: Clicking Start All and Stop All in the Primary Services section also starts and stops the High Availability and Network Load Balancing services.
Paths
Sections:
Folders: Locations of the primary components of the MOVEit system.
URLs: Addresses used to access MOVEit services.
Warning: Most of the Folder values listed below are also saved in locations currently outside the control of the MOVEit TransferConfig utility. Before you move the MySQL database to another location or move the encrypted filesystem to another location, first check the current recommendation in the PSC/MOVEit Support Site Knowledge Base.
Folders and their Contents
Web App: All of the web application files needed for MOVEit Transfer to run.
Non Web: MOVEit Transfer specific files that are needed for the internal functions of the program.
Files: The root filesystem for MOVEit Transfer. If the root filesystem is stored on a remote location, click Advanced to configure the UNC path of the remote location, and the username and password needed to access it.
ISAPI: The MOVEit ISAPI files that are required for making secure transfers.
Database: Specifies the location of MySQL, if MySQL is the database engine being used by MOVEit Transfer.
URLs
Machine: Used to access authentication and other services from MOVEit Transfer. This URL should refer to the local machines (localhost). The Machine URLs are generated during installation of MOVEit and rarely need to be changed, except in cases where IIS access rules have been changed.
Machine2: is derived from the Machine URL.
Ignore certificate problems on machine URLs: if selected, allows the use of Machine URLs starting with https even if the certificate on this webserver was not issued by a trusted Certificate Authority. This setting lets you set the IIS setting of Require Secure connection. In this case you must use https for the Machine URL.
Base: The URL that is used to connect users to the interface of MOVEit Transfer.
If there is no DNS name available, or the DNS name is not resolved, you must use an IP address.
If you have installed an SSL certificate, specify the HTTPS protocol.
This property can allow the secure connection with MOVEit Transfer with a test certificate that might not be able to be confirmed from a trusted source. Where Machine URLs are usually set to the localhost, they do not typically need to use https encryption.
If machine URLs must use https encryption, and if the certificate is not trusted, you must set this field so that FTP can communicate with the machine URLs.
Filesystem
Filesystem indicates if the current file store is Windows/UNC or another such as a scalable cloud-based service like Windows Azure Blobs.
Azure Blob Storage Settings (available if Azure Blob Storage is used)
Storage Account. This is the storage account name configured in the Microsoft Azure Management Portal.
Key. API key used to build connection string when authenticating to the Storage Service without a pre-defined SAS URL. It must match either the primary or secondary key used in the service (this is typically copied from the Azure Management Service--you can see and regenerate it from the Azure Management Portal.)
Warning: Regenerating a primary or secondary key at the Azure Portal or equivalent effectively revokes it. To ensure availability of the Blob file store, take care to maintain a valid key (either primary or secondary) as part of your connection information in the MOVEit Transfer Config.
Container. Storage container (effectively the top-level folder) where your MOVEit Transfer file store is.
Email
Sections:
SMTP Configuration: Settings for the SMTP mail server.
Key Email Addresses: Email addresses used to send and receive messages from the MOVEit server.
SMTP Configuration
Server: The IP address or DNS name of the mail server to be used to send e-mail.
Timeout: Number of seconds after which the SMTP client controlled by MOVEit Transfer times out. Time outs occur when MOVEit Transfer cannot complete the send (a package send or notification, for example) operation with the SMTP Server.
Username/Password: SMTP credentials.
Enable SSL. Enable SSL/TLS between the MOVEit Transfer server and the SMTP server to prevent message eavesdropping and tampering (file payload is already encrypted).
Ignore Certificate Errors. Ignore cases where certificate found at the server cannot be verified with a certifying authority (such as cases where the certificate is self-signed but used on a trusted host).
Key Email Addresses
Default From: The return address that will be used to send out informational messages from MOVEit Transfer.
Send Errors To: The e-mail address to whom error messages from MOVEit Transfer are sent. The scheduler sends error reports to this address.
Separate multiple email addresses with commas. For example, support1@mymoveit.com,support2@mymoveit.com is a valid address. However, most sites use a mailing list or an alias controlled on the mail server to send to multiple addresses.
If you need more sophisticated email options such as authentication or queueing, set up the local IIS SMTP server. Use of a local SMTP server is recommended at high volume sites to avoid waiting for responses from remote mail servers.
Settings
Sections:
Statistics Gathering: Settings for status and performance statistics.
Other Settings: Server settings for IP mask, timeout, and disk space.
Statistics Gathering
MOVEit Transfer periodically polls the local server for status and performance statistics, and records them into a database for later processing. Statistics Gathering settings determine how that statistics gathering mechanism operates. For more information, see SysStat Service.
Retention: Length of time that records exist in the statistics database. Default: 30 days.
Interval: How often the statistics gathering process polls the local server. Default: 323 seconds.
Long Process Skip Count: MOVEit Transfer records the amount of used disk space in various DMZ folders on the server, by recursively counting the bytecounts of all files and subfolders under the selected folders. Because this process can take a significant amount of time and resources, these statistics are not collected every time the statistics gathering process runs. Long Process Skip Count determines how many runs the process skips before gathering statistics. Default: 72 runs.
Other Settings
IP Masks to Ignore DNS: MOVEit Transfer uses the Windows DNS client to look up the hostnames of IP addresses. Sometimes internal IP addresses cannot be resolved by the available DNS servers, but timeouts involved obtaining this information can affect the performance of operations that require reverse lookups (such as signons). Adding specific IP addresses and/or ranges of IP addresses into this list will cause MOVEit Transfer to skip DNS reverse lookups of those addresses and may speed signons and similar actions.
Max Session Timeout: Specifies the maximum length of long file transfer sessions. User sessions are automatically extended to this limit during file transfers to permit slow or large transfers to succeed. Default: 120 minutes.
Disk Space Low Warning: MOVEit Transfer periodically checks the remaining disk space on all local drives. If the remaining space on any of the drives falls below this level, an email is sent to the Send Errors To email address containing a message about the low disk space. Default: 1024 MB.
Default HTTP Data Timeout. Modify to override the default HTTP data connection timeout (60 seconds). The setting applies to backend MOVEit Transfer transactions.
Note: After you modify the Default HTTP Data Timeout setting, you can apply it to the current MOVEit Transfer host system with an IIS reset (open a cmd window in Windows, and enter the iisrest command). Otherwise, it will be applied the next time the host system is rebooted.
Database
Settings of the current database engine used by MOVEit Transfer.
MySQL
Configuration
Server: IP address or host name and instance of the MySQL database server used by MOVEit Transfer. Typically MOVEit Transfer uses a local MySQL database, so the server will usually be localhost.
Database Name: Name of the database used by MOVEit Transfer. This was configured during setup; do not change it.
MOVEit User
Username: Username of the database user used by MOVEit Transfer to access the DMZ database. This was configured during setup and should normally not be changed.
Password (and Confirm): Password of the above database user. This password was configured during the MOVEit Transfer setup and should normally not be changed.
MySQL Root User
Username: Name of the database root user. This was configured during setup and should normally not be changed.
Password (and Confirm): Root password that is used to access the MySQL database for MOVEit Transfer. This password was configured during setup and should normally not be changed.
Microsoft SQL Server or SQL Azure
Server\Instance: IP address or host name of the SQL Server database server being used by MOVEit Transfer. When using a local SQL Server instance, this will typically be localhost. Otherwise, it will typically be the address of a separate database server or database cluster.
Database Name: Name of the database used by MOVEit Transfer. This was configured during setup and should not be changed.
Username: Name of the database user used by MOVEit Transfer to access the DMZ database. This was configured during setup and should normally not be changed.
Password (and Confirm): Password of the above database user. This password was configured during the MOVEit Transfer setup and should normally not be changed.
While in production, set Core Application debug level to User Errors and the FTP and SSH debug levels to Connect Messages. Any SysAdmin can set debug levels and download the resulting logs.
Important: Restart of Xfer Status Service clears Live View. As new data arrive, Live View populates the summary and status tables.
Warning: Most of the Folder values listed below are also saved in locations currently outside the control of the MOVEit TransferConfig utility. Before you move the MySQL database to another location or move the encrypted filesystem to another location, first check the current recommendation in the PSC/MOVEit Support Site Knowledge Base.
to browse your Windows Server host applications and find the MOVEit Transfer Config selection. Click on it.
