What's New in MOVEit Cloud

The following new features and improvements were added to MOVEit Cloud.

MOVEit Mobile and MOVEit Client Sign-On Security Statement (and Acceptance)

The security notice Acknowledgment feature (defined as part of the Sign-on Banner and Notice controls) was extended to display when users sign-on to MOVEit Transfer through MOVEit Mobile and MOVEit Client. This feature extends the audit compliance controls for MOVEit Transfer clients that are prescribed by most data security standards.

Secure Resource Notice (MOVEit Mobile)

Secure Resource Notice (MOVEit Client with shown)

MOVEit Client Enabled with MFA

MOVEit Client gives users private access to a uniquely-generated verification code (made available by email or mobile app). This additional verification step ensures user sign-on is genuine.

Users can manage MFA settings through the WebUI My Account page.

Setup Screen if MFA not Already Configured

Enter Temporary Verification Code (email method shown)

Custom Branding for Email Notifications

Include site, team, or enterprise logo designs in email notifications. Site branding controls are more intuitive.

The SETTINGS > Appearance - Brand page features intuitive controls and a new preview mode. You can apply defaults at the global (SysAdmin) and specific designs for MOVEit Transfer organizations (OrgAdmin level).

Custom Site Design Configuration Panel (SETTINGS Appearance - Brand)

RESTful API Improvements

MOVEit Transfer 2021 adds new capabilities to its REST API.



New response model for One-Time Password (OTP).

  • OTP response includes masked email for account.
  • Successful response includes data (changed from HTTP 204 to HTTP 200).

POST /api/v1/token/otp

Email-only option now can return a response body and an HTTP status of 200. The response body contains a masked copy of the user's email address.

Response body example:

"user": {

"masked_email": "m****"


Download report as file.

GET /api/api/v1/reports/reportId/results/download?format=<format>

—Where <format> can be html, json, csv, or XML.



Get a list of all reports.

GET /api/api/v1/reports/

Page through report results list.

GET /api/v1/reports?page=<pages-returned>&amp;perPage=<reports-per-page>&amp;sortField=<report-field-to-sort-by>&amp;sortDirection=<sortby-direction>



Change folder Permission Inheritance settings

PATCH /api/v1/folders/{Id}

—Where {ID} is the ID of the folder.

—and where explicit permissions flag is set in the request body.

Change folder notification settings.

PATCH /api/v1/folders/{Id}/acls/{entryId}

—and where notification settings are set in the request body.

Updating folder sharing and permissions

PATCH /api/v1/folders/{Id}/notifications

—Where {ID} is the ID of the folder.

—and where sharing and permission settings are changed in the request body.

Change character restriction policy for filenames

PATCH /folders/{Id}/characterRestrictions

—and where allowable characters is set in the request body.

Change history setting, unique filenames, thumbnail display, and overwrite settings.

PATCH /api/v1/folders/{Id}/miscellaneous

—Where {ID} is the ID of the folder.

—and where individual settings are boolean values applied to the request body.

Change folder quota, new file time limit, and folder quota characteristics.

PATCH /api/v1/folders/{Id}/maintenance

—Where {ID} is the ID of the folder.

—and where individual settings are changed in the request body.

Fixed Issues

This section outlines issues tracked and fixed by the MOVEit product team for the 2021 release. Not all changes suggested by customers or uncovered in usability testing are tracked as issues or defects. See the What's New section for a broader view of these improvements.



Fixed Issue


Admin UI

Fixed issue where setting SSH Policy for the current user returned the message "certificate is not for the user."



Fixed issue where Folder Download to .zip produced an empty .zip file.



Fixed issue to disallow an out-of-range client IP address.



Fixed issue where an org admin could see session count metrics for the system.


Admin UI

Fixed issue where report failed to overwrite when Overwrite option was selected.


Admin UI

Fixed issue where using a new MOVEit Transfer account resulted in exception if used from MOVEit Automation.


Transfer Server

Fixed issue with GarbageCollection task where only the first 1000 file deletes were reflected in the log and when viewed from custom reports.


Transfer Server

Fixed issue where some package attachments not cleaned up during scheduled GarbageCollection task.



Fixed issue where deleting custom notification returned an "Invalid Custom Notification" message.



Fixed issue to log exceptions and continue to file, which could be blocked when malformed or corrupted comments field was encountered.



Fixed issue where in a Secure Folder Sharing scenario, retrieving the full folder list resulted in long queries.



Performance improvements to handle high volume of short sessions.



Fixed vulnerability issue in recursive folder properties operation. Credit: Steven Seeley.


External Auth

Fixed issue where sign-on to an ExternalOnly org for the first time returns exception after sign-on.


Custom Notifications

Fixed issue where customized notifications applied one group and user belongs to that group and one other but gets customized notifications from both.


Package Transfer

Fixed issue where package upload failed if session expires during upload.


Package Recipients

Fixed issue to ensure all users on a package recipient list receive send receipts.



Fixed issue where folder quota information is not visible after creating subfolder.



Fixed issue where filename did not display hyperlink to file details view.



Fixed issue where administrator user indicator was not visible if administrator was also a group admin.



Fixed issue where internal path to brand logo visible to users.

Browser Support

Supported Web Browsers

  • Chrome
  • Mozilla Firefox
  • Microsoft Edge
  • Safari

Other browsers might work with MOVEit Transfer but are not officially supported.

Additional Clients

MOVEit Mobile

MOVEit Mobile is available for the following devices:

  • iOS (Apple devices). Available for download in the Apple App Store.
  • Android (Android OS devices). Available for download from Google Play.

MOVEit Client

All current versions of the MOVEit Client are supported. Older versions will work with limited feature capabilities. Download the latest versions from the MOVEit Products page.

Outlook Plug-in (Ad Hoc)

  • Outlook Client:

    Outlook 2016 (English, German, French, Japanese, Simplified Chinese, Spanish and Traditional Chinese)

    Outlook 2013 (English, German, French, Japanese, Simplified Chinese, Spanish and Traditional Chinese)

    Outlook 2010 (32-bit and 64-bit English, German, French, Japanese, Simplified Chinese, Spanish and Traditional Chinese)

  • Mail or Exchange Server:

    Ad Hoc Transfer Plug-in for Outlook is compatible with a variety of mail servers, such as Exchange Server 2013, Exchange Server 2010 (32-bit and 64-bit English and German), or Progress IMail 11 (using SMTP). When Outlook & Exchange are used together, Cached Exchange Mode is supported but is not required.

  • Operating System:

    Microsoft Windows 10, Microsoft Windows 8, Windows 7 (32-bit and 64-bit English, German, French, Chinese Simplified, Chinese Traditional, Japanese)

Known Issues

This section outlines known issues and typical workarounds for MOVEit Transfer 2020.1.



Known Issue in MOVEit Transfer



Some virtual folder operations do not extend to the REST API.


For full parity, use the WebUI or MOVEit Automation.

Copyright Notice

© 2021 Progress Software Corporation and/or one of its subsidiaries or affiliates. All rights reserved.

These materials and all Progress® software products are copyrighted and all rights are reserved by Progress Software Corporation. The information in these materials is subject to change without notice, and Progress Software Corporation assumes no responsibility for any errors that may appear therein. The references in these materials to specific platforms supported are subject to change.

Chef, Chef (and design), Chef Infra, Code Can (and design), Compliance at Velocity, Corticon, DataDirect (and design), DataDirect Cloud, DataDirect Connect, DataDirect Connect64, DataDirect XML Converters, DataDirect XQuery, DataRPM, Defrag This, Deliver More Than Expected, DevReach (and design), Icenium, Inspec, Ipswitch, iMacros, Kendo UI, Kinvey, MessageWay, MOVEit, NativeChat, NativeScript, OpenEdge, Powered by Chef, Powered by Progress, Progress, Progress Software Developers Network, SequeLink, Sitefinity (and Design), Sitefinity, Sitefinity (and design), SpeedScript, Stylus Studio, Stylized Design (Arrow/3D Box logo), Styleized Design (C Chef logo), Stylized Design of Samurai, TeamPulse, Telerik, Telerik (and design), Test Studio, WebSpeed, WhatsConfigured, WhatsConnected, WhatsUp, and WS_FTP are registered trademarks of Progress Software Corporation or one of its affiliates or subsidiaries in the U.S. and/or other countries.

Analytics360, AppServer, BusinessEdge, Chef Automate, Chef Compliance, Chef Desktop, Chef Habitat, Chef WorkStation, Corticon.js, Corticon Rules, Data Access, DataDirect Autonomous REST Connector, DataDirect Spy, DevCraft, Fiddler, Fiddler Everywhere, FiddlerCap, FiddlerCore, FiddlerScript, Hybrid Data Pipeline, iMail, JustAssembly, JustDecompile, JustMock, KendoReact, NativeScript Sidekick, OpenAccess, PASOE, Pro2, ProDataSet, Progress Results, Progress Software, ProVision, PSE Pro, Push Jobs, SafeSpaceVR, Sitefinity Cloud, Sitefinity CMS, Sitefinity Digital Experience Cloud, Sitefinity Feather, Sitefinity Insight, Sitefinity Thunder, SmartBrowser, SmartComponent, SmartDataBrowser, SmartDataObjects, SmartDataView, SmartDialog, SmartFolder, SmartFrame, SmartObjects, SmartPanel, SmartQuery, SmartViewer, SmartWindow, Supermarket, SupportLink, Unite UX, and WebClient are trademarks or service marks of Progress Software Corporation and/or its subsidiaries or affiliates in the U.S. and other countries. Java is a registered trademark of Oracle and/or its affiliates. Any other marks contained herein may be trademarks of their respective owners.

This document was published on Friday, April 30, 2021 at 09:15