I know some of you who have joined are currently evaluating to see if GoAnywhere is right for your needs and many are already using GoAnywhere. So, I do want to invite all customers to join our GoAnywhere Insiders community, highlighted here on this first slide if you haven't already. It's a place to learn more about the product, connect with other users, and complete challenges to earn points and get prizes. So, to sign up you can go to insiders.GoAnywhere.com and join with the code GAinsiders. We've actually already had over 300 customers in the community and it's been a ton of fun for us to interact with many of you and hear how you're using the product.
All right, so onto the next slide I'm here with my co-host Heath Kath and Chris Spargen. Can you guys both say hi and do a quick audio check for me?
Heath: Yes. Hello everyone.
Chris: Hey, good morning and happy hump day.
Brooke: Yes, good morning. You guys both sound great. Perfect. So as I mentioned our topic for today is EDI and AS2. Before we kick things off just a couple reminders. We do have this event scheduled for an hour. We'll try to leave some time at the end for questions, so if you have them you can submit them through our questions pane. We’ll be answering questions throughout the webinar as well. We are recording the event so if you'd like to re-watch or share with a colleague afterwards, we will send you the link within the next day so you can do so. Lastly, you'll see a quick survey pop up at the end of the presentation do fill that out. You can enter questions, you can ask to chat with someone from our team, and it's a good way for us to get feedback about if you found the content helpful.
All right, let's go on to the agenda slide and I will go through that on what we have on docket for today. All right, so we'll start by talking a little bit about our 2019 MFT data quadrant to give you all a heads up on that resource. We’ll go into centralizing MFT and EDI talk a little about AS2, talk a little about EDI and then the bulk of our presentation will be a live demo with some time for questions at the end.
So with that let me introduce our presenters for today Heath Kath is a Senior Solutions Consultant at HelpSystems working on the GoAnywhere managed file transfer product line. He provides pre-sales support specializing in demos and proof of concepts
Chris Spargen is the Manager of Support and Services that HelpSystems working on the GoAnywhere managed file transfer product line as well, and he has worked all facets of support and services and he now has the pleasure of leading two great teams that focus on the customer experience. So with that I will let you guys take it away.
Heath: Sounds great. Thanks Brooke. All right. Well with HelpSystems here you know, we strive to be the best and you know, we truly care what our users, our customers really have to say.
Info-Tech category reports provides a comprehensive evaluation of popular products in the managed file transfer market. In fact, early this year, this past April, Info-Tech research group conducted analysis of managed file transfer solutions reviewed by the users of softwarereviews.com. GoAnywhere MFT finished as a leader in the MFT quadrant here in the top right corner as you can see. With the highest composite score of nine point zero out of ten and the highest net emotional footprint of 92 out of 100. Now, well above some of the other well-known MFT providers.
Our customers, you know, the constantly tell us how easy GoAnywhere makes it to simplify and to secure their file transfers. We're excited to see their satisfaction, validated now by Info-Tech research group, and we really hope that it does spur more organizations to consider GoAnywhere as that leading MFT solution in the market.
You can actually learn more by reading the Info-Tech category report firsthand, you'll see how GoAnywhere has received the highest scores in vendor capabilities, product features, quality of features, product strategy, and rate of improvement, vendor support, ease of data integration, and ease of implementation, and so much more out there. So take some time and take a look at that. You'll find some really good information out there.
Centralizing Secure MFT and EDI
One of the key areas is to be able to centralize solutions, and centralizing security and EDI with a single solution is also a kind of a major key here. A solution like GoAnywhere MFT can make your process that much easier to set up, to manage, and to control. HelpSystems is a leader (over here in the left hand side) to really enhance your experience or on your manage file transfers and HelpSystems and has enhanced GoAnywhere Managed File Transfer solution with new PeSIT support for the secure file transfers. As the software and service provider with the fastest-growing MFT solution in the world, really, it's hard to keep up, and Chris can attest to that as well, HelpSystems has been recognized, in a growing area, the need for that piece of support from many European customers.
Now in version 6.1, GoAnywhere gives leading organizations that confidence to transfer their files securely using that PeSIT protocol. Many organizations, particularly banks, need to use PeSIT for their file transfers. Now whether it’s the trading partner, they may require secure FTP, AS2, PeSIT, or other protocols GoAnywhere can help them securely move those files as they need to.
GoAnywhere customers are also very excited about the new simplified data mapping now in 6.1, which we’ll definitely dive into in a little bit, but it's another major feature in 6.1. A realm that simplified data mapping traditionally their MFT tools don't offer encryption and EDI in the same tool. It really frustrates many organizations who wish to decentralize these tasks. Well GoAnywhere offers both in the same platform, expanding the software's existing EDI capabilities.
With version 6.1, we actually offer X12 and XML data translation for reading writing and mapping X12 and XML files between your databases for everything from shipping orders to your purchase orders.
With GoAnywhere’s GUI interface, you'll find that it's pretty intuitive. It's easy to use with drag-and-drop double-click features and options all with many built-in features allowing you to simplify, to automate, and to secure your file transfers.
GoAnywhere’s easy to use out of the box offering, Cloud connectors if needed, you know, maybe a trading partner requests an important file and you need to share it in a folder in Dropbox. Maybe you have billing information that you need to update in Salesforce. All of this now can be done automatically.
GoAnywhere offers Cloud Connectors like Google Drive, SharePoint, Service Now, Microsoft Dynamics 365, Azure, JAMS, OneDrive, and several more.
(We're hearing on someone's dog bark if you want to mute that line. Okay. Thank you.)
Ensuring the privacy, right here in the top right corner with Protocols and Encryption, ensuring the privacy and integrity of your data is vital. Whether stored to disk or transmit outside your organization, sending in the files transfer of sensitive data is vital for compliance, you know with PCI DSS, your state privacy laws, and federal regulations such as HIPAA and Sarbanes-Oxley.
GoAnywhere MFT provides FIPS 140-2 compliance mode and when enabled it actually permits the only permits the use of FIPS 140-2 compliance ciphers for SSL and SSH protocols.
GoAnywhere MFT offers encrypted folders for protecting files at rest using AES 256-bit encryption, Open PGP, and GPG for encryption, and DKIM files for public and private Keys. There's also SSL for sending encrypted files transfers or over AS2, FTPS, and HTTP protocols. You also got SSH for sending encrypted file transfers over Secure FTP and SCP. And even the capabilities to zip, compress your files, with AES for compression and creating files.
GoAnywhere is browser-based, allowing you to easily access reports, dashboards, and detail audit logs. Another addition to HelpSystems capability of looking at information on the dashboard is a solution known as HelpSystems insight, another way to look at your GoAnywhere platform, your environment. The benefit behind the Insight solution for dashboards is the capability to look at multiple installations of GoAnywhere on one single pane of glass.
Also, GoAnywhere can be installed on a number of different databases, different platforms. You know, if you’re on prem or if you’re on Cloud, spin up your own VM. Install the software on platforms like on a Windows, Linux, IBM i, AIX, Solaris, Unix,and so forth. It's platform agnostic, you know, it doesn't matter where you install it. It's browser-based. So it's going to look great and across the board again, no matter what platform. But then in turn this, allows you then to use the browser of your choice. I.e., Firefox, Chrome, or whatever your company may require you to use and to administer the product.
What is AS2?
Heath: At this point I'll let Chris speak up on AS2 for us.
Chris: All right. Thanks, Heath.
Heath: Thank you.
Chris: Alright, so welcome everyone and we're going to delve into what AS2 is. So, just for a little historical context on AS2 and what the protocol is. So, it is based on HTTP and S/MIME files are going to be encoded as attachments in a standardized S/MINE message, also called an AS2 message, and so, you know originally when this was rolled out around 2002 – 2003, there were some major retailers like Walmart was kind of the first retailer that dove in and started utilizing AS2. HTTP was a little more, I guess you could say pertinent, back then, but as you know security has really grown and become a hot topic over the last decade, more and more vendors have moved to HTTPS. So you primarily it does operate over the HTTP protocol but HTTPS is, you know, what we would advise people to utilize to offer multiple forms of protection as you're transmitting EDI data.
So, in addition to that, you know, I think the some of the business use cases of why AS2 initially, when this came out, it was primarily to cut costs by using the web for EDI file transfers, you know, instead of having to use expensive vans and traditional EDI, taking advantage of the .com and onset of the internet, just made sense. And yeah, since Walmart kind of, you could say, championed this, ever since then you just had more and more major retailers falling in line with this Amazon, Target, Lowes, Bed Bath and Beyond, and you know at this point thousands of others have followed suit.
So yeah AS2 is a neat protocol: it offers encryption, you know, end to end as I said, there's the ability to operate over a secure tunnel using the HTTPS protocol in addition to that. The AS2 message is encrypted and signed, a similar concept to PGP in that you share with the vendor your public key and utilize that to encrypt the AS2 message as well as embed digital signatures using your private key, and then there's receipts, similar to if you walked into a store and bought something and got a receipt back. There's receipt confirming that the server has received a client’s AS2 message. And then I'd like to also throw out the, you know, we, as you know, supporting the GoAnywhere MFT product, developing it, we've actually rolled into the Drummond Certification process, which really just strives to deliver a certification that validates vendor’s compatibility or interoperability with one another. So GoAnywhere is Drummond Certified, we've been doing that for a number of years now and this just confirms our commitment to making sure that our AS2 solution is on the leading edge. So you can go to the next slide, please.
AS2 Client and Server in GoAnywhere
So we did cover a lot of this earlier, but we do package the AS2 client and server into GoAnywhere. I didn't mention it, but AS2 is a one-way street or communication and that a client will only post. It's not like FTP, where you can download files from an AS2 server, you do post AS2 messages to a server and then these messages can contain one or more files.
Some of the awesome functionality we have with FTP, SFTP, etc, protocols in terms of auto-reconnects and retry attempts that exist with our AS2 resource as well. Obviously, we're talking about EDI heavily on this and so that's another use case from the client perspective, is sending EDI data and XML as well. You have an opportunity to authenticate with SSL certificates. You can authenticate with the user password. You can require both, you can also, you know, as I stated earlier there earlier, years ago a lot of people were using HTTP, sometimes we do encounter legacy deployments that still are requiring HTTP only and then they use actually the message space association, so they sign their AS2 message and that digital signature from the SSL certificate serves as a mechanism of authentication. You know, I'd prefer to see that being HTTPS, you know, it doesn't make any sense to not take advantage of an encrypted channel and protect it twice. But you know, that's kind of our best practice recommendation. Obviously, we are not in control of all legacy solutions But ultimately what I want you to hear is that we have a a very flexible model and how you can utilize AS2 and GoAnywhere.
The same audit logs that some of you may be familiar with, FTP or HTTPS, that same audit log capability applies to AS2 as well. And then you know, we do provide you with the ability to handle unlimited AS2 partners within your organization, and then I think MDN receipts that asynchronous and synchronous reference, that you see here in our bullet point, refers to MDN receipts and basically you can get an MDN receipt synchronously, which means within the same connection, or asynchronously, which means in a separate connection, and we support both models of asynchronous delivery which includes the email as well as URL. So, that's a quick hit on AS2 client and server in GoAnywhere.
Heath: Thanks, Chris.
What is EDI?
Heath: All right, excellent. Well the next here is talking about this EDI. EDI being the electronic data interchange, is the concept of business electronically communicating information. That was tradition. It communicated on paper such as purchase orders and invoices.
It's a flat file. It's a flat file format that trading partners used to send and receive business transactions. We got computer to computer, which now e-tag replaces the postal mail, the fax, and email. While email is also an electronic approach, those documents exchanged via email still must be handled by people, you know, rather than computers. And having people involved really slows down the processing of those documents and of course, it introduces those errors. Instead, EDI documents can now flow straight through to the appropriate application on that receiver’s computer, you know. Maybe an order management system, and then the processing can then begin immediately. There are actually over 300 different EDI file formats or transaction sets that trading partners or business partners can actually select and agree to use upon each other.
The information can be translated either with in-house software or via some EDI service provider to translate that EDI format along that data then to be used by the internal applications and then be able to, you know, straight through processing of those documents.
Several types of businesses, different organizations today that handle EDI data from banking, technology, retail, healthcare, and more. Chris threw off a list for you guys as well, but there's businesses like 3M, Citibank, UPS, Amazon, of course he mentioned Walmart as one of our bigger customers out there. And then the advantages of EDI are from speed, you know, the information moves between computers virtually instantly with little or no human intervention. Accuracy, you know, the information exchanges without having to be re-entered manually, no bad data, no invalidated data entered at all. And then overall, just that time savings, you know sudden things up managing the solution there are the transfers.
EDI Features in GoAnywhere
As I mentioned earlier, you're able to centralize secure MFT and EDI with GoAnywhere MFT. It's an all-in-one solution GoAnywhere MFT will make your processes all that much easier to set up, to manage, and to control. Those traditional EDI tools, you know can be very complex and very time-consuming to set up and manage. With GoAnywhere, the organization’s that need the EDI file transfers will find that it's really easy to read, to write, and to map out the information and to move those X12 and XML files between the databases. Some of the other benefits around GoAnywhere and EDI, new in version 6.1 is the flexibility and the ease of use to help with those XML and X12 data translations.
GoAnywhere has now added a Read EDI X12 task to read X12 files into a rowset variable, which we’ll be showing you just a few minutes, which then can be used in your subsequent task to insert data into a database or convert into other file formats.
We also created a Write EDI X12 task that allows you to read data from the rowsets and then turn around and write it into that EDI X12 format of file.
With the new data mapping options, this allows you to visually map your data between your rowsets and your files. Out of the box integration, new in 6.1, we have over 6,800 X12 transaction sets definitions within the online marketplace. Simply download the definition that you need and use it within your projects to translate your goals X12 files.
Within the Advanced Workflows and within GoAnywhere EDI file translation capabilities, you'll now will get a browser-based EDI mapping tool, data translation to and from the export file formats.
A starter pack of 6 transaction sets, you get to choose your pick and choose what six you really want there, and then ability to purchase over 6,800 additional transaction sets. So there's a lot you can pick up, a lot you can do to customize for your needs and your environment. You know with GoAnywhere’s built-in EDI features, you know, you can actually centralize your encryption and data translation right within that product, within GoAnywhere. There are no separate tools needed. Again, it's that all in one approach, again help your time, save costs, where other traditionals, you know require a lot more hard time sets of coding, and setting things up. GoAnywhere has other features like encryption, automation, and reporting work right alongside those EDI file translations to really ensure your data is protected and streamlined 100 percent of the time.
Major New Features in GoAnywhere 6.1
As for some of the new features that just came out here and GoAnywhere in 6.1. The first one is kind of talking about really it's an area of your project designer. We've actually enhanced X12 data translations. It's a form of EDI reading and writing X12 EDI files. X12 is probably one of the forms that we supported by the more common ones out there. It's very popular in US-based customers like Walmart for shipping orders and purchase orders. The new user interface allows you to map data between the databases and these fields and the field itself.
The core updates are actually within the engine itself with GoAnywhere providing this drag-and-drop capability to map it out, and you'll see that here shortly. The data mapping wizard really getting some subset feature for popular formats, including X12 and even XML by the way, so it's not just X12. It's browser-based mapping. It's available within the customer portal, within the cloud connectors. We can actually download install it.
Jumping on the next one, we got the administration granular permissions for admin users. So we've actually designed it and it’ll give you the opportunity to do some additional rowsetting within your app instance. More granular about the actions that the admins can perform like add, update, delete, view and the objects they can really just access you know, or what users, what reset options they have. An example use case: promotion. To be able to promote but do nothing else within GoAnywhere. Able to create custom roles for the users is probably the most robust security authorization of any product out there on the roles management that we offer now. In fact, that was rated I think number one within the early review I was talking about, you know, where people wanted to be able to view but not change anything.
It really does a lot of other use cases. We have SOX and pack you'll need third parties just to perform selected actions just a narrow down what they can really do.
Web and administration clients built into the product, built in SMS and email one-time passwords for multi-factor authentication. Yes, you know, we already support many forms with radius. But this one here is it's really one more option, its built-in. You don't have to use Google Authenticator, GoAnywhere will now send a six-digit code if enabled via text message.
Service level agreements added to the ability to specify the SLAs is within your reports. For monitors, triggers, projects, jobs that have failed to meet the SLAs can trigger further events within GoAnywhere. These SLAs will be actually added with an advanced reporting module. And basically, as you know, if something doesn't occur, if you don't receive a file by a specific time from your trading partner, send out that alert.
PeSIT file transfer client, you know, we've upgraded the Nettie version from 3X to 4.1 to support the PeSIT library. This is mainly for the French banks, but at this time though I don't think we have any US customers using this yet. But definitely if you work with any country overseas, it's similar to AS2 that's over TCP and SSL.
Database-driven values. We've added the ability to populate secure forms drop-down list from your data within the databases. So, it's ad hoc in a sense. It's live. You can actually select your data and bring that back to allow you to select those values within your customize your secure forms. So it's all truly dynamic.
Enhance the functionality to properly refresh online type licenses and the view of license page when using the online licensing and running within limited mode, but there's a huge list of enhancement. See I'm just kind of scratching the surface, if you want get a full list of all the features all the all enhancements out there check it out our release notes on our website for more of that information.
All right time to switch over.
Well, as I mentioned with our latest release of 6.1, you know, we have ramped up the ease-of-use around those EDI file transfers and the new EDI mapping technology. And as a side note, I kind of hinted earlier the same type of capability within mapping can also be over your XML files. So if you need to do some reading, writing around your XML files, we have that mapping capability. I'll be showing you here on the EDIs that applies to that as well. To start off with I'm gonna jump over.
And let's go into Systems into Add-ons. This used to be called Marketplace. So if you have an older version of going to be me if may have seen Marketplace there. But I'm able to browse for the different Cloud Connectors as you can see here in the screen, but in the top right corner the Cloud Connector drop down you'll have an option out for the EDI X12 transaction set.
And as I kind of hinted earlier, there's a lot out here we have about 6,800 transaction file set formats that are available for these EDI file transfers. You can pick and choose you know, which six you want to start off with.
And then of course you can always acquire additional ones as needed. These transaction sets. These are all very popular, one is the 850 purchase order and you can see the all different formats there, 4010, 4020 Etc. So again, you can pick and choose what you like what you need out there. These transactions are going to broken down by the codes and versions. And we use some of these can have over hundreds of different files that's available for you to pick from.
As mentioned earlier we can enhance these X12 translations now with the new user interface wizard that allows you to really easily map your data between all these different fields and different formats each one of these have that are provided within it.
So I'm going to jump back out of there. Let's first want to start off by to kind of get an idea what these EDI files look like. So let me jump into the file manager and let's take a quick look.
Alright, so here we have an example of an 850 file here for my file. It is a flat file. This is example of a purchase orders. Again. It's indicated here by the first three letters. I say we can see it's an 850, format of 4010 it's all kind of laid out, you get the header information on top here and the start of that information the start of the 850 with all this information within this particular record, the particular purchase order, and eventually come down to the end of it.
Typically, this flat file will have the same information repeating over and over and over again feature the orders out there. And to learn more just a little side note here to learn more about the information, about these EDI files and all that, there's a EDIBasics.com to help you kind of break it down a little bit better. With this file in hand here, you know, the idea is how we can actually easily read it and map it out and parse this information. That's kind of our goal.
And how we set this up within GoAnywhere, we've actually have a process we have this file has been uploaded and we have a trigger in place that's going to be under event to pick that up. So let's jump into triggers and we step on it trigger to basically monitor for that AS2 event.
So this is that AS2 message received successful kind of grayed out at this point. Well harder to read there and we're looking for the end of service.
You can define the attributes as needed. If you're looking for certain trading partners etc. Here we have the username AS2 partner, but you can break it down or add additional conditions or different attributes that you looking for from the organization different ports, addresses, and so forth. If that's true, you know if that event it all matches up so far, then we can jump to the action tab.
And with an action we're going to call a project.
We're going to pick up that file and pass it into a variable called AS2 File. This variable name will be passed to this project that will be executing here on top. That project is this X12 file Reads Example.
So again, these two messages received those trigger events are instantaneously sent up, they're going to its quick is no delay at all and this in turn on run this project. We got the variable being passed to this project from that trigger AS2 file. We're going to run through this picking up that file. We're going to read that file. So here's that variable again. And here's that new data mapping wizard that you see here.
What we're going to be doing through this wizard is we're going to try to write are building these different roles sets, as you can see there's a list here already created or defined these rowsets allow you then to write it out to take that rowset of data those rowset of records and write them out to a file.
Chris: And it could be a file. It could be a database, you know rowsets for those of you that are familiar with the product. We've had them around for a long time. And yeah in the same manner that you could use it for writing the XML, Excel, CSV, fixed width, or inserting to a database, or scrubbing it, using modified rowset, all that same functionality exists that hopefully a lot of you have come to enjoy and appreciate as part of the product.
Heath: Absolutely. That's absolutely as exactly it.
We're in this graphical design, rhis mapping, and this may look like a lot here, but help you out understand what you're looking at. Let me just grab one of them and just kind of move it down just a little bit getting this to make it easier for you to read and see what we're doing.
And it is N1 data. This is the name of that rowset, a variable holding the records, and for this N1 data told information on the customer name. So we got the name, the code, address etc, all within this rowset what's really easy here in a sense of this mapping the power behind it. I can come in here do a right click add another row set. So, you're going to end up building these rowsets.And then going to select what information you want to put in that rowset. Just kind of grab and stuff on the left hand side. I'm going to expand the carrier details. So maybe I'm going to grab some information on the carrier and what they have what information you have within that particular file. So all you have to do is grab and drag and drop right into your rowset.
So whatever information you're looking for just drag and drop it right into it. It's pretty easy to grab that real set and to build that rowset. I would definitely recommend changing the default rowset name there to what you're actually looking at carry in full. Save it. Apply it.
And when I jump back, if you look right here in the upper rowsets, here's that carry info. So we get the information out for the carrier and then you can add in that additional task to write it out. And all these tasks are doing, if I select this right names and addresses, is grabbing that rowset variable and write out to a file. So they're pretty straightforward.
At this point, so if the file was uploaded to you and you know, get the receive, you can turn around and look at the logs. Let me go ahead and actually exit out.
You got the audit logs. So you guys, you see that information. You'll find the tracking of it over here in the left hand side. You got AS2 service logs. You might be cheating hoodie, maybe reading the information on the page here, but I'll show you where to get to or at least another way and on these two we can see the upload successful.
We have information. You can actually hover over it and see the view that actually MDN, the receipt display the trigger logs for this particular event.
Or view the audit logs.
Taking a closer look at the audit log. If you scroll down you can verify the information around the IP addresses, the ports. It was synchronous or asynchronous. So here with asynchronous. Scroll down further. We got the file, the actual file path and the file that was actually uploaded. Header information. And then the trigger where it all kind of started our end to process that EDI file, and what's really cool, right here's a new option view the trigger log. I can bring up that trigger log so you can see the event ID, is the time the remarks, and even the job number that was kicked off. This time I can quickly copy that job number, I go into completed jobs.
Normally, you would have a lot more jobs. You probably wouldn't see right there on top of the list. So ignore that for now, but you can use the filter, and filter this information as you need to. How do you want to break it down, or how do you want to search for it? By status, by user etc. by project. I'd rather a job number. I can actually simply just paste it in there. Search for it no matter where it's at. I can find and bring back up, and now we can look at that job log.
And within the job log, kind of a key point is to point out, here is that variable that AS2 file this way all started from that trigger passing the values within this variable to the project and you can see that value right here for you, the 850 example EDI file. And then course the processing of it straight down. What happened what we did the files we created, etc.
Jumping back into the projects. Let me walk through her kind of show you around the writing on option here. So that was a read. Good reading the EDI file and creating your different file formats. And they really is just kind of the reverse. You know, we're taking your files were reading the data. The first one is doing a read of the purchase order information. Here's the rowset variable that we're going to create after read that file.
Package information has its own rowset variable that N1 was a customer information the customer name and address. That information is being collected and written to this particular rowset variable.
And then we have that write EDI X12 task. And here too, we allow you to use that mapping option. So here we're trying to make it easier for you to map this out. Lay it out how you need to we got those rowset variables, that's right below the actual link here for the data mapping.
And now you can see the same type of format here kind of reverse. We have the rowset variables and left-hand side. Your data sets all listed here on the left-hand side and then that purchase order that we’re mapping to. So same type of thing here. If you wanted to, I can add additional rowsets add another file that I want to map into this particular purchase order just like before put kind of reverse order here.
And the last one here is the AS2 send EDI. We kind of break this down for you. On the write EDI file, we actually put that information into an output variable called EDI file. That variable, that EDI file variable is then passed to the next task. And from there I can read through it. We have the options here to define the content type. So you can slide a pick and choose what you need. Define your subject lines is optional there, but request receipt. None, signed, unsigned, destination. Here you can actually pick and choose if you want the job log for your synchronous file, synchronous email, and URL, both asynchronous.
Chris: Yep, and then so that's going to be where we were talking about earlier with the different types of MDN types, you know, some AS2 vendors only support URL for asynchronous. GoAnywhere does support email as well. But as you can see there in the verbage, we do say please verify that the AS2 server supports this option. So this is just going to be your option of choosing. Do you want to save this MDN receipt to a file? Do you want to save it within your job logs, which you can configure and say, you know, I want to save all job logs for 90 days. It's kind of going to depend on what your policy is for that. Or if you've got the AS2 server functionality as well, that's where you can specify the URL which we have done in this case. We've said we want to request an MDN receipt back to our AS2 server. And if you do have the GoAnywhere MFT AS2 server then that AS2 MDN URI that you can see at the end of the hostname that's going to represent sending that MDN receipt back into your audit logs for AS2. So you can go ahead and execute this Heath and we can show them what that looks like inside of the audit logs.
Heath: Sounds good. And we can get from here as well or from the audit logs we saw earlier. And we’ve got of course the project information, parsing out the data. There's all different variables as was defined there earlier in the project. Opening the files. Okay. Well here we've got the AS2 request was made, right there for you.
Chris: Yep, and in this case because we did not request the synchronous MDN type which would have been back through the job log. We are getting that the status of the receipt is unknown. So, this would be our job log for execution. If we go over to reporting, if you want to go up into the audit logs, because we chose to send this MDN receipt back to our AS2 server. This is going to be where we’ll actually validate that occurring AS2 can see there, there is a event type for MDN received. Left and that is going to represent. Yep. You can click on that MDN receipt, that's going to represent the MDN that was received back from the S2 server that we sent the message to.
And you know just like any of our other audit logs these are configurable to whatever your needs really are. It will obviously write this out our database table and then if you want to go to like reporting and log settings, Heath, this show quick quickly the retention periods that you have available, so this will be under your services.
And there you can see AS2 down there. We're keeping that for a year at a time. And then we do purge those, we've always have this option, same with AS2 as any other service. You can write these out to the file system, you know, if you need to write those out somewhere to save them off for however many years you need. But yeah, so that's kind of what that process looks like for the MDM going asynchronously.
If you want to go back into the project Heath, we can flip that and we can show the synchronous option as well.
And then similar to earlier. I like to reference PGP, just because the concept is so familiar. Yeah, you can choose job log there, but that request receipt being signed versus unsigned really the exact same concept of somebody embedding a digital signature on a PGP encrypted file that they send you, or in this case embedding that digital signature onto the AS2 message and then vice versa in this case on the MDN receipt that's going back, it validates the integrity in that we know the sender that is giving us either the AS2 message or the MDN receipt so you can go ahead and execute again on this.
And then from here you can hit view job log, and we'll be able to see that right in the job log. And the other option is if you want to if you maybe have an archive directory that you want to spit these MDN receipts out to and store that way that's where you probably realize that file option. There's your receipt. Little nicer UI in the audit logs, but that's my opinion.
Heath: No looks good. Excellent.
Chris: So do you want to maybe roll over into showing them the AS2 resource and some of those definitions?
Heath: Absolutely, I’m actually going to show this really quickly here is since I'm right here at this point. Won't lie just to point out really quickly if you haven't noticed yet, if you’re not current with the product here we have those read and writes XMLs and EDI options right there for you to bring into your projects. So that's where actually originated from so I just wanted to point that out and yes, let's go to resources, AS2.
Chris: You can go to the support cluster resource R1 we defined for this. All right. So when you're formulating your resource, there's a couple key components that you're going to want to gather from your partners, and one would be, you know, I've in years of supporting this I've seen some AS2 servers where they just provide a hostname, and others where, like in our case ours is also attached with our HTTPS service which has the web client, Secure Folders, GoDrive, ect. functionality.
And so AS2 / receive URI that is a must, because that's going to denote that this is this post is going to our AS2 server versus our HTTP server. The identifiers, this is two things that you're going to agree upon with your trading partner ahead of time and really it's just a unique identifier. It's not like there's a registry somewhere where you have to sign up. Yeah. It doesn't operate that way at all. You really just need to agree upon on what your AS2 identifier is going to be, what their identifiers going to be, and then we can roll that advanced tab next, because this is where a lot of the more secure aspects of AS2 are going to come into play.
So you've got a lot of options here, obviously as we said earlier, you can encrypt your messages and this case you can see we're using AS2 56 and we are utilizing the public key or certificate that we received from this AS2 server. Then on the message signature area, you can see we're signing using Chaat 256 and we are actually utilizing our own private key and that's to embed the digital signature which the server will use to authenticate or validate that this AS2 messages from our expected recipient. If we go over to, and I also may be through out there that that certificate authentication field there that's currently blank, that's an additional option. If you don't want to use like user password, you want to use an SSL certificate for authentication, that would be at the SSL handshake layer when connecting to that HTTPS service before it arrives at the AS2 server. So, there's a sometimes there's some confusion between the two message signature is the S2 server is receive the message. It's looking at the signature at that point, the certificate authentication happens at the SSL layer when you know connecting to the HTTP protocol. So just wanted to point that out if you want to go to users and web users.
And we are looking at the type in EDI and your search. Go to your reporting and audit logs, we’ll just show them how they can access users through the audit logs. So just click on over on the right in the middle. And you're there you go. AS2 partner. Let's click on that manage user.
Alright, so this is going to be then when you're configuring your partner where you're putting some of this information. So if you go to that authentication tab, for example, go to your authentication types below.
On the AS2 protocol here, currently we have this set to password, but if you want the SSL certificate, if you want both for you know, the most secure I would say most auditors would like to see dual factor authentication you could do that. And then if you go over to your features tab, this is going to be where you need to choose AS2 on the folders tab, you would have to grant at a minimum the upload and then checksum permissions for your folders. And this case I dropped it in the home directory, but you're going to need at a minimum upload and checksum and then depending how you're going to handle when a duplicate file arrives. You may need to either choose rename append or overwrite. So, kind of depends on your use case. But if you go over to the AS2 tab next this is where you're going to see that.
You're going to specify “what is my partner's AS2 identifier when they send me messages” and then “what certificate do I want to use to decrypt their message?” So this is really handy when you've got multiple organizations or groups within an organization that have different AS2 identifiers and IDs, is you can break this out. Currently I'm using the default, that's to find out the service level and all of these default settings that you see, they're all derived from the AS2 server configuration. What's beautiful about this is again, as I said earlier, you're able to customize this per user. So if you've got a trading partner that, earlier I brought up that HTTP only, and some you know, if your security team wants you to utilize, if your trading partner says like “I cannot use HTTPS. We only have support for HTTP. We've always authenticated our users based on the signature and not any user authentication at the SSL layer” you wouldn't be able to obvious authenticate them using an SSL certificate in that case, but you can come here and choose whether you're going to require authentication or not. So that authentication, yeah, if you take that if you had to define a partner that was outside of your normal procedures, this allows you to override some of those service level setting. Which is just really flexible and it just helps you, I guess be as flexible with your new trading partners as you onboard them.
So the only other area that I wanted to touch on from AS2 config perspective is if you go to your services and service manager Heath, and edit your HTTP / AS2 service.
All right, and under AS2 recipient, there you go. So earlier when I was referring to these settings at the service level, this is where we're defining the private key that we're going to use for decrypting any AS2 messages. We receive AS2 identifier, if you go to your MDN receipts tab here, this is where we're going to configure, you know, do we want to keep receipts? Do we want to automatically approve MDNs that are asynchronous? Or do we want a manual process in place? And then what certificate are we going to use to sign the MDM receipt that's going back to the client? And then if you go to your message security tab, this is where you'll see, are we going to require encryption or we going to require signatures? Are we going to require authentication? Remember that authentication happens before the AS2 server receives the message. So, if you check that, again going back to the user, you can flip that if need be so if that's a standard operating procedure and you may have a partner to that you have to deviate for opposed to having to have multiple, you know, let’s say multiple AS2 servers or licenses for AS2, you can toggle this at the user layer. And then additionally, we did add this somewhat recently as well, if you just click on the AS2 over to the left Heath in the pane, you can actually add additional recipients now.
So that allows you to if you've got multiple organizations, like I said earlier and you have multiple AS2 identifiers, whereas before you may have had to have multiple MFT instances or AS2 servers available, you can now create and add multiple recipients under AS2. So we've gotten extremely flexible in how we've deployed this. I think it fits in beautifully with how we've now bringing in EDI. And yeah, hopefully this helps you all achieve your EDI requirements.
Heath: Excellent. Thanks, Chris.
Chris: You bet.
Heath: Let’s jump back. And hand things back over to Brooke. Are you there yet Brooke?
Brooke: I am can you hear me? Perfect. Well, thank you guys so much! For everyone who is listening will take some live questions in a minute. But before we do just wanted to thank you for joining us. If you have questions that you want to get in touch with us personally to talk through, our contact information is on the screen. So feel free to reach out we can also do a more custom demo or proof of concept and you can request that on our website or by reaching out to your sales representative if you're working with someone already. And then if you're not already using GoAnywhere, we do have the free full functionality 30-day trial on our website too.
So with our last couple of minutes, we'll take a few questions live for those of you who need to drop off or have already had your questions answered, thanks so much for joining and we hope you have a great day.