About the Webinar
GoAnywhere MFT is a secure managed file transfer solution that offers viable FTP alternatives for all versions of Linux. If your organization operates with Linux, GoAnywhere will automate and encrypt the file transfers that are sent between your trading partners, customers, and enterprise servers.
Join us to explore how GoAnywhere can simplify and secure your file transfers with Linux. In this informative on-demand webinar, you’ll get:
- An overview of our MFT solution
- The benefits of using GoAnywhere on Linux platforms
- How GoAnywhere can make your file transfers easier and safer
- A demo of the automation and protection features GoAnywhere provides for Linux
GoAnywhere on Linux is an all-in-one solution that can eliminate the need for custom programs and manual processes. This dependable enterprise-level software will reduce costs, improve the quality of file transfers, and help your organization comply with data security audits, policies, and regulations on Linux systems.
Brooke: Hello, everyone. Thank you for joining today's webinar on how to secure and automate your file transfers for Linux. If Linux is your operating system of choice. We're going to share some best practices around securing file transfers, along with discussing some of the most common challenges and solutions that HelpSystems offers to secure file transfer and automation today. We hope you find the presentation helpful. I am here with my co-host Heath. Heath, just doing an audio check, are you there?
Heath: I am, thank you.
Brooke: Okay, perfect. So before we kick things off, I will remind you that the event is scheduled for an hour. If you any of you need to leave or drop off at any point, we're recording the event and will send out the link afterwards so you have it. You can feel free to ask questions throughout the presentation as we'll have team members online to answer them and we'll try to answer a few verbally at the end as well if we have time. And last thing, a survey will display at the close of the presentation and if you can fill that out, it'll give us good feedback on what parts of the presentation were most helpful. And you can also reiterate any questions that weren't answered on the call and someone will get back to you shortly.
With that I will run through our agenda quick. So we'll do a little introduction if you're not familiar with HelpSystems will tell you really quickly who we are and a little about us. We'll talk through some common file transfer challenges that you may be facing that may be really familiar to you, as well as best practices then to secure those file transfers and automate them. We’ll do an overview for our solution, GoAnywhere MFT. You may be familiar, you may not, but we'll walk through some of those features with you. Heath will do a live demo as well so you can see it in action. And then like I said, if we have time we will try to have some Q&A at the end. With that, let me introduce you to our presenter.
Heath Kath is a Senior Solutions consultant at HelpSystems working on the GoAnywhere Managed File Transfer product line, and he provides pre-sales support specializing in demos and Proof of Concepts.
Heath thanks for being here and I will let you take it from here.
Heath: Sounds great. Thanks Brooke. Appreciate it. Good morning, everyone. Thank you for joining us. Just really quickly here, you know regarding HelpSystems actually started back in 1982 or so, over 35 years ago. We have now over 750 employees and over 25 different offices worldwide with over 16,000 customers. The majority of the GoAnywhere team is actually located in Ashland, Nebraska, so just south of Omaha, with our headquarters located Eden Prairie, Minnesota – the Minneapolis area, and that's where I'm located at. Our focus here today is really delivering the best cyber security: the automation, the operations management solutions really for all organizations of all sizes, including SMB, government, and Fortune 500 companies.
We do believe in providing our customers with the best customer service. We offer support via email, phone, and online chat. We even do offer some support around the clock, 24 hours a day, if needed, 365 days a year. You'll find that our research and development team, in our Ashland Office, along with support and the majority of the sales staff. Our development team their have a very active schedule with two to three major releases a year. Many, if not most, of those updates are primarily based on the valuable feedback from our customers, our user community itself. And as a testament of our excellent support team, the solutions, and the service that we provide we have almost 99% customer retention and, you know, with my experiences with working with software and customers for over almost 30 years, now, I know that an outstanding, solid, and easy to use product, along with extra support and the team and all that, plays a huge role in this. And we're also part, or a member of, the PCI security standards council which allows us to keep up-to-date with the latest security requirements and policies and helps ensure that our products do stay compliant.
We strive to be the best and we do truly care what our customers have to say. Info-Tech Category Report provided a comprehensive evaluation of popular products in the MFT transfer market. So your managed transfer files. But this is just this past April, Info-Tech Research Group conducted analysis of managed file transfer solutions as reviewed by the users on softwarereviews.com, and they found that GoAnywhere MFT finished as a leader in the data quadrant here with a highest composite score of 9 out of 10, and the highest net emotional footprint of 92 of out of 100, well above some of our other well-known MFT providers out there. Our customers constantly tell us how easy GoAnywhere makes it to simplify and secure their file transfers and we're really excited to see this validated report, this information with report and all that, and you know, some of the key areas that we score the highest in is the vendor capabilities, product features, quality of features, product strategy and rate of improvement, vendor support, ease of data integration and implementation, and more. So if you really want to find out more about information about that, there's a nice report right out here. You can check it out yourself as well.
Common File Transfer Challenges
Well, you know, when it comes to your file transfers, you know, insurance, security, and compliance, while making processes effiecient can be a huge challenge. Do any of these here kind of fall into play with you guys, you know, do these sound familiar?
1. Human Error
First of all, you know, the human error. It's a big problem, and unfortunately many companies are still using PC-based tools to transfer files, and since these are often manual processes, it's prone to human error and risk. For instance, what if the user sends the wrong file, or forgets to send the file? Sends it at the wrong time? This could be an important order, or a key financial document, and this delay could affect your relationship with your customer. What if the user downloads or uploads the wrong file? Or sends it to the wrong trading partner? Maybe they accidentally sent the wrong pricing list with special discounts that were actually intended for another customer? This could be very bad for your business, right? What if it contains sensitive data, and the user forgets to encrypt it before the transmission?
Another thought: who's going to run those manual transfers when the primary user is gone for the day? For instance if they're sick or on vacation. These are the risks that many of you may face today with those manual file transfer processes that you have in place.
2. Inefficient Methods
Secondly, you know, a lot of IT departments have a lot of inefficiencies, you know with the file transfers. They maybe use an old secure technology like FTP, or email to transmit those files.
Now, in order to automate file transfers, a lot of companies have built FTP scripts on their systems. However, you have these scripts have many downfalls and one big problem with them is with your trading partners. If they update their passwords and so you include the set password in those programs, well scripts, and a lot of times those passwords are stored in the clear. Which makes it very vulnerable to attacks if hackers, you know, get a hold of them.
FTP scripts are written by programmers and we all know that's a very expensive resource. To write the script properly the program should be able to code or include in those scripts to perform auto retries and self-connections. Send out error alerts, maybe write out the good detail auto logs. All this here takes more time. Plus, every time something changes, you know say for instance the trading partners, such as the new IP address for the server, or maybe even password, you know or a file name changes or something like that. A programmer has to go get involved to make those changes in each and every one of those scripts.
These are additional costs and they can really add up over time, and distracts your expensive IT resources from other priorities, you know, those other projects. And we have talked a to lot of different organizations that have hundreds or even thousands and thousands of these FTP scripts that have really become unmanageable and almost impossible to maintain over time.
3. Lack of Encryption
The third challenge is this lack of encrypting the data at rest or in motion. Another product, you know, huge problem really with those file transfer today for lot of organizations is that they may have an end-user that jeopardizes sensitive data by downloading it first from a secure corporate server to a less secured PC or laptop, making that data much more vulnerable to attacks.Maybe for an instance the user downloaded to a downloaded a CS file from the server before they use PC tool to send it to a bank. In that instance, the user may forget to remove the file from the PC after they transmitted it, and since PCs and laptops are more vulnerable than back-end servers, the file could be attacked by a would be hacker.
Also, email is frequently used to send sensitive data. When a user sent a file as a regular attachment in an email that attachment is not encrypted by default, which makes it very susceptible to theft.
The users, you know, they have their own free file sharing service, like Dropbox, that they use to send files through without using any kind of controls or audit trails. This area here has really become a nightmare for IT departments. And without having good internal policies in place for your end users regarding your file transfers, you really increase the loss or risk of handling the sensitive data through one of these unsecured methods.
4. No Error Alerts or Audit Logs to Meet Compliance Requirements
The fourth challenge is the lack of being informed, you know, no errors or maybe no audit capability. Finally, another big problem with file transfer today is a lot of scripts and PC tools just don't have good alerts when a transfer fails. Sometimes you may have to wait for your trading partner to call and alert you that they did not receive the file and maybe now, you know, it's too late. With these legacy tools there's often no logs of what and where these files are sent, and this has become a real issue, you know with the auditors since many organizations cannot tell or prove what sensitive files are leaving the organization now. For instance, can you quickly tell what files have left your network on a given date or time? And by what or which user? Because of these vulnerabilities and lack of reporting, the lack of logging that is needed, it's become really difficult to meet the stricter compliance requirements using those traditional tools and processes.
Best Practices for Secure, Efficient File Transfers
What we recommend, first of all, is to move away from that standard FTP and email for sending sensitive files. Instead, use a secure protocol like secure FTP, AS2, and HTTPS, as they offer really strong authentication and encryption technologies to really fully protect your confidential files.
Those files should not only be encrypted when transmitted across the internet and even within your own network, they should also be encrypted at rest, you know, whenever possible, especially if you're staging files within the DMZ, which is the public face and portion of your network.
The automation of file transfers will remove the manual processes and the need for vulnerable PC tools. These automated processes should alert you immediately when file transfers fail. Instead of having to wait for trading partners to tell you that, “hey, I didn't get the file.”
And to help meet compliance requirements, you should be able to keep at least a year's worth of audit logs of the file transfers activity. Plus you should be able to quickly generate reports of those audit logs, you know, maybe filtering by user, or date range, the time range, and file names.
And to bring us all together: we really recommend that you look for what's called a managed file transfer product, known as MFT. MFT solutions allow organizations to control and to secure their file transfers through a centralized framework. MFT covers all aspects of your file transfers, you know within your enterprise and with your trading partners. Now, that's going to include batch transfers between system as well as any ad hoc file transfers initiated by your end users, either with other users or within your backend servers.
MFT systems provide the automation you need for your file transfers, protecting that data with strong encryption protocols, while giving you the audit trails you need for compliance with stricter regulations. So, MFT really does bring it all together and helps you solve many of those challenges I've mentioned earlier.
This leads me into GoAnywhere. GoAnywhere MFT is our managed file transfer solution here at HelpSystems that we've developed and sell around the world, and we believe it's the best enterprise level MFT solution in the marketplace.
This diagram gives you a quick overview of its capabilities of whom we can share files with.
GoAnywhere can be installed on most operating systems. You can install it either on-prem or within your own cloud environment. And then you can use it to connect with all your various trading partners, from customers, vendors, internal systems, and so forth. You can also connect to many Cloud Connectors like Box, Dropbox, Amazon, OneDrive, SharePoint, Google, JAMS, SalesForce, the list goes on and on and on. You can use GoAnywhere to initiate file transfers to send and to accept files with trading partners. So it handles both inbound and outbound file transfers through both batch and ad-hoc requests that can be all be initiated within the product.
On this diagram, you know, it gets a little more detailed in the different types of systems that GoAnywhere can communicate with and how, so if you look down below here in the bottom left corner, we got platforms. As I mentioned earlier GoAnywhere can install the many different databases. It's really system agnostic, you know from Windows, IBM i, and several others including Linux. It's really your choice. It's your preferred operating system.
As for file services, you can use SFTP, FTPS, HTTPS, etc for your file transfers. So let's say you have file sitting on a Windows server or a Linux box or an IBM i. You know, you can use GoAnywhere to connect up to those systems with whatever protocol and credentials you like within the product. And as long as you're authorized to access those files, you can easily then push and pull those files to the product.
We also connect to cloud services. Amazon, AWS, and also Microsoft Azure blob storage. We continue to add custom Cloud Connectors to GoAnywhere, which then allow you to easily integrate and automate, you know, what those popular SOAP and RESTful web service applications. Now, like I mentioned before, we got Salesforce, Box, DropBox, Microsoft Dynamics, we have web docs. There is a lot of them out there.
GoAnywhere also connects up to your back-end database systems. You may have information stored in certain database tables. We can connect to your database, your SQL servers, MySQL, DB2, Oracle, and so forth to easily extract the information from your table and then translate that data into various formats.
We can write out to an XML, a text file, Excel, JSON, EDI, and other formats. We can build these files and then send them off to your trading partner, or maybe you need to parse them out and then import those into your database.
Now as part of the overall workflow, GoAnywhere can also call out to your existing applications. You know, maybe you have some existing scripts or programs on your server which you need to call. You know, we can call those applications, even passing in parameters, getting result sets back, and process them through GoAnywhere’s workflow.
Last but not least here in the bottom, you can also install what is called GoAnywhere Agents or MFT Agents. Agents allow use all you to connect to remote servers as if it was a local connection, you know, maybe it is no good way to connect to that remote server. Maybe they are just not able to set up that remote SFTP listener. These agents can make it very simple and efficient to connect to too modern for files and run file transfers between you and your trading partners using GoAnywhere.
We're kind of time of GoAnywhere as a client, where you're initiating the file transfers: both pushing, pulling three different servers. GoAnywhere can connect up to all these different systems using whatever protocol we know whatever necessary protocols you need to use. Secure FTP, FTPS, HTTP, you name it. But then you're going to be able to perform multiple steps, multiple things within these workflows to easily automate and manage your push and pull files from these systems, your different trading partners, and customers.
To be able to easily encrypt the data or maybe decrypt the files. For instance, we support the open PGP encryption, that lets you encrypt and decrypt the files that may have encrypted with that same protocol. It also supports various compression technology. Maybe the trading partner needs you to zip the file with zip 2.0 standard. We also support Gzip and tar for packaging and unpackaging files.
We talked about data translation a little bit already, but we're able to read and write. GoAnywhere allows you to map data columns between different data sources if you need to massage that data before importing or exporting the property.
Automation is a key. Now, you say your workflows up. One way to automate is by scheduling the file transfers within our product. This way you can easily run those file transfers, or automatically encrypt data on a daily, weekly, monthly, basis. You can actually incorporate your holiday. We have option to create your own calendar. Then again, once you have a schedule it’s automated. You don't need to use the kick it off. On AIX using Cron Jobs. Either way, we have commands and APIs that the come with a product that allow you to make the request to GoAnywhere from your existing schedulers and applications.
Plus, you can pass in parameters for additional flexibility. Maybe you need to pass in different file names, connection properties for your trading partners and so forth. We can accept those into the workflows, run those jobs, and pass the results back to your application. You know, that way you're going to get this centralized managed file transfers, but you are in control. You're going to you will be able to drive or initiate those file transfer from your own applications if necessary.
The folder monitors is another great way to help automate your transfers. Simply put we can watch folders on your systems, and this could be a local network or even a remote type of source here, but we can watch these folders within the different locations for a file being dropped off or modified since the last time you checked. At that point, if something is found in there, we can turn around, kick off a process to move that file, to encrypt it and zip it whatever you need to do for your trading partners all done automatically.
Now on the right side, this is more or less where you have GoAnywhere set up as a server, as a listener. Besides the up on file transfers I talked about earlier, you know, here you can also accept inbound connections from your trading partners. If they need to connect up to you. Let's say via secure FTP or HTTPS, for an instance to drop off files, or maybe even to pick up a file that you have waiting for them. They can do this on an ad hoc basis or they can have their own batch processing place where they automatically connect up to your system to do those transmissions.
Now GoAnywhere also supports file syncing and sharing. So you may have users that need to share files between each other, allowing them to easily share files and automatic to keep them up to date, keep them in sync with other user, another systems. It's a great way to replace service applications like Dropbox for an instance, you know, or the other cloud file sharing tools of which you really don't have that much control over. With GoAnywhere, we have all that same functionality, but we're going to keep control those files. It's going to be fully audited and fully secured. We're going to encrypt the files with AES 256-bit encryption both at rest and in transit, so it's a great alternative for the cloud file sharing.
We also have called what's called Secure Forms, where you can have your training partners fill out these custom forms, maybe you need to collect data from them along with attaching some files. That information that you're asking for could be like an account number and ID, you know, just their full name, their address, whatever we might need. That information that can turn will be picked up and passed back to your automation within GoAnywhere. It can process the information, it can validate it, and then process information and needed.
We also have Secure Mail, where you can send out secure links to the files through email notifications. That way you don't have to send a file through as a traditional email attachment, especially if it's a large file, or if it really contains sensitive data. Instead we can strip that file from the email, send out a secure HTTPS link, and then your recipient can simply click on the link to securely retrieve that file over HTTPS. You can even require a password to it as well.
We also have a very good partner management system in the product. You can set up your you know, your trading partners to authenticate against active directory or LDAP. We have SAML authentication or you can authenticate against our own database and for each trading partner, you can indicate what folders they have access to. That can be on various file systems. You can also indicate what IPs they can log in from. What date and time ranges, you know, so it's all very comprehensive and very securely set up therefore if needed. Now, if a problem does occur, you know, GoAnywhere can send out alerts to one or to many different individuals. As an example, you know, maybe you have trouble connecting to a server, or one of your system is having issues to connect another system. First of all, we do have built-in auto retry so we can try to reconnect up within a certain period of time. But if it still can't connect up after the threshold is exceeded, then it can send out an automatic alert, a text message, or write to a syslog letting you know precisely what the problem is.
GoAnywhere can also alert you if an SSL certificate or a PGP key is about to expire, so we can notify you in a day or several days in advance before they become an actual problem.
Everything is going to be audited within GoAnywhere. We are tracking all the file movement both inbound and outbound, ad hoc and batch request. Plus for logging, the admins, when they log in, the changes they're making this information is being logged in in a central database and you'll be able to generate reports as needed. You can quickly see information by user, date range, by file names, and other criteria to let you quickly see what files are being transferred in and out of your organization.
This is key information that you can give to your auditors. In fact, you can give auditors view only rights to our reporting module, so auditors can log in through our browser interface and only query and view that information themselves.
GoAnywhere MFT: Enterprise Features
Just a quick run down here. Just a few more slides and then you'll dump into a live demonstration of GoAnywhere. It's a multi-platform solution. You can install it on an IBM i, a Linux, Windows, even a Mac, Unix, you name it. No problem there.
Both batch and ad-hoc requests can be handled by the product.
All file transfers are being audited.
And we have a browser-based interface for administration and monitoring, allowing you to use the browser of your choice. So, you don't need to install any desktop client on your system. Now again, we do provide APIs. If you have a remote system that needs to automatically launch transfers from a command line, or your own enterprise scheduler, in GoAnywhere you can install those APIs in your system. We have those for IBM i, AIX, Windows, and of course Linux.
You can use a web service call to make a request to GoAnywhere. You want to pay off those jobs? It’s that simple.
Earlier, I mentioned that we also allow for inbound connections, GoAnywhere can be set up as a listener, you know with secure FTP, HTTPS and AS2. Also, files can be encrypted in motion, and you can also encrypt them at rest using AES 256-bit encryption. For those that work with federal government or require stronger encryption, you know, we do provide an option to use FIPS 140-2 to validate encryption ciphers. So it's going to use the secure and validated ciphers to help protect that data at rest and in motion.
Key management. All built into the product, we have our own KMS to keep management system allowing you to import export create and manage your PGP, your SSH keys, and your certificates. All built into the product all centralized making it pretty easy. We also have role-based permissions in GoAnywhere so you can have certain administrators, you know front certain levels of security. For instance, you can have some administrators that can set up new jobs, define certain domains within GoAnywhere. You can have selected admins that can only look at audit logs, and as I mentioned earlier, others that can only set up maybe the scheduling of jobs, or to the execution of your different workflows. Plus, these admin users can be authenticated against your active directory or LDAP and we do support dual-factor authentication as well if you need that. Maybe you want to use a token or some sort of key to authenticate in addition to the user profile and password.
All right, one last thing here before we dive in a live demonstration. If you are accepting the inbound connections from your trading partners, your customers, and maybe mode employees, you can set up what's called our GoAnywhere Gateway. You can install GoAnywhere Gateway software on a DMZ server, typically on a Windows or Linux box in front of your private network. That will act as a to a proxy supporting both forward and reverse. It can also act as a load balancer.
When you have connections coming in, users might think they're connecting directly to you, but they're actually being routed through the Gateway. Maybe using the secure FTP protocol connecting up using port 22 and a Gateway. The protocols, the port numbers, they’re all configurable by you guys so it's all up to you what you want to use there.
The Gateway is then going to take the traffic and it's going to proxy it using the propriety control channel up to GoAnywhere. Now, in this example, we actually have the two installations of GoAnywhere and with the installations here we have a clustered environment. It gives us some additional flexibility. We got system 1 and system 2 here. This is a great demonstration of really acting as source of your environment as a true active-active, a high availability type of solution. Now, it's going to load balance those connections, so if you were to get a second connection coming in, it will then round-robin that over to the production system too. And if the Gateway’s going to be smart enough here, if one of your systems fails, maybe due to a possible hardware issue as an example, then the Gate will just transfer the sessions to the other remaining system for you automatically. As I mentioned, you know, it's also services as a reverse proxy. The benefit of this is that there's no inbound ports needed, and no files, no security credentials are ever staged within the DMZ server. All this here, we’re protecting you guys, are picking the environment. All in all, this will help keep those auditors happy and also of course your security teams. Again since no inbound ports are needed for this and the combination of the two will help you guys in making it that much easier for you to meet those stricter security policies for HIPAA and Sarbanes-Oxley, SOX, and JPR.
GoAnywhere MFT Demonstration
All right. Now it's time to dive in a live demonstration. We’ll really show an overview of the product, what it can do, and walk you through a few different areas of setting up that workflow for you.
All right. So, what you're looking at right now is GoAnywhere. I'm logged in as administrator. There're actually two types of users. You got the administrators, those are the users set up to help administer the product, set up your workflows. And then you get the web users, your client uses that may want to come into you guys to drop files off or pick up files, you know, based on their permissions. So right now, I'm logged in as admin and each of your admins will have their own customized dashboards that they can customize. It's a great way to see what's happening on your system. You can see we have services, the completed jobs, some quick links, and some tips right there at my fingertips. As I scroll down you will see additional gadgets being displayed. Again it's up to you guys how you want to customize it but each admin will have their own little flavor, their own dashboard. They can lay it out how they want to.
Let's see what's happening completed jobs last 30 days. A lot of these gadgets allow you to edit them, so you can display different sets of information such as this one here. I can change it to display like today's information for the last seven days Etc. So it's all to you guys how you want to customize that but again, there's like 26 different gadgets you can add very easily to the dashboard. Lay it on how you want to there.
Also, you can create additional dashboards based on certain areas, you know, maybe you want to do something more on the security side of things and kind of watch for the all those different blacklisted IP addresses so you can create a dashboard just for that and then what's nice here about these dashboards is that these dashboards that you create can also then be shared with other administrators.
And the sense of navigation you have quick links to help you navigate through the product or you can also use the bar here right across the top. Either way it's really easy to navigate to the certain areas.
So we’re gonna focus here initially on those file transfer, you know, you guys acting or going we're acting as a client to initiate the file transfers. So we got the admin users logged in and really the first place then to start is in under resources. This is where you can define those connections those resources to your different servers. Servers being there could be a remote customer, remote employee, could be internal network shares all that different things that server definition to connect up to. And on the left you can see all the different resource types. You had Amazon S3 buckets. And once I click on that particular bucket type there you can see all the different resources that are being defined for that type right there.
AS2 servers, Azure blob storage – so you can see them there really easily. If I jump down we got HTTPS, you know IBM i servers ICAP, mailboxes, so we can even connect up to mailboxes Network shares to find your network shares of what you want to trade files with. REST servers and even SOAP. We can define those resources all these different resources can then eventually be used within your workflows, your automation. And what we're doing here is giving you really just one location to maintain these resources. You may have hundreds or thousands of these workflows, these projects that you eventually build within GoAnywhere, and if that connection changes, as I mentioned earlier, if that connection changes, maybe the IP address changes or the key has to be updated. It's really just one location to update that. You come in here the resource type, you know maybe have one defined for a certain trading partner certain customer. Give it a good name to make sense to you and you can click on it and go into it and update it as necessary. Again one place to maintain it.
When setting these up you can they're all very similar you'll have your basic connection information as this one here. We have the host IP address, the port number that they're listening on, profile password, even a key.
You can test these connections make sure you can get to that front door and it opens up for you. Looking for that resource is successful. So at this point of time, I know that this resource can connect up. Now what I would I recommend doing with this is go a bit further with this. Go through instead of some retry its recovery options. So under the connection tab, I can set up a retry here. We have a five times waiting 10 seconds in between each. The idea of this here is we're gonna reconnect up and if you're in the middle of transferring the large file, you should go pick up where it left off.
Define your proxy types. Different algorithms may need to do is from authentication Cipher and Mac and so forth. Contacts, this is great. It's all centralized, right? We're looking at here is information to let you know who to contact if you have a problem connect them to that resource. So they're either way this way is tied to that resource definition. You get the mand and phone number or email, whatever it is and you can reach out to them.
So a quick recap here. Is that getting these resources are your way to connect up your different servers: to your training partners, to your customers, etc. Set these up first. Now at this time you're really ready to start building that workflow.
So that leads me to the second spot up here and they got projects. On the left side is a great way to help you maintain or to manage these different projects. Create a folder by a location, a region, a department, by user, you name it. It's up to you guys how you want to do this. I have mine on here. I have a broken down by protocols because the demo download demonstration they do but it's up to you guys. It's easy to create and add more folders and subfolders and how we get started. We got my FTP protocol folder selected. You can see all the projects that I already created, but for you guys that are getting started or are new to GoAnywhere, really a great way to start when creating a brand new project, is to take advantage of our templates, even help save time down the road. We have a lot of different templates out here, you know pick and choose what you want to do. Do you want to copy file database to CSV to FTP? Delete files? Run commands? FTP get encrypted to Excel? Etc. So it means there’s a lot you can do just move files you name it. So the lot of different templates are already built for you to help you get started. And a very common thing today is just to do a really secure file transfer either. You're putting us in a file. You're getting a file, right?
So secure FTP retrieve a single file or multiple files, you name I,? It's not a problem. I'll use them here “Send a single file” grab that template, give it a name. I’ll just call it example 1. Of course, you give it a better project name and description defining really who you trade in files with or what this is for.
And it brings you were into design mode. So now you can kind of give a layout really was happening. We have four panes, four windows here to work with in the component library. These are different actions for different tasks that you can perform within the project. I'll explain here just a little bit. Here's the outline. These are the steps you can perform cover read through a top-down for most part and these are the parameters that need to be filled in, along with some system variables or just project variables here in the right hand side that could be utilized within your workflows.
To walk through this project really quickly to send a file we have this task. I want to connect to a server that want to send a file to. The SFTP server. Again, I start you guys off with the resources, so you define that resource of where you want to trade files with a server. Those then become a drop-down option for you to select from, so here's a customer ABC we tested earlier and then to put a file. These source files can be passed to this project a lot of different ways. Hard-coded through a file list, through variables, you name it. There's a lot of different ways to help automate this process to keep this one simple right now. Let me just go ahead and select a file. And by clicking those three dots you can navigate to your local files, you know through a home, your different directories, or even through a resource. So now we're expanding that power to grab that source file not just from your local system, but even through a resource that you may have defined earlier. A network share or an SFTP resource.
Let me quickly grab a file. Got a file selected, and then to transfer this file I'm doing a put, so I'm going to go to a customer server to transfer them. Again, when I click on these three dots they allow me to to navigate and in fact, it automatically connects up to that server.
Now I'm on that server that I need to transfer file with. In this Server could make my trading partner and I'm able to see and drive into the folder and subfolders that I have access to. Select that folder. We're good to go. There's a lot of things you can do to help customize this. Yes, we can encrypt it. We can rename it. You can do a lot of different things out here and even really simple right here. We can actually add us prefix or suffix the name. Maybe a timestamp or date stamp.
We recommend, and this template is great for that, is to add in some error handling so you can see we have an error module. You know, what happens? What do you want to do? If you have a problem connecting to the server the transfer fails itself. On this module the same for module here. We're going to perform these acts acts rate within it these steps here. It says all an error module. In fact, you have actually four different options here if something does go wrong. You can abort, continue column module, which is probably most popular one, but you can also set a variable value that could be used within your next steps here. But here we’re calling an error module so jumps us down to this error module right here. So it's very like a subroutine with an application. And very simply here, but very powerful and very commonly is just to send an email. You'll notify somebody that something went wrong via email. You have your SFTP server and then who the emails from and who you want to send it to?
Using those system variables, I mentioned earlier within the description, the subject line, someone grab the project name automatically and in fact within the message of the email, I'm going include the job error and very easily, I'm going to attach the job log. So this a band is person that's going to get this email can very quickly verify, you know, what project fail and why and take the right appropriate actions to take care of it. Even within the design mode you can validate it. You can do some quick syntax checking again. Blue Line. Here's your good compiled just fine. You can even run it, executes it.
And here it also ran successfully. Good or bad, either way, you're going to get a link to the job log right within this window. Click on it. And the job log is going to be a top-down read. So very simple to follow through and this one here again very simple transfer, but here we upload the file to my customer the folder on different server and that it was uploaded successfully.
And just a note, you know, as you start building this project, they will get more complex. I'll show you one of the more advanced here, but you can actually use a debug option to walk through it, step-by-step. Check what's gonna happen next? What's your next step? What are the current variable values if you have variables in there, all that good stuff.
Let me create a proxy this time from scratch and a common thing is to actually encrypt the data and it's very easy to encrypt the data. Let's go ahead and say encrypt example.
So this time we're going back in the design mode, it lets me blank sheet. We have the main module. Look on the left hand side of the components. Tell me what you want to do. If you have some Cloud Connectors installed, we have those options right there for you. Compressing the data: zip, unzip, Gzip, ect. So these are the different tasks you can easily add into it. Database, SQL, and crease and tables. The data translations where you can actually read and write, you know, read us some data from one of your tables and turn on right out as CSV or Excel or even XML and so forth.
Your file system to local files. Your file transfers breaking it down by protocol, so secure FTP. Your puts, rename, delete, etc. Again, these are very easy to incorporate into your project by drag-and-drop double-click and let me jump down really quickly. We're getting close on time. I know I want to get through this job control. But encryption right down here. You decrypt, encrypt, sign, verify. If I want to encrypt the data, I can drag and drop or double click. You can see it kind of pop into place here.
We do it again. There we go. We got the PGP encryption task in there. And what's really nice here is that at this point we're going to select a file, and let me just do it really quickly. Again, you have multiple ways these files could pass into it. I'll talk a little more about that next. I'll put directory, where I want to send this encrypted file. That could be a local directory or to my trading partner. So if I want to send my customer my trading partner that encrypted file using their public key now I can send it to them directly. Customer a PC demo and go to their server and again have access to their server and the folders as needed.
Let me grab a folder. And then the key.
What we have here built into the product is a KMS as I mentioned to the PowerPoint earlier, built in the product are able to manage your keys for you. So within the competitive system I already imported the customers public key and now I can easily select it. Trading partners right there. Grab it and we're done. Yes, I would add in some are handling. But this is the main of just doing the project here.
I can validate it. Encrypted course we executed. And then to show it to you here we have the log. And is jumping down to it. This file was sent encrypted and see the dot PGP at the end of it all done really quickly there.
And to show you the KMS really quickly. Here's the KMS, some key vaults to help you manage your keys with a customer's if I jump over to PGP keys. You can see those keys and get the key players. We got public keys that we've imported Etc. But you have the options right here on top to create those key pairs as needed with different security levels and also the important your customers key.
Now in the sense of automation you have the built-in scheduler that allows you to schedule these projects to run as needed. You have options a create your own holiday. If you fall in a holiday you want to skip the job, run it the next day Etc.
The other two areas are dealing with the monitors. Monitors allow you to monitor those folders and those folders could be local, it could be a network share, could be remote, you know, you can actually monitor your customers, your trading partners folder just like this example here. I'm actually doing a mantra location of secure FTP. I can select that trading partners resource and there's a customre ABC we got GoAnywhere selected for this example. I'm on that server and a monitoring this folder on that over and what I'm looking for is a certain event type since the last time I checked are there files that exist in it or have there been any files have been deleted modified created or created or modified again since the last time I checked. If so, maybe while look for certain files, you can kind of narrow down, you can use the wild card. We got customer whatever dot XLS you could also just do dot PDF or any file at all or use a regular expression. And if that's all good there, you can also define how often you want to check that folder. So you can define the scheduling of it, your time of day you want. If it's you want all day long no problem or your main hours. How often you want to check that folder for those events to occur. I can check every 10 minutes, every 30 seconds, every hour. It's up to you guys, very customized and then the day of the week.
Now let's say a file is in there that's picked up that does exist or whatever you're looking for. Then you actually call it project to process that file or files because again, you're monitoring a folder and you could have several files dropped off since the last time you checked, and the power behind GoAnywhere is using variables. And in fact this here by default the module will actually create a file list type of variable file list meaning that we can actually support handle multiple files and pass it to the project.
This file’s variable name will be the may be passed to this project to process each of those files. Maybe you need to encrypt them, move them, archive them, whatever. Done you know, it's that easy.
The advance we're just checking for locks will make sure you're available grab that file and then you can also set up some additional email notifications, you know, notifying you if there's any errors out there checking within the monitor. Project success or failure or like an SLA, you know, if no files were found you'd expect at least one file there by then the day maybe you should notify somebody.
So that's your monitor. It's like a schedule you are doing a schedule but you're checking a folder periodically throughout the day for some files being dropped off and so forth.
The last one here is really with triggers in the sense of Automation and it triggers our base off of an event typically for your customers or users coming to you guys to drop off a file are the most common things. So upload a file to you. But again, they're based off an event and we have a lot of different events.
You can select from to Define what you're looking for right here through it, you know this list here, but upload successful is again, one of the most common ones and really quickly what you can do is when the file is uploaded, you can turn on and do multiple things within these triggers. First of all trigger, you're looking for an event, you know some protocol coming in to do something with you guys drop off a file upload a successful. You can define what service protocol you're looking after, your monitoring, the conditions if you want to help narrow or down for between different customers different organizations, and so forth. You have a lot of different options out there. You can help narrow it down for this particular trigger you're setting up.
And then the action. What do you want to do if there is a file has been uploaded from that customer ABC? Move the file: you can easily set an email out, rename the file, run a command. Delete, Etc. Even call a project within your workflows.
So again, there's your trigger and triggers are by the way instantaneously there right away done deal whenever something's happened to occur it kicks off right away.
Now I'm going to shift gears here for last few minutes here before we get to our QA and really talk about GoAnywhere acting as the server, a listener for your customers come to you guys. You know, what do you want to do out there. Two areas. We got the users defined and then you get the services, so you can start up what services you want to or you need to from HTTPS FTP FTPS and so forth. What port number to listen on some additional fine details there. And then you have your users, your clients, your customers, coming to you. Maybe using filezilla, using the web portal. It's up to you guys there, but you can really define what these users can use for the protocol and what they can see and what they can do.
Just jumping ahead. We got authentication. You know, how they must login How they msu tbe authenticated. You can define a set that up as needed from active directory or LDAP, RSA ready. Same thing for the administrators, by the way. Groups help you organize these users. But the features: what protocols can they use, where this user can use? You may have several protocols active on the server but this particular customer. This user can only use HTTPS and secure FTP. And then the modules, you know, what can they access, what can they do when they log in from the different modules within going anywhere such as secure folders or secure mail etc.
And then on the folders tab, this is what they're going to see they're coming through logging in. We got the home directory, but then I'm able to create some additional folders and subfolders allowing them to do whatever they need to do. And what's really cool here is these folders really is an alias name that they're gonna see a virtual name. You can name it as you need to order make sense to them and underneath the covers for you and I as an administrator, we're only going to see their certain resources and the path where it's pointing to. In this example we got the resources, secure FTP. This one here is a local folder. But again, these are unbeknown to the user. They have no idea and then you define the permissions, you know, listing, upload, overwrite, delete files, whatever they can. Do you define their permissions here?
And when they log in they have a little different port come in or through the again filezilla when they log in and by this is using HTTPS, and this page you can customize the image and the logo and even the disclaimer as you need to. When they login they will only be able to see what you set up for that particular user. Here are those secure folders again, all those virtual names I set up along the drop files off or pick up files Etc. Secure Mail, if that's active, to be able to create a request files and Secure Forms Etc. So you can you have that full control and set them up at the same time. Everything that we're doing in here is being audited and captured under reporting. There's different reports. There's also audit logs. So the last thing I'll show you is the audit logs.
Jump back to my PowerPoint. But with the audit logs you're able to view that information pretty easily. Right now I'm in administration so you can see where I've been at as an admin but jumped on to complete a jobs those workflows. I'm easily able to see that workflow, what's been running out there by whom and all that, plus if I wanted to I can narrow it down. You'll set up some filters by certain job name, by user, by a certain status, etc and all this information can be easily exported out you also have access to write it out to assist log on with your log settings. So you have a lot of customization or lot of flexibility if needed.
Let me jump back just a few more slides here and I'll jump into QA. Just really quickly talk about the different installation requirements. You can install GoAnywhere on many different platforms, you know, IBM i, Unix, of course Linux and Windows. We have all these different options for you guys, very flexible and you can solve a one server, easy move it to another one. It's up to you guys there. As they are for the supporting flavor of Linux, you know, since you know course that's where we're focusing here today. It's no problem installing it. You can have different flavors such as RedHat and CentOS and SUSE and all that. It's up to you guys where you install it not a problem will help support you there. You'll find that GoAnywhere MFT is a very flexible and customized solutions allowing you to easily integrate your file transfers that you need to do today.
And you know more and more Linux installations are switching to GoAnywhere MFT, you know to really help with that automation from managing and logging their file transfers. Here is a checklist of some of the different advantages of using going anywhere both as an SFTP client and as a server on Linux, there's no browser interface between we have the, you know, you don't need the command line stuff that you can actually have a nice browser interface. You don't need to set up some programming or write your own manual scripts. It is a centralized solution. You mean even built in the product we have the cable transfer files, audit the files, manage your keys, all centralized. We have that integrated scheduler monitoring to help you automate that file transfer for you. The different retries to your computer servers to continue on with those transfers. We could authenticate your best transfers using both passwords and keys.
I showed you guys the encryption/decryption options there. With the open PGP standard and also send email alerts or text messages on failures are if a certificate or PGP key is about to expire you can all be notified very easily.
And also, just to throw out a few more here, you know it's a lot easier to manage with their driven trading partners. You can set them up use your active directory and LDAP, authenticate partners, set granular permissions and disk quotas for folder, predefined specific IP blacklist and whitelist, and enable auto blacklist IPS from those DoS and Brute-force attacks.
View user’s session activity in real time use the FIPS 140-2, validate AES 256-bit encryption, audit trails, keeping those inbound ports closed, a private network and more.
So to kind of start wrapping things up here a little bit. You know, we do have a free 30 day trial if you like to go ahead and download install and give MFT a try. It's you know, very quick and very simple to get going. You just go to the URL. You can download it, it just takes minutes. I mean usually less than 10 minutes to get downloaded install it and you're up and running. Brooke you want add anything else to this?
Brooke: That's perfect. I'll just say if you have any questions or if you want to reach out to us directly our contact information at goanywhere.com/contact.