Secure FTP Server

Secure FTP Server supports multiple industry standard secure protocols, extensive user account management controls and integration of data into your workflow. It is simple to download, configure and deploy. And it is relatively inexpensive.

• NEW FIPS version now available. Increase security with FIPS 140-2 validated components.
• FTPS (SSL/TLS) and SFTP(SSH)secures transfer of sensitive files over the Internet.
• HTTP/S protocol support gives your partners the ability to transfer from their web browser.
• Event Rules and a programmable interface ease integration with your existing processes.
• Auditing and Reporting module captures all server transactions
• Native, ODBC, and Active Directory user account types.
• Automatic restarts and file fingerprint checking ensure file delivery.
• Installs and configures quickly so you can have it up and running in minutes.
   
• HTTPS Add-On Module
• SFTP (SSH2) Add-On Module

Secure FTP Server Features

FTPS (FTP with Secure Socket Layer SSL)
Provide secure authentication, session, and data transfers using the industry standard SSL protocol. Support is provided for SSL/TLS including implicit connections over an IANA defined port (990). Full SSL certificate support is provided, including the ability to request certificates from authenticating clients.

HTTP/S (HTTP with Secure Socket Layer SSL)
Let your users transfer files securely with their browsers. Secure FTP Server's HTTP/S functionality includes a form upload so users can upload and download files without purchasing any specialised software. Add On Module

SSH2 (SFTP) Support
Secure your user's authentication, session and transfers using SSH2 (SFTP). Support is provided for Message Authentication Code (MAC), cipher, and public key authentication options. Add On Module

Full Digital Certificate Management System
Create, sign, import, export and add digital certificates to a Trusted Certificate store. You can even have the certificates you create signed by a trusted Certificate Authority such as Verisign or Thawte.

Secure Server to Server Transfers (SSCN) Users can securely transfer files between Secure FTP Servers or to/from 3rd party FTP servers over an SSL connection.
*Note: Both FTP servers must support the SSCN command sequence

One Time Password (OTP) Secure Login
Prevent password interception using an advanced one-time password scheme based on Bell Lab's S/Key technology.
*Note: FTP client must also support OTP, such as CuteFTP Professional

Secure Remote Administration
Remotely administer your FTP server using the administrator interface over a secure SSL connection.

Block Site-to-Site (S2S or FXP) Transfers
Block S2S transfers, a potential security risk also known as port theft or FTP by proxy.

Restrict Access by IP Address
Grant or deny access to the server based on IP address in a highly configurable manner.

Strong SSL Keys
Create 1024,2048, or 4096 bit SSL keys for maximum security.
 

NT & Secure Server Authentication
Authenticate users via NT user accounts with NTLM or Active Directory authentication, or use the Secure Server built-in user database to authenticate users.

ODBC Authentication
Optionally authenticate users using an ODBC data source. Configuration options include database authentication provider path, database polling (refresh) intervals and more.

Groups
Create groups to house users with similar directory access permissions.

User Settings
Specify user setting levels containing detailed user account information and restrictions, such as:

• Maximum transfer speed
• Maximum concurrent connections per user account
• Maximum concurrent connections per same IP address
• Maximum concurrent connections to the server (from all users)
• Maximum uploads/downloads per session per user
• Maximum uploads/download size per session per user
• Maximum disk space allowed (quota) per user
• Account expiration date
• Disable account after defined number of incorrect login attempts
• Allowed certain commands (NOOP, XCRC, etc.)
• Allowed protocols (FTP, SSL, SFTP)
• Restrict access to a defined IP address
• Much more!

Site Settings
Configure entire site setting levels including:

• Root login folder
• Listen on a specific IP address and port
• Block anti-timeout schemes
• Block site-to-site transfers
• Define PASV mode IP address and port range
• Define Connect, Limit, and Exit server messages
• Server wide allowed protocols (FTP, SSL, SFTP)
• Server SSL certificate path and pass phrase
• Require client certificates for SSL sessions
• Global limits on speed, concurrent transfers and more
• Disconnect after defined number of invalid commands
• Ban IP after defined number of invalid commands
• File type exclusion filter
• IP address grant/deny access list
• Flooding/Hammering auto-ban sensitivity meter
• SFTP configuration options (MAC, cipher, cert path, etc.)
• Much more!
   

POWER FEATURES

Event Rules
Define actions to occur when triggered by certain events. Using an Outlook "Rules Wizard" like interface, configure precise trigger conditions for a corresponding event, such as execute a back-end process, send an e-mail notification, ban a user and much more.

Programmatic Interface
Automate time-consuming tasks such as adding users or changing permissions via Secure FTP Server's exposed COM interface and your favourite scripting language.

Custom Site Commands
Create custom commands that allow users to execute programs with command line parameters on the server.

Guaranteed Transfers
Automatically verify the CRC32 checksum of files transferred for critical file delivery guarantee. This feature works with compatible FTP clients such as CuteFTP Professional using a proprietary command (XCRC).

Streaming Compression
Support for the MODE Z command helps accelerate transactions through streaming compression.

Multi-Part Uploads
Accelerate throughput and maximises the available bandwidth available to the client by allowing uploaded files to be split apart and transferred in multiple segments simultaneously. This feature works with compatible FTP clients such as CuteFTP Professional using a proprietary command (COMB).

Multi-Server Management
Manage multiple physical FTP servers running on systems across the world or within your LAN/WAN from a single administrator interface.

Virtual Sites
Operate multiple FTP sites with unique directory structures and user accounts from one location using the administrator interface.

Log Standards
Capture logs in industry standard W3C, Microsoft IIS, or NCSA formats.

Connection "Spying" and Status Information
View recent user activity or troubleshoot problem connections by viewing real-time logs for a particular connection.

Runs as Service
Automatically starts and runs as an NT Service.

HTTPS Add-On Module

Need to give your customers and partners an easy and secure connection right away? Secure FTP Server's HTTPS add-on module allows you to set up a secure connection to anyone in minutes—all they need is a web browser. The HTTPS module adds the HTTPS protocol to Secure FTP Server, enabling you to support browser-based transfers without having to install a web server.

Extending your secure file transfer solution to trading partners, suppliers, and clients can be difficult if they discover they have to install extra software or pay for installation of expensive proprietary pieces just to be able to work with your system. A smart solution is to let your users transfer with something they already have: a web browser. Secure FTP Server can work with just about any web browser to provide secure file exchange, because it supports HTTPS, used by web browsers to secure information transfer.

Enabling HTTPS transfers in Secure FTP Server is as easy as selecting a checkbox. All user and folder setting are inherited from the server settings.

HTTPS

HTTPS is used to access secure Web servers when authentication and encrypted communication is desired. Using HTTPS instead of HTTP directs the message to a secure port number rather than the default Web port number of 80. The session is then managed by a security protocol. HTTPS encrypts the session data using the SSL (Secure Socket Layer) protocol, which ensures protection from eavesdroppers and man-in-the-middle attacks.

Transferring files with a browser

When Secure FTP Server is setup to allow HTTP file transfers, any HTTP client will be able to PUT (upload) or GET (download) files to the server provided the client supports both of these HTTP commands. However, most Web browsers only support the GET command.

The standard Browse and Upload buttons make copying a file to secure FTP server as easy as adding a picture to an eBay auction.

Secure FTP Server overcomes this deficiency with a built-in upload form that automatically displays in the browser when the user is in a folder they have permission to upload files. To upload a file, users browse for the file on their PC and click the upload button. The file is placed in the folder they are currently browsing.

Offering HTTPS support from your file server takes advantage of the ease of use and wide installation base that web browsers already provide. Secure FTP Server’s HTTPS support enables cost effective security for file exchange that’s easy for your trading partners to use.

SFTP (SSH2) Add-On Module

What is SFTP?

SFTP is a subset of the popular SSH protocol and is a platform independent, secure transfer protocol preferred by IT professionals worldwide.  SFTP provides a single connection port for easy firewall navigation, password and public key authentication and strong data encryption, which prevents login, data, and session information from being intercepted and/or modified in transit. Secure FTP Server’s SFTP extension enables it to authenticate and transfer data securely with SFTP-ready FTP clients, such as CuteFTP Professional.

SFTP Benefits

• Ease of Administration - single connection port for transversal of firewalls
• Ease of Integration - one-click setup, cross platform support and maximum connectivity coverage
• Heightened Security - greater identity protection through public key authentication
• Guaranteed Data Integrity - built-in data checking mechanisms
• Greater Control - enhanced management of keys, ciphers, MACs and more

SSH2 Add-On Module Features

• Single Connection Port - make SFTP sessions more firewall friendly than FTP over SSL sessions
• One Click Setup - no need to run complex command line sequences to enable SFTP connections
• Cross Platform Support - most UNIX, Mac and Linux file transfer clients operate with SFTP
• Identity File Support - choose whether connecting clients or trading partners supply a public key (identify file) for dual-factor authentication, in addition to standard password authentication
• Choice of Message Authentication Code (MAC) - validate the integrity of transmitted data
• Choice of Ciphers - Allow certain encryption algorithms for maximum security or allow all available types for maximum flexibility
• Key Management - create key pairs, manage keys, import/export keys and select the allowed key (identify file) for a user account
• Detailed Logging - determine exact reason for success or failure of SFTP sessions

For more information please contact the MicroWay sales team:
Head Office MicroWay Pty Ltd PO Box 84, Braeside, Victoria, 3195, Australia Ph: 1300 553 313 Fax: 1300 132 709 email: sales@microway.com.au ABN: 56 129 024 825	Sydney Sales Office MicroWay Pty Ltd PO Box 1733, Crows Nest, NSW 1585, Australia Tel: 1300 553 313 Fax: 1300 132 709 email: sales@microway.com.au ABN: 56 129 024 825	New Zealand Sales Office MicroWay Pty Ltd (NZ) PO Box 912026 Victoria Street West Auckland 1142, New Zealand Tel: 0800 450 168 email: sales@microway.co.nz
International: call +61 3 9580 1333, fax +61 3 9580 8995