What’s New in MOVEit 2021
Transcript of What’s New in MOVEit 2021
What’s New inMOVEit 2021.0Neuerungen in MOVEit 2021
Solutions EngineerMarco Boots
Channel & Alliances ManagerTina Bosco
2© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
Agenda
Release Themes
Documentation
What’s New in MOVEit Transfer
What’s New in MOVEit Automation
Q&A
3© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
Release Themes
Installation and
Management
Better User Experience
Increased Security
IntegrationCapabilities
4© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
Features by Theme
Installation and Management
• Transfer:• Optional Separate
Database Connection for Read-only Queries
• Enable/Disable External Auth Source
• Prevent Long Running Custom Reports
• Logging Performance
• Self Healing Web Farm
Better User Experience
• Transfer:• Notification Branding• Support TopN Issues
• Automation:• Enhanced Advanced
Task Workflow• Enhanced Email
Notifications• Support TopN Issues
IncreasedSecurity
• Transfer:• Data Encryption Key
Rotation• MOVEit Client MFA
Support• Mobile and MOVEit
Client Sign-On Notice
• Automation:• IP/Username
Lockout Mechanism
IntegrationCapabilities
• Transfer:• REST API for
Reports• REST API Folder
Patch Settings• Automation:
• S3 Compatible Host Support
Documentation
6© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
Documentation
§ Post-GA• Transfer: Release Notes• Automation: Release Notes
7© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
System Requirement Updates
Retired• Windows Server 2012 R2 support has been retired
• Microsoft mainstream support end date: 10/09/2018• Microsoft SQL 2014 support has been retired
• Microsoft mainstream support end date: 07/09/2019• Internet Explorer 11 support has been retired
• Microsoft recommends using Microsoft Edge as your default browser and supports Internet Explorer 11 for backward compatibility
• For customers running on an older version of Internet Explorer, Microsoft recommends customers migrate to the latest version of Edge
Added• Microsoft Edge now supported
Hardware Sizing
9© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
MOVEit Transfer - Hardware and ScalingSpecification Description
MinimumMinimum specifications enable quick deploy and evaluation of MOVEit Transfer. These specifications work best where MFT activity is light (no long intervals or sharp bursts in MOVEit Transfer server processing load or MFT database load).
Typical
Typical specifications take database size and volume of active connections into consideration. Production MOVEit Transfer systems benefit from a database that scales with your MFT traffic and auditable logs. Sites with bursts of org-wide or site-wide file sharing events benefit from additional CPU headroom for encryption/decryption and additional RAM for more simultaneous client sessions.
Scale-Out (Web Farms)
Large MFT solutions and solutions conforming to strict or implied Service Level Agreements (SLAs) benefit from additional MOVEit Transfer server nodes. MOVEit Transfer allows you to use a clustered (Web Farm) pattern to distribute load of managed file transfer sessions and increase performance. For more information, see the Service Integration section in the Administrator Guide.
10© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
MOVEit Transfer - Hardware Specifications by SizeMinimum(Eval, Development, Small)
Typical(Production)
Web Farm Scale-Out(Two-or-more server nodes)
CPU CPU or vCPU with at least four cores. CPU with eight cores or more. CPU or vCPU with eight cores or more per MOVEit Transfer server (Web Farm) node
Memory 8GB RAM 16GB RAM(more CPU cores benefit from more RAM) 16GB RAM (per node)
MFT DatabaseMySQL (Bundled in Express Install)(Practical for MFT database table sizes less than around 2–4 GB).
One of the following:•MSSQL Server. Follow MSSQL Server guidelines. (Dedicated remote DB server host machine.)•Azure SQL (Basic subscription).
One of the following:•MSSQL Server. Follow MSSQL Server guidelines. Dedicated DB server.•Azure SQL (Basic or better)
Filestore Disk Usage Local disk or file share: 250GB or larger storage for files.
One of the following:•1TB Disk storage capacity is common, or•Azure Blob: Azure Storage Service Subscription (Hot tier)
(Web Farms nodes share filestore)One of the following:•Disk storage capacity of 1TB or more is common, or•Azure Blob: Azure Storage Service Subscription (Hot tier)
Network Card Gigabit Ethernet NICGigabit Ethernet NIC(s) or better.(The server will try to use all available bandwidth.)
Gigabit Ethernet NIC or better on each node.(Each web farm node will try to use all its available bandwidth.)
Fixed and Known Issues
12© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
MOVEit Transfer – Fixed Issues
See the release notes for a complete listing of fixed issues
ID Category Fixed Issue
31593 Admin UI Fixed issue where setting SSH Policy for the current user returned the message "certificate is not for the user."
31249 Download/WebUI Fixed issue where Folder Download to .zip produced an empty .zip file.32643 REST API Fixed issue to disallow an out-of-range client IP address.32596 Security Fixed issue where an org admin could see session count metrics for the system.
31950 Admin UI Fixed issue where the WebUI returned an error if a sysadmin acting as orgadmin attempted to add a user.
31237 Admin UI Fixed issue where report failed to overwrite when Overwrite option was selected.
30646 Admin UI Fixed issue where using a new MOVEit Transfer account resulted in exception if used from MOVEit Automation.
31835 Upgrade Fixed post-upgrade issue in 12.1.1 where password change stamp updated during the password hash update.
32412 Transfer Server Fixed issue with GarbageCollection task where only the first 1000 file deletes were reflected in the log and when viewed from custom reports.
32311 Transfer Server Fixed issue where some package attachments not cleaned up during scheduled GarbageCollection task.
32117 WebUI Fixed issue where deleting custom notification returned an "Invalid Custom Notification" message.
31965 Web Farm Fixed issue for Web Farm where scheduled tasks log is saved at the remote file store rather than location defined in server configuration.
13© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
MOVEit Transfer – Fixed Issues
See the release notes for a complete listing of fixed issues
ID Category Fixed Issue
31816 WebUI Fixed issue to log exceptions and continue to file, which could be blocked when malformed or corrupted comments field was encountered.
31666 REST API Fixed issue where in a Secure Folder Sharing scenario, retrieving the full folder list resulted in long queries.
30736 REST API Performance improvements to handle high volume of short session.
35039 Security Fixed vulnerability issue in recursive folder properties operation. Credit: Steven Seeley.
35068 External Auth Fixed issue where sign-on to an ExternalOnly org for the first time returns exception after sign-on.
5296 Custom Notifications Fixed issue where customized notifications applied one group and user belongs to that group and one other but gets customized notifications from both.
8522 Package Transfer Fixed issue where package upload failed if session expires during upload.
8555 Package Recipients Fixed issue to ensure all users on a package recipient list receive send receipts.
35342 WebUI Fixed issue where folder quota information is not visible after creating subfolder.
30490 WebUI Fixed issue where filename did not display hyperlink to file details view.
8560 WebUI Fixed issue where administrator user indicator was not visible if administrator was also a group admin.
8596 WebUI Fixed issue where internal path to brand logo visible to users.
14© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
MOVEit Automation – Fixed Issues
See the release notes for a complete listing of fixed issues
ID Category Fixed Issue31327 Server The wildcard expression specified in a task's directory path is respected.
32028 Server Updates were implemented to prevent MOVEit Automation from occasionally crashing when sending an SMTP message.
32778 Server The database date and timestamp are correctly read into the service and parsed, preventing the scheduler from starting with incorrect data.
31194 Macros The MOVEit Automation string manipulation macros were updated to support Unicode characters.
8967 Web Admin Scrolling or using the down arrow multiple times when viewing a long list no longer automatically scrolls to the end of the list.
15© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
MOVEit Automation – Fixed Issues
See the release notes for a complete listing of fixed issues
ID Category Fixed Issue35063 Utilities The error that prevented authentication in GetMICConfig was fixed.
30467 Scripts The Unzip Advanced script adds the contents of each zip file to the cache directory once.
34959 S3 An S3 download task is now successful if a PowerShell script is run at the same time.
31591 Scheduler, Server Tasks that are configured to Repeat only until first success, and have completed successfully, do not run again after a machine reboot.
16© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
MOVEit Transfer – Known IssuesID Category Known Issue
365955 Installer
After you upgrade a MOVEit Transfer server to 2020 that leverages the legacy mobile server, if you subsequently uninstall only MOVEit Transfer, the next time you run the installer the Modify option displays but no real modify-install scenario exists. You will not be able to complete the MOVEit Transfer install process.Workaround:To run the installer successfully, you will need to uninstall the deprecated MOVEit Mobile Server manually. Then you can re-run the MOVEit Transfer Installer.
UREP-5247 Central Agent, DMZ Agent
The Analytics Agent cannot connect to the MOVEit Transfer or MOVEit Automation 2019.1 with MySQL 8.
To resolve this issue, contact Technical Support to receive a hotfix.
31190 REST APISome virtual folder operations do not extend to the REST API.Workaround:For full parity, use the WebUI or MOVEit Automation.
35331 Key Rotation If disk capacity is less than the largest file in your filestore and you run key rotation, your key rotation process will fail to convert that file.
22448 Key Rotation
Key rotation functionality does not extend directly to environments that use Azure Blob Storage for their filestore.Workaround:Azure Blob Storage has its own encryption scheme and key management infrastructure.
17© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
MOVEit Automation – Known Issues
See the release notes for a complete listing of fixed issues
ID Category Known Issue
30475 SharePoint It is not possible to create a SharePoint host if that host requires a proxy server as part of its definition. To resolve this issue, contact Technical Support.
28751 SharePointSharePoint files and folders containing the following special characters cannot be downloaded in MOVEit Automation.~ " # % & * : < > ? / \ { | }.
29879 SharePoint
When an Office document is uploaded to SharePoint, SharePoint updates the document to store the SharePoint metadata that was added to the item in the library. This will cause the file size of the uploaded file to differ from the original file size.
8982 Web AdminNon-admin users cannot import tasks in MOVEit Automation.To resolve this issue, non-admin users should use the Admin Console rather than the Web Admin to import tasks. For more information, see Import Tasks.
UREP-5247 Central Agent, DMZ Agent
The Analytics Agent cannot connect to the MOVEit Transfer or MOVEit Automation with MySQL 8.To resolve this issue, contact Technical Support to receive a hotfix.
18© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
MOVEit Automation – Known Issues
See the release notes for a complete listing of fixed issues
ID Category Known Issue
362808 Web Admin
The Admin Console MOVEIt Log Group does not have the same level of access in Web Admin. Users who are only assigned to the MOVEIt Log Group cannot view any resources.To resolve this issue, create and assign MOVEIt Log Group users to a new resource group with read-only permissions for all existing resources. The resource group will need to be updated when new resources are added to Web Admin.
Neverfail If the default task logs location in MOVEit Automation is changed, the task logs will not replicate in Neverfail.
32589 Web AdminIt is not possible to place the cursor after a table in a HTML email.To work around this issue, before inserting a table insert lines in the HTML email body, then insert the table above the blank lines.
35354 Web Admin There are inconsistencies in HTML email table cell padding across different email providers, resulting in variations in appearance.
35361 Web Admin To achieve consistent fonts across email providers, format the text to use a specific font and font size.
MOVEit Transfer
20© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
MOVEit Transfer 2021.0Encryption Key Rotation Manager
Notification Branding
Critical System Alerts Email
MOVEit Client MFA Support
Mobile and MOVEit Client Sign-On Security Statement
REST API for Reports
REST API Folder Patch Settings
Enable/Disable External Auth Source
Logging Performance Improvements
21© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
Encryption Key Rotation Manager
The key rotation manager enables you to refresh the organization's passphrase (and the key derived from it) for your at-rest data (organization filestore).
Use the key management interface to deploy a rotation schedule, launch the key rotation process directly, or both.
When file re-encryption work completes using the new key, MOVEit Transfer notifies you by email.
Encryption Key Rotation DEMO
24© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
Encryption Key Rotation Manager
25© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
Key benefits§ Security Best Practices for PCI and Security aware customers§ Easier and secure Tennant / Organisation migration to another MOVEit
server.
26© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
Custom Branding for Email Notifications§ The SETTINGS > Appearance -
Brand page features intuitive controls and a new preview mode.
§ You can apply defaults at the global (SysAdmin) and specific designs for MOVEit Transfer organizations (OrgAdmin level).
§ Include site, team, or enterprise logo designs in email notifications.
§ Site branding controls are more intuitive.
Custom Branding DEMO
28© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
Key benefits§ Email messages are more user friendly § Give a sense of trust to the user§ Multi-ORG setups can have multiple branding options
29© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
Critical System Alerts EmailA separate email allows you to target a specific recipient for cases where MOVEitTransfer detects high-severity, low-frequency events.
§ SysCheck– Drive space issue - CheckLocalDrives– Web server running - CheckDMZWebServer– Validate disable setting - CheckDisableEncryption
• MIDMZFTP– Invalid cert– Default FTP server Certificate has Expired– No FTP ports configure– Duplicate ports
• MIDMZHASvc– MOVEit Transfer Services Stopped– MOVEit Transfer Services Restarted
30© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
Key benefits§ High severity messages are noticed quicker
31© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
MOVEit Client enabled with MFA Support§ MOVEit Client gives users
private access to a uniquely-generated verification code.• made available by email or
mobile app
§ This additional verification step ensures user sign-on is genuine.
32© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
Key benefits§ Higher security for the use of the desktop clients.
33© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
Client Sign-On Security Statement§ The security notice and
acknowledgment was extended to display when users sign-on to MOVEit Transfer.
§ This feature extends the audit compliance controls that are prescribed by most data security standards.
34© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
Key benefits§ Requirement for several security compliancy standards§ More customization for our customers
35© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
REST API for Reports§ Allows the API to be more easily integrated into customer
processes, providing the ability to handle the reports easily and efficiently.
36© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
REST API Folder Patch Settings§ Extend the REST API so to provide the same control over folder settings as provided through
the user interface.§ Providing full API control over folder settings ensures stickiness for customers who automate
their configuration.§ The partial folder update (PATCH /api/v1/folders/{Id}) now allows you to set the permissions
inheritance and update the folder description.
§ We've also added the following additional folder PATCH calls to provide API control over additional folder settings.• /api/v1/folders/{Id}/filemasks
• /api/v1/folders/{Id}/maintenance
• /api/v1/folders/{Id}/miscellaneous• /api/v1/folders/{Id}/notifications
• /api/v1/folders/{Id}/acls{entryId}• /api/v1/folders/{Id}/characterRestrictions
37© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
Logging Performance Improvements§ We improved diagnostic logging performance so users
with heavier system loads can enable higher debug levels.
§ The performance improvements include a control to limit how frequently diagnostic information is written to the log files.
§ By default, this control is set to write to logs every 60 seconds. This can be adjusted if needed.
§ We also changed the location of some log files:• DMZ_WEB.log will now only contain debug logs for the web
application.• DMZ_WebApi.log will contain debug logs for the REST API.• Scheduler application logs, such as TableCleanup.log will
contains debug logs for that execution of the application, in addition to the regular output of that application.
• Other service logs, such as DMZ_SSH.log, DMZ_FTP.log, and DMZ_XferStatusService.log remain unchanged.
MOVEit Automation
39© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
MOVEit Automation 2021.0
Advanced Task Configuration Enhancements
S3 Compatible Host Support
IP/Username Lockout Policy
Enhanced HTML Email Notifications
MOVEit Automation DEMO
41© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
Enhanced Advanced Task Workflow§ Modern and efficient web UI
workflow• Improved navigation• Enhanced visibility of groupings• Improved edit options• Drag-and-drop steps within the
task configuration.• Add task steps in-place
§ Two view options• Original• Updated (2021.0)
42© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
Enhanced Advanced Task Workflow Main
43© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
Enhanced Adv Task Workflow Context Menu
44© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
Enhanced Advanced Task Workflow D&D
45© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
Enhanced Advanced Task Workflow Switch Back
46© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
S3 Compatible Host Support§ Added alternate S3 host type
support to expand the hybrid cloud capabilities of MOVEit Automation.
§ MOVEit Automation users can now connect to S3 compatible endpoints such as Backblaze, IBM Cloud, Dell ECS hardware and others, and use it like any S3 host.
47© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
IP/Username Lockout Policy§ Provides MOVEit Automation
administrators with the means to implement additional security mechanisms to block access to MOVEit Automation
§ Define rules for when IP addresses and users are locked out, as well as managing a list of trusted IP addresses that are exempt from the IP lockout policy
§ MOVEit Automation administrators manage the IP/User Lockout Policy
48© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
IP/Username Lockout Policy – Extra Image
49© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
Enhanced Email Notifications§ More user-friendly email
experience that utilizes HTML formatting and macro inclusion.
§ Task creators and recipients benefit from the choice of HTML or plain text email options when adding• Send Email as a Next Action in
Traditional and Synchronization tasks
• Send Email as a Step element in Advanced tasks.
MOVEit TransferTier Bundles
53© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
Transfer Tier 1
• Up to 25 users• SFTP, FTPS, HTTPS
protocols• File and folder interface• Ad Hoc package interface• Free Mobile, Windows
and Mac clients
Transfer Tier 2
• Up to 50 users• SFTP, FTPS, HTTPS
protocols• File and folder interface• Ad Hoc package interface• Free Mobile, Windows
and Mac clients• Secure folder sharing
Transfer Tier 3
• Unlimited users• SFTP, FTPS, HTTPS
protocols• File and folder interface• Ad Hoc package interface• Free Mobile, Windows
and Mac clients• Secure folder sharing• REST, .NET, Java API
• Multi-ORG Optional
MOVEit Transfer Tier Bundles
*Plus 20/30% for Standard/Extended Support*Plus 20% for Standard Support
54© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
MOVEit Transfer Tier Bundle FeaturesMOVEit Transfer Licensed Features Tier 1 Tier 2 Tier 3 NotesMaximum Number of Users 25 50 Unlimited Max User Limit is enforced on all users (admin and regular)
File and Folders Interface Yes Yes Yes Max User Limit is enforced on all users (admin and regular)
Ad Hoc Module Yes Yes Yes Max User Limit is enforced on all users (admin and regular)
API Module No No Yes
Secure Folder Sharing Module No Yes Yes Max User Limit is enforced on all users (admin and regular)
Number of Orgs 1 1 1 More ORGs can be purchased for Tier 3
Multiple ORGs No No Optional
Gateway Optional Optional Optional
Non-production No Optional Optional
High Availability No No Optional Also known as “Web Farms”
Disaster Recovery No No Optional
Extended Support No No Optional
Mission Critical Support No No Optional
MOVEit AutomationTier Bundles
56© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
MOVEit Automation Tier BundlesAutomation
Tier 1
• 10 Hosts• 50 Tasks• 10 PGP Keys
• API Optional
Automation Tier 2
• 30 Hosts• 150 Tasks• 30 PGP Keys
• API Optional
Automation Tier 3
• Unlimited• Hosts• Tasks• PGP Keys
• API module
• ASx Optional**Plus 20/30% for Standard/Extended Support*Plus 20% for Standard Support
57© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
MOVEit Automation Tier Bundle FeaturesMOVEit Automation Licensed Features Tier 1 Tier 2 Tier 3 Notes
Maximum Number of Hosts 10 30 Unlimited 10 hosts excluding internal and UNC.
Maximum Number of Tasks 50 150 Unlimited
Maximum Number of PGP Keys 10 30 Unlimited
Custom Scripting No Yes Yes
Advanced Tasks No No Yes
Alternate Host Support No Yes Yes
Account Management (Delegate Permissions) No Yes Yes
API Module Optional Optional Yes
ASx Module No No Optional
Non-production No Optional Optional
Disaster Recovery No No Optional
Progress Software (Legacy) Failover No No Optional
Extended Support No No Optional
Mission Critical Support No No Optional
58© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
Summary
MOVEit Transfer Encryption Key Rotation Enablement
MOVEit Transfer Branded Notifications enablement
MOVEit Transfer Debug Logging Performance Improvements Enablement
MOVEit Transfer Report REST APIs enablement
59© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
Summary
MOVEit Automation Advanced Task UI Enablement
MOVEit Automation Amazon S3 compatible hosts Enablement
MOVEit Automation Enhanced Email Notification Enablement
MOVEit Automation IP Lockout Enablement
60© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
Q&A
61© 2021 Progress Software Corporation and/or its subsidiaries or affiliates. All rights reserved.
Vertrieb / Partnerschaft / Bezugswege / [email protected] / [email protected]
Pre-Sales / [email protected]
Progress CVP (Customer Validation Program)https://www.progress.com/moveit/customer-validation-program
Tutorial MOVEit Azure AD integrationhttps://docs.microsoft.com/en-us/azure/active-directory/saas-apps/moveittransfer-
tutorial
Important Vulnerability Fixeshttps://community.progress.com/s/article/MOVEit-Transfer-Vulnerability-April-2021