Field | Description |
Basic | |
Distinguished name | Displays the uniquely identified user, role, or group in LDAP or in the Directory Service. For example, uid=john,ou=people,o=system,o=mws. |
Disable login | Select this option if you want to disable a user’s ID and prevent the user from logging on to the server. The same applies to roles and groups. |
Associated partner | |
No partner | Select this option if you do not want to associate the user, role, or group with either a partner or your enterprise. |
Enterprise | Select this option if you want to associate the user, role, or group with your enterprise. |
Partner | Select this option if you want to associate the user, role, or group with a partner, and either select a partner from the list or type a new partner name and click Create. Note: Trading Networks partners are available only if Trading Networks is installed either on the local or remote machine and if the mft.partners.useTNPartners property is set to true. If mft.partners.useTNPartners is set to false, then you must create partners in ActiveTransfer manually. |
Upload preferences: These settings will override any throttling options set in the template associated with the user, role, or group. | |
Maximum speed (Kb/sec) | Type the maximum permissible speed in kilobytes per second for an upload operation. |
Maximum individual file size (MB) | Type the maximum permissible size in megabytes for an uploaded file. |
Maximum amount per session (MB) | Type the maximum amount of data in megabytes that can be uploaded per session. |
Maximum amount per day (MB) | Type the maximum amount of data in megabytes that can be uploaded per day. |
Maximum amount per month (MB) | Type the maximum amount of data in megabytes that can be uploaded per month. |
Download preferences | |
Maximum speed (Kb/sec) | Type the maximum permissible speed in kilobytes per second for n download operation. |
Maximum amount per session (MB) | Type the maximum amount of data in megabytes that can be downloaded per session. |
Maximum amount per day (MB) | Type the maximum amount of data in megabytes that can be downloaded per day. |
Maximum amount per month (MB) | Type the maximum amount of data in megabytes that can be downloaded per month. |
Active time window | Do one of the following: If you want to restrict access to particular days of a week, then under Days, select the required days you want the server to be available to the user. If you want to restrict access to particular time slots, then under Time selector, click . Select the From Time and To Time from the lists, respectively. |
File name filters | You can configure the file name filters to allow or deny commands (Upload, Download, List, Rename) for files that match a specified pattern. For example, you can restrict a user from uploading files that end with ".exe". When you configure the file name filters for Listener Preferences and Users, the User file name filer configuration overrides the Listener Preferences configuration. The file name filter is applied on the filename received by the server. For example, if a .pdf file is uploaded after changing the file extension to .txt, then webMethods.io MFT considers it as a .txt file when applying the filters. |
Patterns | Click to add one or more patterns to restrict actions to particular files, and specify the following details: Command: Select a command ( List, Download, Upload or Rename) from the list. Filter type: Select a filter type (Starts with, Ends with, or Contains) from the list. File name: Type a portion of the file name that the Filter type criterion should evaluate (for example, “exe”). Note: Any characters except wildcard characters and regular expressions are permitted. ActiveTransfer Server treats those characters as part of the file name. |
Block paths matching these patterns | Click to restrict a user's access to specific folders in the file system, and specify the following details: Pattern and Actions: Type the folder path you want to block. Tip: You can use simple pattern matching by preceding the pattern with the tilde (~) character. For example, to deny user access to the folder /system/bin, you must type: ~/system/bin/* |
Authentication and login | |
Maximum simultaneous logins | Type the maximum number of simultaneous logins allowed for the same user. Note: File transfer clients like FileZilla or WinSCP may create additional login sessions to optimize file transfer. |
Require public key and password (For SFTP listener) | Select this option if you want ActiveTransfer Server to require the user to provide a public key and password. |
Maximum login time per session (min) | Type the maximum number of minutes a user can remain logged in per session. |
Maximum idle time per session (min) | Type the maximum number of minutes a user session can remain idle. |
Trusted Public SSH key alias | |
Public SSH key alias | Click and specify certificate alias for the trusted public SSH key files. |
Connection | |
Allowed protocols | Select the protocols for which you want to allow connections for from the list. |
Default character encoding | Select the appropriate default character encoding from the list. The default is UTF-8. |
IP restrictions | Click to add one or more IP addresses for which ActiveTransfer Server can accept or deny connection requests and specify the following details: Select Allow or Deny from the list. Type the IP address range in the From and To boxes. |
File-based encryption | |
Public PGP key alias | Type or browse the certificate alias for the public PGP key. Note: You can use the wm.mft.security.pgp:generatePGPKeyFiles service to generate an OpenPGP key pair. For more information about generating an OpenPGP key pair, see wm.mft.security.pgp:generatePGPKeyFiles. |
File-based decryption | |
Private PGP key alias | Type or browse the certificate alias for the private PGP key. |
Active tunnels | |
Tunnels | Select the tunnel that you want to associate with this user, role, or group from the list of available tunnels on the Acceleration page. Note: You must only map one tunnel to a user. If you map more than one tunnel to a user, ActiveTransfer Server ignores all but the first tunnel you mapped. |