© Copyright 2007-2011
Founded in 1994 - based in Nebraska
Private company with no debt or outside funding
Dedicated to Research and Development
Focused on Data Automation and Security
Responsive technical support; Toll-free, Email, Web
IBM Advanced Business Partner
Microsoft Gold Certified Business Partner
Other Partnerships: Oracle, Sun, Novell, RedHat, Apple, VMware and PCI Security Standards Council
Company Background
Over 3,000 Customers Worldwide
AAA Cooper Transportation
Abbott Nutrition
ADP
Barclays
Boise Cascade Corp (Trucking)
Boone County Government
Bristol Hospital
Cabela's
Centresoft (United Kingdom)
Charles County Public Schools
City of Owensboro
City of Redding
City of St. Petersburg
Coachella Valley Water District
Cooley Godward Kronish LLP
COOMEVA (Colombia)
Covidien
Delta Dental
Disneyland Resort
FBD Insurance (Ireland)
First Hawaiian Bank
PGA Tour
Pizza Hut
RSC Equipment Rental
Scotiabank
Service Insurance Group
SGBL Bank (Lebanon)
Shop Vac Corporation
Sinclair Services Company
Smith & Wesson
State of California - Developmental Services
Stratosphere
Sungard
Toronto Dominion Bank
Think Bank
Unidad de Inversion Colpatria (Colombia)
United Auto Insurance
United Rentals Inc.
Universal Orlando
University of Arkansas
Western Bank
Woolrich Inc
Yamaha Motor Europe N.V. (Netherlands)
GE Aviation
Henry Schein Inc
Hitchcock Shoes
ICE Services AB (Sweden)
Integra Bank
Iowa School for the Deaf
John Deere
KOA Campgrounds
Kwik Trip
Lionel L.L.C.
London Insurance Group
Madison Square Garden
Maines Paper & Food Service
Marlborough Stirling Canada
Mendota Insurance Company
Minnesota State Lottery
Monterey Mushrooms, Inc.
National Bank of Kuwait (Lebanon)
Nebraska State Patrol
New York Metropolitan Museum of Art
NEXCOM
Penson Financial Services Canada, Inc.
Product Summary
GoAnywhere Director™ is a managed file transfer solution that automates and secures the exchange of data with your customers, trading partners and enterprise servers. GoAnywhere Director connects to almost any server or data source using a wide variety of standard and secure protocols.
GoAnywhere Services™ allows trading partners (e.g. customers, vendors, remote employees) to securely connect to your system and exchange files within a fully managed and audited solution. It includes the popular file transfer server protocols of FTP, FTPS, SFTP and HTTPS .
GoAnywhere Gateway™ acts as an enhanced reverse proxy that provides an additional layer of network defense. It allows your trading partners to connect to GoAnywhere Services without having to open incoming ports into your private network or store sensitive information in the DMZ.
Product Summary
Product Diagram
Automates data movement throughout the Enterprise
Streamlines data transmissions with Trading Partners
Eliminates: - Custom programming and scripts - Manual processes - PC file transfer tools - VANs and Dial-Ups
Secures transmissions to comply with PCI DSS, HIPAA, HITECH, SOX and state privacy laws.
Decreases transmission times through compression
Supports concurrent large file transfers with auto-resume and integrity checks
Provides centralized point-of-control and administration
Includes detailed logging and message alerts
Implements industry standards
Benefits
For compliance with FIPS, PCI-DSS, HIPAA, Sarbanes Oxley, GLBA and State Privacy Laws
Secure Protocols •SFTP – FTP over SSH•FTPS – FTP over SSL/TLS•SCP – Secure Copy•HTTPS – HTTP over SSL•OpenPGP / GPG•ZIP with password protection•Encrypted email (SMIME)•AS2
AES encryption (key lengths of 128, 192, 256) – NIST standard
Two Factor Authentication
Key Management tools for OpenPGP Keys, SSL X.509 certificates and SSH Keys
Role-based Administration
SSL protected console
Security
Installs to AIX, HP-UX, IBM System i, IBM System p, IBM System z, Linux, Mac OS, Microsoft Windows, Sun Solaris and UNIX
Customer installable – Less than 30 minutes typically
Includes over 50 different business processes (Tasks)
Project-based design allows “chaining” of multiple Tasks together
Automate Projects with built-in scheduler
Launch Projects from other platforms, applications and programming languages
Installation and Configuration
Server Connectivity (Resources)
File Systems - Network Shares (SMB/CIFS) - Local File System
FTP - Standard FTP - SFTP (FTP over SSH) - FTPS (FTP over SSL) - SCP (Secure Copy)
Web Sites - HTTP - HTTPS (HTTP over SSL) - Web Services - AS2
Email - POP3 - IMAP - SMTP
Database - DB2 - Oracle - Microsoft SQL Server - Sybase - MySQL - PostgreSQL - Informix
Enterprise Messaging - Websphere MQ - SonicMQ - ActiveMQ
Automated Transfers – Outgoing
Database
Database
Convert
- Excel - XML - Delimited (CSV) - Fixed Width
FTP SFTPFTPSSCP
Email HTTP/s File System
Options
- ZIP- GZIP- PGP Encrypt
File System
AS2
Automated Transfers – Incoming
Database
Convert
- Excel - XML - Delimited (CSV) - Fixed Width
FTP SFTPFTPSSCP
Email HTTP/s File System
File System
Options
- UNZIP- GUNZIP- PGP Decrypt
ImportCall Program or Script to
Process Files
GoAnywhere Administrator
Browser based front-end for configuring GoAnwhere Projects
Intuitive screens and wizards - AJAX enabled
All definitions stored on server
Graphical dashboard - Define Resources and Projects - Schedule and execute Projects - Monitor active Jobs - View Job Logs - Configure User Authority - View statistics
Resource Setup
Predefine Resources in GoAnywhere Administrator
Each Resource has a unique name
Only authorized administrators can maintain Resources
Stored in GoAnywhere central database
Use Resources from within Projects
Project defines the Business Processes to perform
Each Project contains one or more Modules
Each Module contains one or more Tasks
Project can contain variables that may be overridden at runtime
Define Projects through graphical wizards or XML
Projects and Tasks
project name=“TestProject" mainModule=“Module B" version="1.0"><variable name=“FileName" value=“employees.xls" /><module name=“Module B">
<sql label=“Fetch from Database" resourceId="Production 400">
<query outputVariable="data"><statement>select * from
LNMXDEMO.EMP</statement></query>
</sql>
<writeExcel label=“Convert to Excel" inputRowSetVariable="${data}" outputFile=“${FileName}" sheetName="Employees"
includeHeadings="true"><data trim="both"/>
</writeExcel></module>
</project>
Define Projects through graphical interface
Organize Projects under folders and control access rights to the folders
Project Designer
Database
Connect to DB2, Oracle, SQL Server, Sybase, MySQL, PostgreSQL and Informix
Do not need to load additional software on database server - connects via JDBC 2.0 drivers
Run any SQL statement supported by the database (e.g. Select, Insert, Update, Delete, Call, Create…)
Example uses of SQL in GoAnywhere: - Import files (text, Excel, XML) into database tables - Export records from a database table into a file (text, Excel, XML) - Copy records between tables - Call stored procedures on a database server - Create and Alter tables
FTP
FTP command support - Get files - Put files - Delete files - Move files - Make Directory - Change Directory - Rename Directory - Execute Custom Commands
Connection retry attempts with file auto-resume
Auto-detect Binary and ASCII modes
Include or Exclude files based on - Wildcards (i.e. “trans*.txt” or “*.xls”) - Date/time range - Size range
Auto suffix or prefix file names with timestamps, values or variables
Configurable ports
Example of FTP Get:
SFTP = FTP over SSH
SSH 2.0 is latest standard
SFTP encrypts the entire connection including data, users ids, passwords and commands
Authenticate with a User id and• Password• Key• Password and Key (Dual Factor)
Connection retry attempts with file auto-resume
Wildcard file filters, auto prefix/suffix file names, etc.
Configurable ports
TERMS
SSH is an abbreviation for Secure Shell. SSH is both a computer program and an associated network protocol designed for encrypting communications between two untrusted hosts over a network. It utilizes Public keys to provide asymmetric cryptology.
GoAnywhere SFTP Server
SFTP
FTPS = FTP over SSL/TLS
Encrypts entire connection including data, user ids, passwords and commands
Explicit and Implicit FTPS are both supported
Supports dual-factor authentication using a combination of certificates and user/passwords
Certificates can be self-signed or signed by a certificate authority (CA) like Verisign
Connection retry attempts with file auto-resume
Wildcard file filters, auto prefix/suffix file names, etc.
Configurable port ranges
TERMS
SSL is an abbreviation for Secure Sockets Layer. SSL is a security protocol for encrypting communications between two hosts over a network. SSL utilizes certificates to establish trust between the two hosts.
TLS is the abbreviation for Transport Layer Security and is the successor to SSL.
GoAnywhere FTPS Server
FTPS
Send email - Supports multiple To, CC and BCC addresses - Specify SMTP server, subject, message, reply to - Multiple attachments allowed - Support for international characters - SMIME support for encrypted emails
Retrieve email - Filter incoming emails based on From, To, Subject and Message - Store attachments for further processing - Can retrieve email from POP-3 and IMAP servers - SSL support
HTTP
HTTP and HTTPS (SSL)
Supports Cookies and HTTP Redirects
Perform requests with Parameters
HTTP Get - Download multiple files in one session - Filter files based on last modified date/time
HTTP Post - Upload multiple files in one session
Data Translation
Read and Write popular data formats - Database - Excel - Fixed-Width text - Delimited text (CSV) - XML
Can convert between formats. Examples: - Database to CSV - CSV to Excel - XML to Database
XML Write
Multiple sources (database, CSV, fixed-width, Excel)
Create multi-level XML documents
Header/Detail support
Custom XML tag names and attribute names
Format numbers and dates
Specify null substitute values
Data trim options
Indention / whitespace formatting
Schema or DTD validation
XML Read
Parse complex multi-level XML documents
Schema or DTD validation
Header/Detail support
Data trim options
Supports multiple date and number formats
Skip invalid records
XML data can be inserted into database tables
XML data can be converted to other formats (i.e. Excel or CSV)
Excel Write
Supports Excel 95, 97, 2000(XP), 2003, 2007 and 2010 spreadsheets
Support for Excel Templates
Write to Multiple sheets
Custom titles, page headers, column headings and page footers
Control fonts, font sizes, colors, alignment, etc. (by sheet or column)
Format dates and numbers using formatting options supported by Excel
Append or Replace
Excel Read
Supports Excel 95, 97, 2000(XP), 2003, 2007 and 2010 spreadsheets
Indicate the sheet name to read
Specify the starting row number
Specify column types/sizes
Trim options
Format options for dates/numbers
Null substitute values
Import into database or convert to another format (i.e. CSV or XML)
Fixed Width and Delimited
Read and write text documents
Fixed-width and Delimited text (CSV)
Supports multiple date and number formats
Record delimiters (CR, LF, CR/LF, LF/CR)
Text qualifiers
Null substitute values
Read - Data can be inserted into a database table - Data can be converted to other formats (i.e. Excel or XML)
Write - Append or Replace - Specify type of delimiter (commas, tabs, pipes, etc.) - Include/exclude column headings
Symmetric Form of Encryption – Password based
Can encrypt and compress multiple files at once (packaging)
Password protection: Standard, AES128, AES192 or AES256
Compresses typical data to 1/10th of original size
Compatible with PKZIP, WinZip and other ZIP tools
ZIP Compression and Encryption
ZIP Compression and Encryption
ZIP:
UNZIP:
“A transfer can be defined in just five steps”
TERMS
OpenPGP standard is a non-proprietary and industry-accepted protocol which defines the standard format for encrypted messages, signatures and keys. This standard is managed by the IETF (Internet Engineering Task Force). Key Pair is a combination of a Private key and its corresponding Public key. Key Pairs are used within Asymmetric Cryptology systems, such as OpenPGP, SSH and SSL.
Private Key is the portion of a Key Pair which is used by the owner to decrypt information and to encode digital signatures. The Private key, typically protected by a password, should be kept secret by the owner and NOT shared with trading partners. Also known as a Secret Key.
Public Key is the portion of the Key Pair which is used to encrypt information bound for its owner and to verify signatures made by its owner. The owner’s Public key should be shared with its trading partners.
Widely used for exchanging sensitive files over the internet.
Uses combination of Asymmetric-key and Symmetric-key cryptology to provide high level of protection and speed
Encrypt with Public Key -- Decrypt with Private Key (Secret Key)
Encrypted files can be sent over standard FTP connections or Email
Provides compression to reduce file sizes
OpenPGP Encryption
OpenPGP Screen Examples
GoAnywhere integrated OpenPGP key management
Create, Change, Delete, Import and Export Keys
OpenPGP Key Management
A Digital Signature is used to authenticate the Sender
Sign with Private Key
Verify with Public Key
TERMS
Digital Signature is an electronic signature which is encoded into a document using the sender’s Private key. This signature can be authenticated by the recipient using the sender’s Public key. An authenticated signature will ensure the original content of the document has not been altered by an unauthorized party.
OpenPGP Signatures
Asymmetric Key Types (Used to encrypt/decrypt the Symmetric Session Keys)
Diffie-Hellman (recommended)DSA RSA
Symmetric Ciphers (Used to encrypt/decrypt the message data)
AES-128AES-192AES-256 (recommended)Blowfish CAST5 DES IDEA Triple DESTwofish
Compression Algorithms (Used to compress the message data)
ZIPZLIB
OpenPGP Algorithms
Crypto Studio - OpenPGP Key Management
Installs to Windows, Mac and Linux
Create, Change, Delete, Import and Export Keys
Perform desktop-level encryption, signing, verification and decryption of documents
Crypto Studio is also good for smaller Trading Partners
Single license included with GoAnywhere
Desktop OpenPGP
Other Tasks
Copy, Move, Rename and Delete Files
Create Directories
Timestamp
Create and delete workspaces
Call native programs and scripts on Windows, Linux, etc.
Call IBM i (iSeries) programs and commands
Module Conditioning and Dependencies
Module dependencies
Conditional execution of Modules
Execute a module only if a particular condition is met
Error Handling
Define what should be done when a task errors out - Abort (default) - Continue - Set a value for a variable - Call a specific module
Error handling can be defined on a project, a module or a task
Execute immediately or in Batch
Place in GoAnywhere Scheduler
Use existing Scheduler
Execute from OS command line
Execute from within your applications
Executing Projects
Flexible scheduling: - One Time - Minutely - Hourly - Daily - Weekly - Monthly
Set login user and password, queue priorities, etc.
Email notification (when fails and when successful)
GoAnywhere Scheduler
Run projects in GoAnywhere using the RUNPROJECT command and APIs
RUNPROJECT available for IBM i (iSeries), Windows, Linux and UNIX
Requests sent to GoAnywhere over HTTP requests
Override Variables
Run interactive or batch
Specify Job Queue priority
Trap for errors
RUNPROJECT command
The RUNPROJECT command and APIs are provided at no additional charge in GoAnywhere.
RUNPROJECT example (CL)
Monitor for message ids
Any errors are placed in job log
Retrieve any errors with RCVMSG command
RUNPROJECT example (Windows)
C:\> RunProject -server http://192.168.1.184:8000/goanywhere -user SFIELD -password ********* -project /Payroll/SendDirectDeposit -logFile C:\GoAnywhereLogs\MyLog.log filename “payrolldata.csv”
Every execution of a Project is considered a “Job”
Each Job is assigned its own Job Number and Job Log
Starts in a Job Queue
Can override Job Queue priority and Execution priority
Multi-threading (to allow the concurrent execution of multiple projects)
Monitor active Jobs (hold, release, cancel)
Project Execution Flow
Logging
Global Log
Job Log per execution of Project
Log Level can be defined on a project, module or a task
Log Level controls what should be logged: - SILENT - INFO - VERBOSE - DEBUG
Search Completed Jobs - Date/time range - User - Project Name - Job Number - Status
Example Job Log
1/21/08 9:38:07AM INFO Start Date and Time: 1/21/08 9:38:07 AM1/21/08 9:38:07AM INFO Job Number: 1200325835858 1/21/08 9:38:07AM INFO Project Name: /Demo/DB to Excel to Zip and FTP1/21/08 9:38:07AM INFO Submitted By: administrator
1/21/08 9:38:07AM INFO Executing task 'Retrieve Records‘1/21/08 9:38:07AM INFO Executing statement select * from LIBRARY.EMP1/21/08 9:38:08AM INFO Query execution produced a rowset1/21/08 9:38:08AM INFO Finished task 'Retrieve Records‘
1/21/08 9:38:08AM INFO Executing task 'Create Excel File‘1/21/08 9:38:09AM INFO 8 record(s) were written1/21/08 9:38:09AM INFO Finished task 'Create Excel File'
1/21/08 9:38:09AM INFO Executing task 'Create ZIP File‘1/21/08 9:38:09AM INFO Compressing file '/files/employees.xls‘1/21/08 9:38:09AM INFO Number of files compressed: 11/21/08 9:38:09AM INFO Finished task 'Create ZIP File‘
1/21/08 9:38:09AM INFO Executing task 'FTP the ZIP File‘1/21/08 9:38:09AM INFO Connecting to '192.168.1.2' at port '21' 1/21/08 9:38:10AM INFO Executing sub-task 'put‘1/21/08 9:38:10AM INFO Setting the data type to AUTO1/21/08 9:38:10AM INFO Uploading ‘/files/employees.zip’1/21/08 9:38:12AM INFO 1 file(s) were uploaded successfully1/21/08 9:38:12AM INFO Finished sub-task 'put‘1/21/08 9:38:12AM INFO Closed the FTP connection1/21/08 9:38:12AM INFO Finished task 'FTP the ZIP File'
1/21/08 9:38:12AM INFO Finished module 'main‘1/21/08 9:38:12AM INFO Finished project 'DB to Excel to Zip and FTP‘1/21/08 9:38:12AM INFO End Date and Time: 1/21/08 9:38:12 AM
Security
Authorized users must have valid user id and password
Passwords can be authenticated against GoAnywhere database or System i
Users can be organized into User Groups
Roles can be assigned to Users and User Groups - Product Administrator - Security Officer - Resource Manager - Project Designer - Job Manager - User
Authorize Resources
Authorize Project Folders
Advanced
Thread-safe - Controls whether or not a project can be executed simultaneously
Workspaces - Each execution of a project (or a job) can have its own workspace for storing temporary files
Import Projects and Resources
Promote Projects and Resources to other installations
Diagram
Overview
Allows your trading partners and employees to securelyconnect to your organization and easily retrieve or upload files.
Supports open transfer protocols of FTP, SFTP, FTPS, HTTP/s
Can secure transmissions with SSL/TLS or SSH encryption
Provides a pure web client for simple file transfers
Includes event triggers based on user-defined conditions
Generates detailed audit logs and alert messages
Provides trading partner account wizards and permission controls
Intuitive browser-based interface for administration and monitoring
No programming or special skills needed
Installs to Windows, Linux, IBM i (iSeries), IBM System p, HP-UX, Sun Solaris and UNIX
Trading Partner Management
Unlimited number of trading partners can be configured
Grant individual permissions or adopt permissions from groups
Restrict access based on the type of service (FTP, SFTP, FTPS, HTTP/s)
Restrict access to certain functions (e.g. upload, download, delete, rename, etc.)
Automatically send email with user id and password
Web Client
Allows your trading partners simple access to your system for exchanging files
Authenticate using user-ids/passwords/certificates with granular permission controls
Full audit trails and event triggers
Choose between basic and enhanced (applet) interfaces
Rebrand with your company logo
Audit Logs
Audit logs stored for every transaction (login, upload, download, rename, etc.) for all services
Search using a wide variety of filter criteria
View on-line or export to CSV
Integration with GoAnywhere Director
GoAnywhere Director can send/retrieve filesto/from GoAnywhere Services
GoAnywhere Services can call Projectsin GoAnywhere Director based on triggers
Triggers based on file upload, download,rename, etc.
Pass parameters, such as user and file name
Can run multiple triggers per event
Introduction
No incoming ports are opened into the private (internal) network
No sensitive files are stored in the DMZ
User credentials and permissions are maintained/stored in the private network
Services configurations are maintained/stored in the private network
Supports FTP/s, SFTP and HTTP/s file transfer protocols
No special hardware components; software-only solution
Installs to Windows, Linux, AIX, UNIX and Solaris operating systems
How It Works
Linux (32-bit and 64-bit):
- Distributions Red Hat, SUSE, Ubuntu (not inclusive) - Disk space 150 MB - Memory 256 MB
Windows (32-bit and 64-bit):
- Operating System Windows 2000, 2003, 2008, XP, Vista, 7 - Disk space 150 MB - Memory 256 MB
IBM i (iSeries):
- Operating System V5R3 or higher - Disk space requirements 100 MB - Memory requirements 256 MB - JRE 1.5 or later
UNIX / AIX / Solaris / HP-UX: - Disk space requirements 100 MB - Memory requirements 256 MB - JRE 1.5 or later
GoAnywhere Installation Requirements
Web site:www.GoAnywhereMFT.com
E-mail:[email protected]
Toll-free: 1-800-949-4696Direct: (402) 944-4242Fax: (402)
944-4243
Address: 1409 Silver Street Ashland,
NE 68003 USA
How to Contact Us