New GoAnywhere File Transfer Set Up Tasks



Similar documents
Quick Reference Guide. Online Courier: FTP. Signing On. Using FTP Pickup. To Access Online Courier.

fåíéêåéí=péêîéê=^çãáåáëíê~íçêûë=dìáçé

SECURE FTP CONFIGURATION SETUP GUIDE

Setup Instructions for Secure Hummingbird FTP

F-Secure Messaging Security Gateway. Deployment Guide

Capture Pro Software FTP Server System Output

DMZ Gateways: Secret Weapons for Data Security

Quick Start Guide. Cerberus FTP is distributed in Canada through C&C Software. Visit us today at

Capture Pro Software FTP Server Output Format

Access Instructions for United Stationers ECDB (ecommerce Database) 2.0

smartoci User Guide Secure FTP for Catalog Loads

GS1 Trade Sync Connectivity guide

User's Guide. Product Version: Publication Date: 7/25/2011

Experian Secure Transport Service

F-SECURE MESSAGING SECURITY GATEWAY

Royal Mail Business Integration Gateway Specification

Learning Series: SAP NetWeaver Process Orchestration, secure connectivity add-on 1c SFTP Adapter

STERLING SECURE PROXY. Raj Kumar Integration Management, Inc.

File Transfer. User Guide For Clients and Vendors. Last Revised: October

Online Banking for Business Secure FTP with SSL (Secure Socket Layer) USER GUIDE

How To Load balance traffic of Mail server hosted in the Internal network and redirect traffic over preferred Interface

Parallels Plesk Panel

Device Log Export ENGLISH

State of Wisconsin DET File Transfer Protocol Service Offering Definition (FTP & SFTP)

External Authentication with Citrix Secure Gateway - Presentation server Authenticating Users Using SecurAccess Server by SecurEnvoy

Dove User Guide Copyright Virgil Trasca

Security. TestOut Modules

Adobe Marketing Cloud Using FTP and sftp with the Adobe Marketing Cloud

Configure Backup Server for Cisco Unified Communications Manager

Using VDOMs to host two FortiOS instances on a single FortiGate unit

Methods available to GHP for out of band PUBLIC key distribution and verification.

Parallels Plesk Control Panel

How To Login To The Mft Internet Server (Mft) On A Pc Or Macbook Or Macintosh (Macintosh) With A Password Protected (Macbook) Or Ipad (Macro) (For Macintosh) (Macros

Configuring the Dolby Conference Phone with Cisco Unified Communications Manager

Step-by-Step Setup Guide Wireless File Transmitter FTP Mode

How to install and set up the WinSCP software for Secure File Transfer

CASHNet Secure File Transfer Instructions

GlobalSCAPE DMZ Gateway, v1. User Guide

APPLICATION NOTE. CC5MPX Digital Camera and IPn3Gb Cellular Modem 10/14. App. Note Code: 3T-Z

SOSFTP Managed File Transfer

How Managed File Transfer Addresses HIPAA Requirements for ephi

Secure FTP. Client user guide. Author: Steria A/S Version: 2.2 Date: 20 January 2010 Document SecureFtpClientUserguideV2_2.doc

Georgia State Longitudinal Data System

Scope. Requirements. Assumptions. EFT Server Environment

HP Device Manager 4.6

File Space / Web Space / Database Space - Self-Service Allocation August 2009

Online Banking for Business Secure FTP with SSH (Secure Shell) USER GUIDE

Safe Financials Limited. The CREST Simulator. File Transfer Overview and SFL Gateway

DESLock+ Basic Setup Guide Version 1.20, rev: June 9th 2014

Clearswift Information Governance

OfficeServ 7100 IP-PBX. SIP Trunking using the Optimum Business Sip Trunk Adaptor and the Samsung

Configuring User Identification via Active Directory

IBM Campaign Version-independent Integration with IBM Engage Version 1 Release 3 April 8, Integration Guide IBM

Shipping Services Files (SSF) Secure File Transmission Account Setup

Configure Managed File Transfer Endpoints

WhiteWave's Integrated Managed File Transfer (MFT)

Pre Sales Communications

Enabling Users for Lync services

freesshd SFTP Server on Windows

VoIPon Tel: +44 (0) Fax: +44 (0)

NAS 109 Using NAS with Linux

Step-by-Step Setup Guide Wireless File Transmitter FTP Mode

Step-by-Step Setup Guide Wireless File Transmitter FTP Mode

IBM Campaign and IBM Silverpop Engage Version 1 Release 2 August 31, Integration Guide IBM

EVault for Data Protection Manager. Course 361 Protecting Linux and UNIX with EVault

Configuring the WT-4 for ftp (Infrastructure Mode)

SECURE YOUR DATA EXCHANGE WITH SAFE-T BOX

Cisco SSL Encryption Utility

Note: With v3.2, the DocuSign Fetch application was renamed DocuSign Retrieve.

SIP Trunking using Optimum Business SIP Trunk Adaptor and the Allworx 6x IP PBX

Viking VPN Guide Linux/UNIX

Configuring the WT-4 for ftp (Ad-hoc Mode)

How to setup FTP and Secure FTP for XD Series

Encrypted File Transfer - Customer Testing

Centers for Medicare and Medicaid Services. Connect: Enterprise Secure Client (SFTP) Gentran. Internet Option Manual

CAC/PIV PKI Solution Installation Survey & Checklist

WinSCP for Windows: Using SFTP to upload files to a server

How to Secure Mainframe FTP

Using

SecureTransport. Version 5.3.0

Cox Business Premium Online Backup USER'S GUIDE. Cox Business VERSION 1.0

Sysax Multi Server User manual

What IT Auditors Need to Know About Secure Shell. SSH Communications Security

Transferring Your Internet Services

Centrify Cloud Connector Deployment Guide

HOW TO RETRIEVE FILES FROM THE TARGET ANALYTICS FTP SITE

IBM Unica emessage Version 8 Release 6 February 13, Startup and Administrator's Guide

CSC E Mail. Mobile Device Configuration Settings and Setup Instructions

Oracle Managed File Getting Started - Transfer FTP Server to File Table of Contents

Sentral servers provide a wide range of services to school networks.

Alert Notification of Critical Results (ANCR) Public Domain Deployment Instructions

AXIS 70U - Using Scan-to-File

Secure Data Transfer

Transcription:

New GoAnywhere File Transfer Set Up Tasks 1 Task Name Comments Assigned To Duration NEW GO ANYWHERE FILE TRANSFER SETUP TASKS 2 STANDARDS 3 4 PCSSC will be encrypting all files whether they contain PII (personally identifiable information) or not, using PGP - that means you will need to obtain both prod and non-prod PGP keys. PCSSC will provide one directory on the MFT server for each campus or vendor and application to send files to that will use the same credential scheme as above. Prod and non-prod, etc. The Sftp server will have folders where locations/vendors place their files. 5 RECOMMENDATIONS 6 7 PCSSC will set up the FTP on a Production Server and the connections can be adjusted to point to any environment for testing purposes per the needs of the business. PCSSC recommends all files be placed into one directory (whatever the root context is for the credential used) at the recipients FTP server. We recommend that campus have a utility to move the files off the FTP server into internal directories for the applications that consume the data files. This is a good practice from a security point of view. 8 PLANNING (Initial Scope and Design) 9 10 11 12 Open a Service Request with PCSSC to request GoAnywhere Job(s) be configured Complete the GoA MFT Form and attach it to the Service Request ticket. Complete Control-M Job Form for each new Job Provide Job Documentation and Runbook for each new job 13 Provide Contact information for each Infrastructure Team at the sending and receiving locations Estimated time to complete a new File Transfer Configuration is two weeks minimum per environment to three months maximum end to end, depending on what needs to be configured. Setup of new File transfers on existing infrastructure is based on existing SLAs. Ex:. GoA MFT Form attached.. Control-M Form attached.. Sample Runbook Documentation attached. Requesting IT Business Partner Requesting IT Business Partner 1 Requesting IT Business Partner 10 Requesting IT Business Partner 10 Requesting IT Business Partner 14 Unix System Administrator Requesting IT Business Partner 1 15 Windows System Administrator Requesting IT Business Partner 1 16 Network Administrator Requesting IT Business Partner 1 17 Change Control Group Requesting IT Business Partner 18 Any External Vendor or Customer Contact Name and Phone Requesting IT Business Partner 19 20 Data Gathering Provide Procedure for opening a Service Request to each of the Infrastructure teams above. Requesting IT Business Partner 1 21 A PCSSC Coordinator will assign the Service Request to a Liaison PCSSC Coordinator 1 Page 1 of 9

22 23 Task Name Comments Assigned To Duration 24 DEVELOPMENT Liaison will contact the Requesting IT Business Partner and review the Service Request scope and design Liaison will set up Weekly ½ Hour File Transfer Status Meeting with the Requesting IT Business Partner 25 GoA CONFIGURATION TASKS 26 27 UNIX 28 29 Configure Transfer Source/Destination Servers to Communicate with GoAnywhere via SFTP/FTPS 30 Windows 31 32 33 34 UNIX 35 Open a Work Request to Transfer Source/Destination Unix System Administrator, if needed Server Configuration Completed Open a Work Request to Transfer Source/Destination Windows System Administrator, if needed Server Configuration Completed Set up a Standard User ID that will be used to log into GoA and Transfer Files Open a Work Request to the IT Business Partner Unix System Administrator, if applicable, to set up a Standard Userid that will be used to log into GoA and transfer files PCSSC Liaison Unix System Administrator 10 Windows System Administrator 10 PCSSC Liaison 36 User ID Configured Unix System Administrator 1 37 Windows 38 39 Open a Work Request to IT Business Partner Windows System Administrator to set up a Standard Userid that will be used to log into GoA and transfer files User ID Configured 40 Establish Userid RW Access to Transfer Source/Destination file Directories 41 Unix 42 Open a Work Request to IT Business Partner Unix System Administrator to give IT Business Partner Enterprise User ID RW access to the Transfer to/from File Directories Windows System Administrator 1 PCSSC Liaison Only if applicable 43 Establish UserID RW Access Unix System Administrator 1 44 Windows 45 Open a Work Request to IT Business Partner Windows System Administrator to give IT Business Partner Enterprise User ID RW access to the Transfer to/from File Directories Only if applicable Page 2 of 9

Task Name Comments Assigned To Duration 46 Establish UserID RW Access Windows System Administrator 1 47 Open Firewalls PCSSC Liaison 48 If there is a Firewall in place at the location, open a Work Request to the IT Business Partner Network Administrator to Enable Firewall Access to the GoA Server PCSSC Tool Admin 1 49 Open Firewall Network Administrator 10 50 Generate Public and Private Keys and share with the Destination Party 51 Modify RACF Permissions (for Mainframe Files) If necessary 52 Open a UCOP Mainframe Service-Now RACF request. GoA Tool Admin File Owner 1 53 Complete RACF Changes UCOP Mainframe RACF Admin 1 54 Configure GoA Services 55 56 Configure an Application-Specific Services Userid and Password Configure Services Trigger 57 Configure GoA Director 58 59 Configure GoA Director Resources Configure Director Projects (The Jobs that are going to run) 60 CONTROL-M CONFIGURATION TASKS 61 62 TESTING Configure Control-M Jobs Liaison configures GoA Director resources based on templates. Liaison configures GoA Director projects based on templates. PCSSC Liaison 5 PCSSC Liaison 5 0 63 Test each new File Transfer PCSSC Liaison and Business Partner 10 64 IT Business Partner Sign Off Test File Transfers Successful Requesting IT Business Partner 0 65 DEPLOYMENT 66 Load all relevant documentation to PCSSC Sites and update FTP list PCSSC Liaison 67 Pre GO LIVE communication plan PCSSC Liaison and Business Partner 2 68 Review Communication Plan with department POC PCSSC Liaison and Business Partner 1 69 Review Support Model with Requesting IT Business partner 70 Promote File Transfer to PROD 71 Test File Transfer in PROD PCSSC Liaison and Business Partner 10 72 IT Business Partner Sign Off - File Transfers Successful in PROD Requesting IT Business Partner 0 73 Communicate Changes Requesting IT Business Partner 74 Set up in XMatters or Pager Duty PCSSC Liaison and Business Partner 1 75 GO LIVE Page 3 of 9

Discussions on New GoAnywhere File Transfer Set Up Tasks NEW GO ANYWHERE FILE TRANSFER SETUP TASKS Row 1 Started by Beatrice Cardona on 03/23/15 10:26 AM http://ist.berkeley.edu/is/platforms/pcssc Beatrice Cardona on 03/23/15 10:26 AM Open a Service Request with PCSSC to request a GoAnywhere Job be configured Row 9 Started by Beatrice Cardona on 03/17/15 11:47 AM Send an email to uc-pcssc-tickets@berkeley.edu Beatrice Cardona on 03/17/15 11:47 AM Complete the MFT Form and attach it to the Service Request ticket. Row 10 Started by Beatrice Cardona on 03/17/15 11:47 AM The data gathering process involves obtaining the following information (please see the form for details). Process Name Run Frequency Dependency Run Control Values Output destination DDODS related information Informatica related information Beatrice Cardona on 03/17/15 11:47 AM Configure Server to Communicate with GoAnywhere via SFTP/FTPS Row 26 Started by Beatrice Cardona on 03/10/15 3:45 PM NOTE: For UCB, the below Enterprise IDs are already set up. If you use a new host, your Unix System Administrator will need to configure these (PROD) app_goamftprod (ssh keys are utilized) (QA) app_goamftqa (ssh keys are utilized) (DEV) app_goamftdev (ssh keys are utilized) Note: For UCOP, the below Enterprise IDs are already set up. If you use a new host, your Unix System Administrator will need to configure these (PROD, QA, DEV) svcappmft (ssh keys are utilized) Note: For UCSF, the below Enterprise IDs are already set up. If you use a new host, your Unix System Administrator will need to configure these (PROD) none (QA) none (DEV) none Note: For UCPath, the below IDs are already set up. If you use a new host, your Unix System Administrator will need to configure these accounts for Page 4 of 9

your new host (PROD) none (QA) none (DEV) none Beatrice Cardona on 03/10/15 3:45 PM Open a Work Request to your Unix System Administrator, if needed Row 28 Started by Beatrice Cardona on 03/17/15 11:36 AM Note: UCB uses SFTP Beatrice Cardona on 03/17/15 11:36 AM Server Configuration Completed Row 29 Started by Beatrice Cardona on 03/17/15 11:35 AM Lead Times Vary Beatrice Cardona on 03/17/15 11:35 AM Open a Work Request to your Window System Administrator, if needed Row 31 Started by Beatrice Cardona on 03/17/15 11:36 AM Note: UCB uses IIS FTPS Beatrice Cardona on 03/17/15 11:36 AM Server Configuration Completed Row 32 Started by Beatrice Cardona on 03/17/15 11:35 AM Lead Times Vary Beatrice Cardona on 03/17/15 11:35 AM Set up a Standard User ID that will be used to log into GoA and Transfer Files Row 33 Started by Beatrice Cardona on 03/10/15 3:50 PM NOTE: For UCB, the below Enterprise IDs are already set up. If you use a new host, your Windows System Administrator will need to configure these (PROD) campus\svc-ctm-mft-prod (QA) campus\svc-ctm-mft-qa (DEV) campus\svc-ctm-mft-dev NOTE: For UCSF, the below Enterprise IDs are already set up. If you use a new host, your Windows System Administrator will need to configure these NOTE: For UCOP, the below Enterprise IDs are already set up. If you use a new host, your Windows System Administrator will need to configure these Page 5 of 9

NOTE: For UCPath, the below Enterprise IDs are already set up. If you use a new host, your Windows System Administrator will need to configure these Beatrice Cardona on 03/10/15 3:50 PM Open a Work Request to your Unix System Administrator, if applicable Row 35 Started by Beatrice Cardona on 03/17/15 11:35 AM "NOTE: For UCB, the below Enterprise IDs are already set up. If you use a new host, your Unix System Administrator will need to configure these (PROD) app_goamftprod (ssh keys are utilized) (QA) app_goamftqa (ssh keys are utilized) (DEV) app_goamftdev (ssh keys are utilized) Note: For UCOP, the below Enterprise IDs are already set up. If you use a new host, your Unix System Administrator will need to configure these (PROD, QA, DEV) svcappmft (ssh keys are utilized) Note: For UCSF, the below Enterprise IDs are already set up. If you use a new host, your Unix System Administrator will need to configure these (PROD) none (QA) none (DEV) none Note: For UCPath, the below IDs are already set up. If you use a new host, your Unix System Administrator will need to configure these accounts for your new host (PROD) none (QA) none (DEV) none" Beatrice Cardona on 03/17/15 11:35 AM Open a Work Request to your Windows System Administrator to set up a Standard Userid that will be us Row 38 Started by Beatrice Cardona on 03/17/15 11:37 AM "NOTE: For UCB, the below Enterprise IDs are already set up. If you use a new host, your Windows System Administrator will need to configure these (PROD) campus\svc-ctm-mft-prod (QA) campus\svc-ctm-mft-qa (DEV) campus\svc-ctm-mft-dev Page 6 of 9

NOTE: For UCSF, the below Enterprise IDs are already set up. If you use a new host, your Windows System Administrator will need to configure these NOTE: For UCOP, the below Enterprise IDs are already set up. If you use a new host, your Windows System Administrator will need to configure these NOTE: For UCPath, the below Enterprise IDs are already set up. If you use a new host, your Windows System Administrator will need to configure these " Beatrice Cardona on 03/17/15 11:37 AM Userid Directory Access Row 40 Started by Beatrice Cardona on 03/17/15 11:37 AM UCB home directory = E:\FTPSRoot\ Beatrice Cardona on 03/17/15 11:37 AM If there is a Firewall in place at the location, open a Work Request to the location Network Adminis Row 48 Started by Beatrice Cardona on 03/17/15 11:37 AM GoAnywhere Gateway proxies are as follows: PROD - pc-mftgw-prod-01-b.ist.berkeley.edu:9102 (outgoing port) IP = 128.32.249.41 QA - pc-mftgw-qa-01-b.ist.berkeley.edu:9102 (outgoing port) IP = 128.32.249.43 DEV - pc-mftgw-dev-01-b.ist.berkeley.edu:9102 (outgoing port) IP = 128.32.249.55 Beatrice Cardona on 03/17/15 11:37 AM Generate Public and Private Keys and share with the Destination Party Row 50 Started by Beatrice Cardona on 03/17/15 11:38 AM Store keys on GoA Server and Destination Servers Beatrice Cardona on 03/17/15 11:38 AM Open a UCOP Mainframe Service-Now RACF request. Row 52 Page 7 of 9

Started by Beatrice Cardona on 03/17/15 11:38 AM The PROD RACF Group is: PCMFTP ie. APP.* (PROD) The QA RACF Group is: PCMFTQ ie. APPQ.* (QA) The DEV RACF Group is: PCMFTD ie. APPD.* (DEV) Beatrice Cardona on 03/17/15 11:48 AM If this FTP is to or from the UCOP Mainframe (and this is the first such request for this application), the App owner opens a UCOP Mainframe Service- Now request for RACF HLQ access to the GoA UserID. (Mainframe host = uccmvsb). This is to request file level authorization to the GoA UserID to allow it to read or write the Mainframe File to be picked up or placed on the mainframe. Beatrice Cardona on 03/17/15 11:38 AM Configure an Application-Specific Services Userid and Password Row 55 Started by Beatrice Cardona on 03/17/15 11:38 AM Note: Ex: Format PP1_Fidelity or PP1_BofA, or UCRS_Fidelity, etc. Beatrice Cardona on 03/17/15 11:39 AM If a GoA trigger file process is required, the Campus liaison configures a GoA Services userid and password based on a template. Usually used for files inbound to GoA. Beatrice Cardona on 03/17/15 11:38 AM Configure Services Trigger Row 56 Started by Beatrice Cardona on 03/17/15 11:39 AM Note: The GoA Services Trigger Name = GoA Director Project Name = GoA Job Name Beatrice Cardona on 03/17/15 11:39 AM If a GoA trigger file process is required, the Campus liaison configures a GoA Services Trigger based on a template. Usually used for files inbound to GoA. Beatrice Cardona on 03/17/15 11:39 AM Configure GoA Director Resources Row 58 Started by Beatrice Cardona on 03/17/15 12:41 PM FTPS Requires ftps server on host (available on Unix or Windows systems) Defaults = Passive Mode, Explicit SSL, TLS Security Protocol Note: Use password or certificates Beatrice Cardona on 03/17/15 12:41 PM SFTP Requires ssh server on host (usually available on unix systems) Note: Use ssh keys or password Beatrice Cardona on 03/17/15 12:41 PM Configure Director Projects (The Jobs that are going to run) Row 59 Started by Beatrice Cardona on 03/17/15 12:44 PM Single File Transfer (MVS/SFTP/FTPS) Defaults: Ensure these are appropriate for this IT Business Partner's file transfer: fails if file does not exists Page 8 of 9

source file is unchanged by default (if applicable, change the default) set source file variables at top of Project (Source File is the GET File) set destination variables at top of Project (Destination file is the PUT File) if applicable, set move variables at top of Project to rename source files Multiple File Transfer usually based on wild-card inclusion (MVS/SFTP/FTPS) Defaults: Ensure these are appropriate for this IT Business Partner's file transfers: succeed if file does not exists source file is unchanged by default (if applicable, change the default) set source file variables at top of Project (Source File is the GET File) set destination variables at top of Project (Destination file is the PUT File) if applicable, set move variables at top of Project to rename source files Beatrice Cardona on 03/17/15 12:44 PM Configure Control-M Jobs Row 61 Started by Beatrice Cardona on 03/17/15 11:46 AM Liaison configures Control-M jobs based on templates. Control-M Job Name = GoA Project Name Beatrice Cardona on 03/17/15 11:46 AM Page 9 of 9

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information