Tech Specs for Reflection for Secure IT Gateway

System requirements
  • Server Component: Supported Platforms
    • Windows Server 2012 R2 on Intel or equivalent (64-bit)
    • Windows Server 2012 on Intel or equivalent (64-bit)
    • Windows Server 2008 R2 on Intel or equivalent (64-bit)
    • VMWare vSphere Hypervisor (ESXi) running supported platforms
  • Gateway Administrator Web Application: Supported Browsers (JavaScript and cookies must be enabled)
    • Microsoft Internet Explorer (version 11 or later, Windows only)
    • Mozilla Firefox (current versions)
    • Google Chrome (current versions)
    • Apple Safari (current versions, Mac only)
  • PKI Services Manager 1.3.1 or later
    • Required for authentication via X.509 certificates or smart cards
    • Available at no additional charge from the Reflection Gateway download page
  • Transfer Client: Supported Browsers (Java must be installed; JavaScript and cookies must be enabled)
    • Microsoft Internet Explorer (version 11 or later, Windows only)
    • Mozilla Firefox (current versions)
  • Connections from Other Secure Shell Clients
    • Using the Reflection Transfer Client to access Transfer Sites is not a requirement. Reflection for Secure IT Gateway users can also use the Reflection for Secure IT Secure Shell client, the Reflection FTP Client configured for SFTP transfer, or any other SFTP-enabled SSH client.
Administrative tools
  • Creation of Jobs to automate business processes
  • Delegated and Remote Administration
  • Post Transfer Actions for automating file processes after files are received
  • Scalable with support for 500+ connections
  • Automated email notification services including account creation, password reset, transfer site access, and file uploads and downloads
  • Gateway Administrator console for secure remote administration
  • High availability with support for load balancing and clusters
  • Flexible deployment of components (co-located or separate servers)
  • Support for IPv6 and IPv4 across a network
  • Database storage of Gateway Administrator data
Secure file transfer
  • SFTP version 4 and 5 protocol support
  • SFTP special features:
    • Smart Copy (to eliminate redundant copying of identical source and target files)
    • File transfers resume after interrupted downloads when the remote server is a Reflection for Secure IT server
  • Virtual directory and chroot environment support
  • Support for store and forward and file streaming through the DMZ
  • SFTP-enabled SSH server included
Standards support
  • Compliance with IETF Secsh Internet drafts and RFCs 4250–4254, 4256, 4462, 4344, 4345, and 4716
  • UTF-8 character support
  • Cryptographic library validation
    • FIPS 140-2 Level 1 (Certificate #1747 and Certificate #2468)
Identity management
  • Integration with Microsoft Windows Active Directory
  • Built-in user storage for local users
  • Real-time synchronization
  • Filtering
  • LDAP groups
Auditing
  • Configurable Windows Event Log level (in Reflection Secure Shell Proxy only)
  • Debug logging with local and/or UTC time stamps
  • Dedicated audit log for all file transfers
Transfer client
  • Customizable user interface
  • Password or X.509 certificate authentication
  • Web-based drag-and-drop file transfer
    • SFTP version 4 and version 5
    • Preconfigured in FIPS Mode
    • Preconfigured ciphers (AES128-CTR, AES128-CBC and 3DES-CBC)
    • Preconfigured MACs (HMAC-SHA1, HMAC-SHA256, HMAC-SHA512)
  • Local and server views
  • Transfer entire directory trees
  • Smart copy
  • Checkpoint restart when the remote server is a Reflection for Secure IT server
  • UTF-8 encoding supports file names in any locale
  • English, French, German, and Italian language support