Attachmate Worldwide  |   Contact Us  |   NetIQ.com
Home » Support » Solution Library

Technical Notes

Configuring a Secure FTP Session in Reflection for the Web
Technical Note 1827
Last Reviewed 10-May-2007
Applies To
Reflection for the Web 2008 (All Editions except Standard)
Reflection for the Web version 8.0 through 9.6
Summary

This technical note describes how to configure an FTP session that connects through the Reflection for the Web security proxy.

Note: Beginning in Reflection for the Web 2008, the security proxy server is not included in the Standard Edition.

Securing FTP File Transfers in Reflection for the Web

In Reflection for the Web, you can configure a secure FTP file transfer to and from an FTP server by creating an FTP session that connects through the security proxy. The mechanism is different from the "secure FTP" that you might be familiar with in Windows-based terminal emulation sessions.

Configuring the FTP Session

To set up a secure FTP connection, you must configure both the security proxy and the Reflection for the Web session.

Configure the Reflection Security Proxy

The Reflection for the Web security proxy must be installed and configured before you configure the FTP session. For assistance, see the Reflection for the Web installation guide, which is included in the product and online:

Reflection for the Web 2008: http://support.attachmate.com/manuals/rweb2008.html

Reflection for the Web 9.6: http://support.attachmate.com/manuals/wthdocs.html

To configure the security proxy to support FTP:

  1. Open the Security Proxy Wizard. (Start > Programs > Reflection for the Web > Utilities > Security Proxy Wizard.)
  2. Click the Proxies tab. Select your security proxy server port, and review the Proxy description.

If FTP is not listed as a Protocol, click the Modify button. On the Modify Proxy page in the Protocols section, click Add, and add FTP. Click OK.

  1. On the Proxies tab, click Export Settings. In the Export Proxies dialog box, check that the fields contain the correct information for the name and HTTP port of the Management Server. Then, click Export > OK.

Note: The export settings step is critical if you are upgrading from an earlier version of Reflection for the Web, even if you did not make a change in step 2 above.

  1. Exit the Security Proxy Wizard. (Clicking Save may prompt you to Export Settings, as above. If you already performed the Export, you may cancel this dialog box.)
  2. Stop and restart the Reflection security proxy.

Configure the Reflection Session

After the terminal session is configured, you can add the FTP capability in the launched session.

  1. In the Administrative WebStation, click Session Manager.
  2. Add a web-based session (or configure an existing one) to a host that supports FTP. Beginning in Reflection for the Web version 8.0, you can select an FTP only session in addition to configuring FTP within a terminal session.
  3. On the session configuration page, select Intermediate, Advanced, or Administrator for the end user menu level. Beginning in version 9.5, configure the user menu level in the terminal session under Administration > User Interface Profiler (or Profiler).

For an FTP only session, select an FTP window option (both lists and console, lists only, console only).

Click Launch.

  1. In the launched session, click File > FTP.

Two dialog boxes open: FTP Setup and FTP.

If you are configuring an FTP only session, the Setup dialog will automatically open.

  1. In the FTP Setup dialog box, click the Security button on the General tab.
    1. In the Security dialog box, click the check box to Use SSL/TLS security via Reflection security proxy.
    2. Select the Security proxy and the Proxy port.
    3. Enter the Destination host (the FTP server), and the Destination port, which is usually 21 for FTP. Click OK.
    4. On the FTP Setup > General tab, enter a user name, if desired, and click OK.
    5. In the Connect to Server dialog box, click Cancel.
  2. Close the FTP session. Click Yes to exit. (For an FTP only session, select Save/Exit to save the settings.)
  3. Exit the terminal session and select Save/Exit to save the settings.
  4. If this is a new session, open Access Mapper (in the Administrative WebStation) and enable the session to be available to users.
  5. End users can start the FTP session from the terminal session menu: File > FTP. (For an FTP only session, users can start the FTP session from the Links List or from a direct URL.)

Note: If the session's end user menu level is set to Intermediate (in step 3 above), the terminal session must be connected to the host before the end user will be able to access the FTP option (File > FTP). If the end user menu level is set to Advanced or Administrator, the terminal session does not need to be connected to the host.

Related Technical Notes
1320 Configuring the Security Proxy in a Windows Environment
1704 Security Updates and Reflection for the Web

Did this technical note answer your question?

Yes    No    Somewhat     Not sure yet

Additional comments about this tech note:

Need further help? For technical support, please contact Support.