Professional Documents
Culture Documents
GUIDE
SecureClient
Version 5.6
August 2010
DUG0000SC560
ii
iii
Chapter 2 - Scheduler
Chapter 3 - Jobs
9
Job States . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9
Periodic Jobs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10
11
Scheduling a Transfer . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11
Transferring Files from the Main Window . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 13
15
19
iii
33
39
Anonymous Login . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 40
Email Notification . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 40
File Format . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 40
Editing Text File Pattern . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 40
Connection . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 42
Transfer Parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 43
Graphical Interface Parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 44
Date Format Detection . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 45
Security Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 46
Working with Proxy Preferences . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 46
Proxy Dialog Box. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 46
Editing a Proxy. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 47
Adding a Proxy . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 48
Duplicating a Proxy . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 48
Deleting a Proxy . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 48
Log Maintenance Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 49
Scheduler Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 50
SecureTransport Compatibility Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 51
53
55
57
cdup Command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 59
Description . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 59
Syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 59
Parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 59
chdir command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 59
Description . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 59
Alias . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 59
Syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 59
vi
SecureClient
Parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 60
close Command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 60
Description . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 60
Syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 60
delete Command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 60
Description . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 60
Alias . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 60
Syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 61
Parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 61
echo Command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 62
Description . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 62
Syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 62
Parameter . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 62
Example . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 62
get Command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 63
Description . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 63
Syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 63
Parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 63
Example . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 64
Example 2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 64
jobsubmit Command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 65
Description . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 65
Syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 65
Parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 65
Examples . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 65
lcdup Command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 66
Description . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 66
Alias . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 66
Syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 66
lchdir Command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 66
Description . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 66
Alias . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 67
Syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 67
Parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 67
ldelete Command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 67
Description . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 67
Alias . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 67
Syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 67
Parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 67
list Command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 68
Description . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 68
Alias . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 68
Syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 68
Parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 69
Example . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 69
llist Command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 70
Description . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 70
Alias . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 70
Syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 70
Parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 70
lmkdir Command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 70
Description . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 70
Alias . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 70
Syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 70
iii
vii
Parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 71
lpwd Command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 71
Description . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 71
Alias . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 71
Syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 71
Parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 71
lrename Command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 72
Description . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 72
Alias . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 72
Syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 72
Parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 72
lrmdir Command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 72
Description . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 72
Alias . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 72
Syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 73
Parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 73
mget Command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 73
Description . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 73
Syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 73
Parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 73
Examples . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 74
mkdir Command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 74
Description . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 74
Alias . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 74
Syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 74
Parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 75
mput Command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 75
Description . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 75
Syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 75
Parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 75
Examples . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 76
newjob Command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 76
Description . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 76
Syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 76
Parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 76
open Command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 77
Description . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 77
Syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 77
Parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 77
Important security note . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 78
output Command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 78
Description . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 78
Syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 78
Parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 79
put Command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 79
Description . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 79
Syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 79
Parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 79
pwd Command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 80
Description . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 80
Syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 80
Parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 80
quote Command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 81
Description . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 81
viii
SecureClient
Syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 81
Parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 81
Examples . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 81
rename Command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 82
Description . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 82
Alias . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 82
Syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 83
Parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 83
rmdir Command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 83
Description . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 83
Alias . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 83
Syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 83
Parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 83
script Command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 84
Description . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 84
Syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 84
Parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 84
Example . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 84
setdateformat Command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 85
Description . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 85
Syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 85
Parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 85
87
Command-line options . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 87
Reserved Characters for URLs or Paths . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 92
Examples of Command-line commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 93
ST Client batch file samples . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 94
Sample batch file to verify file transfer status. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 94
Sample batch file to perform multiple file transfers. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 96
97
Chapter 14 - Authentication
99
101
SSLSessionListener . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .101
SSLPeerAuthListener . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .101
SSLUserAuthListener . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .102
103
iii
ix
SecureClient
Axway SecureClient
overview
Axway SecureClient is a secured FTP, HTTP, and SFTP client designed to
operate with Synchrony Gateway, SecureTransport, or any standard FTP server.
Axway SecureClient runs as a stand-alone application or as a background task.
Axway SecureClient works with SecureTransport to guarantee data delivery and
data integrity while protecting corporate bandwidth. The Auto Restart feature
automatically re-establishes broken connections and resumes transfers from
the point where the transfer stopped.
Synchrony Gateway and SecureTransport offer many additional features
compared to standard FTP servers. Using special FTP commands or HTTP
header parameters, you can:
Signal that the final application has received and processed the file.
Synchrony Gateway can configure the Axway SecureClient client to define the
information to be sent by the FTP LIST command. Furthermore, Synchrony
Gateway enables you to filter files by name, date, and state.
The Scheduler is a component that runs as a Java program and functions as a
background task. It enables you to manage transfers synchronously or asynchronously. You can program the transfer start time and date as required. You
can use the GUI or the batch mode, either to make synchronous transfers (interactive mode) or to submit a job to the Scheduler.
You can use Axway SecureClient interactively using the GUI (Graphic User
Interface) or in batch mode to automate file transfers and directory management. Similarly, you can perform product administration tasks using either the
GUI or command line.
Axway SecureClient manages its own X.509 certificate database. However, it is
possible to use certificates from an external system.
Axway SecureClient runs as a Java application using Java SE 6 that uses the
Cryptix cryptographic provider, which is part of the installation package (refer
to the Cryptix General License). However, Axway SecureClient is compliant
1
with JCE1.5.0, so any other cryptographic provider can be added, and it will be
chosen dynamically.
Additional Axway SecureClient features include:
Support for post transfer actions using external programs for file downloads
The SSH File Transfer Protocol (SFTP) provides encrypted file transfer and
some file-system operations. SFTP uses either password or SSH key-based
authentication.
Two types of authentication are possible in standard SSL: simple authentication,
where only the client/user gets authenticated, and reciprocal authentication,
where both sides are authenticated. Axway adds dual authentication, which
requires username, password, and certificate. Dual authentication is supported
only for SSL. It is not available for SSH.
If the server does not require user authentication, it is possible to accept the
connection regardless of the identity of the server. For more information, see the
Supported SSL/TLS features section.
NOTE:
FTP
HTTP
FTP-TLS
HTTP-TLS
SFTP
Security
Security, with SSL or TLS, has several mechanisms: authentication, ciphering,
and sealing. When establishing a new SSL connection, a negotiation phase,
called a handshake, is launched. The authentication is performed during this
step. This is also the moment that security parameters are set, and secret
random data is exchanged. These pieces of information guarantee that the entity
that has been authenticated during the handshake is the only one able to
exchange information with Axway SecureClient during the session.
At the end of the handshake, the session is secured: information is ciphered (if
it was so negotiated) and sealed. Sealing is a mechanism that ensures the integrity of received data: the data received is identical to the data that was sent, and
it arrives in the same order.
An FTP or HTTP session is said to be secured when it relies on an underlying
SSL or TLS layer, authenticating both peers, and ciphering and sealing data. For
further technical details on supported mechanisms, see the Features section.
You cannot consider the fact that the line is secured as a true/false statement. An SSL session can authenticate or not, cipher or not. If ciphering is
performed, an SSL session can use 40, 64, 128, or 254 bits of entropy to generate a
secret key. As the TLS specification states: "The TLS protocol is secured, in that
any cipher suite offers its promised level of security: if you negotiate 3DES with a
1024 bit RSA key exchange with a host whose certificate has been verified, you can
expect to be that secured. However, you should never send data over a link with
40 bit security unless you feel that data is worth no more than the effort required
to break that encryption".
NOTE:
Site
A Site is an object that groups the server connection parameters. Note that a Site
is not necessarily a machine: one machine can have several servers, and even one
server can have several configurations on several ports, according to the identity
of the client user. Thus, you can decide to set several Sites for one server, and
even for one remote port, so that several FTP, HTTP, SFTP, or SSL identities
can be managed.
Features
Axway SecureClient allows file transfers in standard FTP, HTTP, and SFTP, or
over SSL V3.0 and TLS V1.0 with SecureTransport, Synchrony Gateway, and
standard FTP servers.
Active and passive data connection modes. Secured active mode is implemented as defined in RFC 2228.
MD5 file integrity validation when the server also supports this feature
(SecureTransport)
Synchrony Gateway
SecureTransport
Microsoft IIS
MD5 file integrity validation when the server also supports this feature
(SecureTransport)
Text mode
Directory Listing. You can find the template file in <SecureClient Installation
folder>/extras/HttpListTemplate.txt.
Directory browsing
Session cache
Scheduler
The Axway SecureClient Scheduler enables you to manage transfers asynchronously. You can program the transfer start time and date as required. You can
use the GUI or the batch mode, either to make synchronous transfers (interactive mode) or to submit a job to the Scheduler. Additionally, you can use the
Scheduler to program Periodic jobs.
Both the GUI and the batch mode communicate with the Scheduler using Java
RMI (Remote Method Invocation). If the RMI Registry process does not exist,
it is created automatically. The Scheduler is only available through the loopback
address (127.0.0.1). No modification or configuration of the JRE environment
is needed.
If you select either of the first two choices, the corresponding action will be triggered and SecureClient will try to start the Scheduler again.
SCHEDULER
USING THE RESCUER
Jobs
A job is a sequence of commands that are executed on one, and only one,
server. Commands within a job cannot run on more than one server. You can
use the following commands in a job:
The commands in a job are ordered and the number of commands is not
limited. This means that you can use a job to transfer a whole tree structure.
Job States
A job has the following possible states:
To Begin
The job is waiting, either because its start date is in the future, or because
there are already too many jobs in progress for the same site.
Transferring
The job is in process. If a network or other failure occurs, the state will
change to Interrupted until further attempts at connection and transfer
are made.
Interrupted
The job has stopped for a temporary reason. Axway SecureClient will try
to finish the job.
Finished
The job was completely executed.
JOBS
PERIODIC JOBS
Canceled
The job was canceled manually.
Aborted
The job was canceled automatically, for example if an error appears to be
permanent (maximum number of connection or transfer retries has been
reached, authentication failure, and so on). Jobs in this state can be resubmitted, at which point a new job with the same parameters is created.
Paused
A job paused can be resumed if it was running on a server that supports
resuming transfers. Otherwise, a paused job will start from the beginning
on Resume.
Explore File (xx.x%)
Intermediate state appears when computation of the MD5 checksum of
the local or the received file is in progress.
Requesting MD5
Intermediate state appears when checking md5 on the server or when
comparing md5 for the local and remote site (SecureTransport only).
Waiting Server ACK
Intermediate state indicates that check for correctness of the uploaded file
segment is in progress (SecureTransport HTTP only).
Periodic Jobs
You can use the periodic job function of the Scheduler to trigger a job at regular,
predefined times. For example, you can schedule to transfer a file each Friday at
6:00 p.m., at midnight every weekday, or on the first day of each month. The
minimum interval between jobs is 1 minute.
The required period and frequency are defined using the UNIX crontab syntax.
A job is executed when the time and date specification fields match the current
time and date.
Use either the GUI or batch mode to define timing information for periodic
jobs.
10
Transferring Files
Scheduling a Transfer
You can schedule a transfer to occur immediately or at some time in the future.
In addition, you can specify that the transfer recur at regular intervals.
TASK
1.
2.
3.
In the Type area, select the appropriate radio button to Send files or
Get files with this transfer.
4.
In the What area, specify the files you want to transfer. Use the first row
in the table to enter information about files to be transferred.
a
If you specify that this transfer is a GET operation, select a remote server
from the Get files from drop down list.
In the Files or folders column, specify the path and filename of the file
you want to transfer or click Browse to navigate to the file to be transferred.
Select a file format for the transfer. Choose from Auto, Text, or Binary.
If you choose Auto, Axway SecureClient will use text mode if it recognizes a text file, which depends on file name extensions configured in
11
TRANSFERRING FILES
SCHEDULING A TRANSFER
Axway SecureClient preferences. If Axway SecureClient does not recognize the file format, it uses binary mode.
d
Select Copy or Move from the Transfer type drop down menu.
When you finish specifying your files, click Add to add your file specification to the transfer.
RESULT: Your file specification appears in the next available row in the
table. You can add multiple file specifications in the
Schedule Transfer table.
5.
In the Folder field of the Where area, enter or browse for the path
where you want files transferred.
a
6.
In the When area, specify when the transfer should occur and whether
the transfer should recur. Select one of the following:
7.
12
If you have specified that this transfer is a SEND operation, select a site
from the Send files to drop down list.
Start Date Enables the Date and Start Time fields. Use these fields to
specify the date and time the transfer should start.
In the When area, specify whether the transfer should be recurring and
on what basis. Select the Repeat Schedule check box, and then select
a value from the drop down list. The value you select determines the set
TRANSFERRING FILES
TRANSFERRING FILES FROM THE MAIN WINDOW
8.
Minutes Specify the number of minutes between transfers. In addition, you can specify on which days of the week and how many times a
day the transfer should occur.
Weekly Specify one or more days of the week on which the transfer
should occur.
Monthly Specify a day of the month and how many months between
transfers.
End dateSpecify never ends or ends at a certain date chosen from the
calendar. This property is only available for Repeat Schedule.
Click OK.
STEP RESULT: Your schedule is submitted and the New schedule window is
dismissed.
1.
In the Local View and Remote View windows, specify or browse to the
directories you want to be the origin and destination of the transfer
2.
In the window displaying the origin directory, right-click a file (or folder)
to transfer, and then select one of the following:
13
TRANSFERRING FILES
TRANSFERRING FILES FROM THE MAIN WINDOW
Transfer parameters are based on the files and folders displayed in the
Local and Remote View Windows as well as from the Sites preferences.
ADDITIONAL INFORMATION: When transferring files, you can set the Synchrony
Gateway specific parameters Originator,Destination, Application, and
Message. On SecureClient, you can set these options for a site from the
Gateway tab. For more information, refer to the Synchrony Gateway documentation. If these parameters are set in the site configuration, the set values
will be used, but might be overridden here.
14
Main Window
You use the Main Window to access connections, logs, and certificates, and
transfer files. This window is made up of the following components:
Connection management area where you can select the remote server that
you want to connect to, or you can specify a URL for the remote server that
you want to connect to.
Local View and Remote View panes. Each View pane contains a box with
the path and file name of the directory, directory navigation buttons, and
a listing of the contents of the directory you are browsing. Between the two
View panes are the Transfer buttons or arrows.
Monitor pane with two tabs: The Schedule tab where you can view and
manipulate scheduled transfers, and the Log tab where you can view log
files.
15
MAIN WINDOW
LOCAL VIEW PANE
Refresh
Updates all information in the window.
16
MAIN WINDOW
MONITORING PANE
Monitoring pane
The monitoring pane in the lower part of the main window shows log messages
or a list of transfers, depending on the selected tab.
Log Tab
Click the Log tab to view the Log window. The log messages in this window
indicate what has been done by Axway SecureClient, the result of each action
performed (success or failure), and the cause of possible errors. The three
buttons at the left allow you to:
Archive Log
Archives the log. The archiving action also cleans the log view. For more
information, see the "Log Maintenance Settings" section.
Refresh Scheduler Log
Refreshes the currently displayed log.
Autoscroll
Toggles log message scrolling on and off.
Schedule Tab
Click the Schedule tab to view the Schedule window. Use the drop down menu
to control the state of the schedule tab. Choose from the following:
All Transfers
View all transfers.
Waiting Transfers
View scheduled transfers waiting to be processed.
Running Transfers
View transfers currently being processed. You can cancel transfers
displayed in this view.
17
MAIN WINDOW
SCHEDULE TAB
Finished Transfers
View scheduled transfers that have ended. You can purge transfers from
this view.
Control Panel
Adjacent to the Schedule and Log tabs is a control panel that consists of
six buttons:
Show job detailOpens job details view for the currently selected job.
Except for Resubmit Job, these same options are available when you right click
on a job.
18
Site Manager
The Site Manager window displays a summary view of the Sites contained in the
database. To edit, copy, or remove a Site object, select the corresponding row in
the Site list, then either right-click or click an action button. Choose from the
following options:
New
Create a new empty Site object with default values.
Edit
Edit/display detailed parameters for the selected Site. You cannot change
the name of the Site in Edit mode. Instead, use the Rename button.
Rename
Displays a dialog box you can use to rename the Site selected.
Copy
Create a new Site object with parameters copied from the selected Site.
You must provied a new alias for the Site.
Delete
Delete the selected Site.
Help
Displays online help for the Site Manager screen.
19
SITE MANAGER
SITE DETAILS WINDOW
General parameters
Gateway parameters
Security parameters
Notification parameters
Charset parameters
Pre/Post Actions
21 (FTP)
22 (SFTP)
80 (HTTP)
User
Enter the user name to use during login phase with the server.Default
value: anonymous.
20
SITE MANAGER
SITE DETAILS WINDOW
Password
Enter the password to use during the login phase with the server.
Local directory
Specify a starting directory for the Local view window of the Main window
when connecting to this Site. You can click the folder icon to browse.
Remote directory
Specify a starting folder for the Remote view window. This folder will be
the home directory on the remote server.
Protocol-specific parameters
See the topics on FTP-, HTTP-, and SFTP-specific parameters for more information.
FTP-specific Parameters
Account
Enter the name of the account, or the group, to accept login (required by
some servers).
Connection mode
Specifies how to establish FTP data connections:
Active: in this mode, the FTP server connects to the client (Axway SecureClient).
Passive: in this mode, this is the client (Axway SecureClient) that connects
to the FTP server. This is the default mode.
21
SITE MANAGER
SITE DETAILS WINDOW
Server type
Select the type of server:
Server Type
Description
Processing Rules
SecureTransport
22
SITE MANAGER
SITE DETAILS WINDOW
Server Type
UNIX standard
Description
Processing Rules
List columns must be
compliant with the
following rules:
Column 1: permissions
string followed by at least
one space character.
Column 2: link string
followed by at least one
space character.
Column 3: owner string
followed by at least one
space character.
Column 4: group string
followed by at least one
space character
Column 5: size string
followed by at least one
space character.
Column 6: date string (12
characters) followed by at
least one space character.
Column 7: filename
string up to end of line.
Symbolic links are
analyzed to guess if the
linked file is a directory
or a true file (by using
SIZE FTP command).
Microsoft FTP
IBM MVS
Unisys
23
SITE MANAGER
SITE DETAILS WINDOW
Server Type
Description
Guess
Java
Processing Rules
This is the same as "UNIX
standard" except that the
group column is missing.
Secured mode
Select the mode:
24
Explicit mode: The AUTH TLS-P session is a pure FTP session until the
AUTH TLS-P command is sent to the server, which starts the underlying
SSL layer. The AUTH TLS+PROT P session is a pure FTP session, until
SITE MANAGER
SITE DETAILS WINDOW
the AUTH TLS command is sent to the server, which starts the underlying
SSL layer, After that protection P level is set.
PASV is compliant with RFC
Some servers do not expect data connections in a totally compliant way.
They expect that the SSL negotiation, on data sessions, begins after the
command RETR, STOR, STOU, or LIST (the command that requires the
data connection), instead of after the command PASV, or PORT (the one
that is responsible for opening the data connection). For these servers,
deactivate this option. In particular, if the session starts normally, but
freezes each time a list, put or get command is sent, try deactivating this
option.
Firewall Friendly
Axway SecureClient includes a setting for the FTP subcommand, Clear
Control Connection (CCC). When this setting is enabled, it makes a
secured control/command channel revert back to plaintext (un-secured).
If Firewall Friendly setting is enabled, the client connects to the server,
negotiates a secure connection, authenticates (sends username and password) then reverts back to plaintext.
Use FTP if FTPS is not supported by server
If server does not support FTPS and this option is selected, the connection
will fall back to FTP. Otherwise, the connection is broken.
HTTP-specific Parameters
Server type
Select the type of server:
SecureTransport
Microsoft IIS
LightHttpd
Auto
Version
Select the HTTP protocol version:
25
SITE MANAGER
SITE DETAILS WINDOW
HTTP 1.0
HTTP 1.1
Identification method
Select the identification method used to identify the client (user and password):
CGISynchrony Gateway-only authentication protocoluser and password are provided as parameters in an HTTP command
SFTP-specific Parameters
Server type
Select the type of server: Windows or UNIX.
26
SITE MANAGER
SITE DETAILS WINDOW
27
SITE MANAGER
SITE DETAILS WINDOW
If no cipher suite is selected some default cipher suites are set automati-
cally:
28
TLS_RSA_WITH_AES_128_CBC_SHA
SSL_RSA_WITH_RC4_128_SHA
SITE MANAGER
SITE DETAILS WINDOW
SSL_RSA_WITH_RC4_128_MD5,
SSL_RSA_WITH_3DES_EDE_CBC_SHA
SSL_RSA_WITH_DES_CBC_SHA
SSL_RSA_EXPORT_WITH_DES40_CBC_SHA
SSL_RSA_EXPORT_WITH_RC4_40_MD5
SSL_RSA_WITH_NULL_SHA
SSL_RSA_WITH_NULL_MD5
NOT TRUSTED a key is associated with this site, but it is not trusted
Authentication method
Specify whether to use a password or a key for authenticating at transfer
time.
User key alias
When authenticating the client using a key, this alias refers to the User
Keys table from the Security Manager.
29
SITE MANAGER
SITE DETAILS WINDOW
30
SITE MANAGER
SITE DETAILS WINDOW
Using the wrong charset can result in filenames not displaying correctly.
31
SITE MANAGER
SITE DETAILS WINDOW
32
Security Manager
Window
You use the Certificates Manager to manage your certificates and keys. You can
import certificate and keys, view their contents, delete them, and generate user
keys.
Certificate database
This panel displays information about the certificates and keys stored on
your system. They are divided into the following categories:
User keysSSH keys used for authenticating local parties to remote sites.
Import
Starts an import procedure.
Delete
Deletes the selected certificate or key.
Details
Displays details about the currently selected certificate or key.
Generate key
Generates a user SSH key pair.
Export a public key
Exports an SSH public key .
33
1.
2.
Click the tab appropriate to the type of item about which you want to
view detail information.
3.
Select an item, and then click Details. Alternatively, you can select and
then right-click an item.
STEP RESULT: A new dialog box containing detailed information about the
selected item appears.
4.
Importing a Certificate
You use the Import Certificate Wizard to import a certificate.
TASK
1.
2.
Click Import.
STEP RESULT: The Import Certificate Wizard welcome window is displayed.
3.
34
Choose a source file. The extension indicates the type of file you are
choosing. Supported formats are DER and Base64 certificates (*.cer,
*.der, *.crt), PKCS#7 certificate chains (*.p7b, *.p7s, *.p7m), and PKCS#12
containers (*.p12, *.pfx). Click the browse button to navigate through
your local files.
4.
For each certificate in the file, you must set up three parameters.
ADDITIONAL INFORMATION: A DER file contains one certificate, but a PKCS#7 or
PKCS#12 file can contain several certificates.
The alias of a certificate is a friendly name that uniquely identifies it in the
database. An alias is automatically generated, and it cannot be changed.
5.
6.
Clear the import check box if you do not want to import the corresponding certificate. This can be used in case of a PKCS#7 or PKCS#12
multiple certificate import.
ADDITIONAL INFORMATION: During multiple certificate import, an import check
box is available for every certificate in the list. You must select which certificates to be imported.
7.
The first password is required to unwrap the content of the PKCS#12 file.
It is mandatory: the content of the file cannot be retrieved without it.
Then the certificate and its private key can be imported. Axway SecureClient saves private keys in an encrypted form.
To access the private keys, you must enter a second password. Because
this password is required to accesss the private keys, you can change it.
To be sure of the password you entered, a confirmation is required. Be
sure to remember it you will need it if you want to get authenticated
by a server. If you do not enter a new password, the old password of the
PKCS#12 file is kept. Import the certificate(s) by clicking the Finish
button
Importing a Key
You use the Certificates Manager to import user keys.
TASK
1.
35
2.
3.
Enter a value in the Name field, specify a file and path or browse to a file
to be imported, enter the password for the key, and then click OK.
1.
2.
Click the tab appropriate to the type of item you want to delete, for
example a trusted certificate or a key.
3.
In the list of certificates or keys, select the item you want to delete and
click Delete. Alternatively, you can right-click on the certificate or key
and then select the Delete option.
STEP RESULT: A delete confirmation dialog box is displayed.
4.
Generating a Key
You use the Certificates manager window to generate new user keys.
TASK
1.
2.
Click the User Keys tab, and then click Generate Key.
STEP RESULT: The Key Generator dialog box appears.
36
NOTE:
You must be in the User Keys tab for the Generate key button to be
active.
3.
4.
From the Algorithm drop down menu, select the algorithm you want to
use to generate the key. Choose from RSA or DSA.
5.
From the Length drop down menu, select the length (in bytes) of the
key to be generated. Possible values are1024 and 512.
6.
Click OK.
STEP RESULT: The key is generated and added to the list of keys displayed in the
User Keys tab.
Exporting a Key
You use the Certificates Manager to export SSH public keys.
TASK
1.
2.
Select a user key from the Certificates manager window and then click
Export Pulic key. Alternatively, you can right click on it, and then select
the Export Public key option.
STEP RESULT: The Open file dialog box appears.
You must be in the User Keys tab for the Export Public key button to
be active.
NOTE:
3.
Browse to the directory where you want to save the exported key, enter
a filename, and then click Save.
37
38
Anonymous Login
Email Notification
File Format
Connection
Transfer
Graphical Interface
Security Settings
Proxies
Log Maintenance
Scheduler
SecureTransport Compatibility
TASK
1.
2.
In the list on the left side of the Preferences window, click the type of
preference you want to change.
3.
Enter or edit values for the parameters you want to change, and then
click Save.
ADDITIONAL INFORMATION: Editing Proxy preferences requires some extra steps.
Some changes in Preferences might require you to restart the Scheduler.
Axway SecureClient displays a warning message in this case.
39
Anonymous Login
Password
This value is used as the password when connecting to an FTP server using
the anonymous special user.
Email Notification
Host
The hostname of the SMTP server used to send notification email for both
successful and failed transfers.
Port
The IP port number of SMTP server used to send notification email.
Default is 25.
File Format
Patterns
Specify a list of regular expressions in this field. Names of files being transferred are compared to this list and files that match are automatically
converted to the destination text file format (CRLF on Windows or LF on
UNIX).
40
All the existing patterns are displayed in this window. Each new line corresponds to a new pattern. Add a pattern by adding a new regular expression on
a new line. Patterns can also be separated by space or tabulation characters on
the same line.
Regular expressions define matching rules for a string, and thus enable you to
define a category of file names that resemble each other by one pattern. For
example, you might consider all the files with extensions that begin with txt as
text files. The regular expression corresponding to this matching condition
would be *.txt* or *.txt? if no more than one character can follow the string .txt.
To match, each character must correspond in the regular expression and in the
string as shown in the previous txt example. In addition, it can contain wildcards to allow multiple possibilities:
Examples
regular expression
file name
match?
*.txt
toto.txt
yes
*.txt
toto.txt2
no
*.txt?
toto.txt2
yes
*.txt?
toto.txt23
no
*.txt??
toto.txt23
yes
41
regular expression
file name
match?
*.txt*
toto.txt23
yes
to?.txt
toto.txt
no
to*.txt
toto.txt
yes
Connection
Maximum retry count
If a connection fails, Axway SecureClient will try to reconnect several
times. Set this parameter to the number of times you want Axway SecureClient to retry before considering that the connection has actually failed.
Set the value to 0 to disable this feature for all sites.
Retry delay
If a connection has failed, the time to wait before retrying (see Max. retry
count above).
Network time out
This value indicates how much time to wait when requesting data before
considering that the connection is broken. It is valid for the whole session,
not only during connection. Set the value to 0 to disable this feature for all
sites.
Maximum simultaneous sessions
The maximum number of control sessions that can be opened simultaneously for one site. This option is applied separately for each site. When the
maximum connections for a particular site is reached, you can still make
transfers to other sites.
To begin new file transfers, Axway SecureClient tries to open new sessions
until this value is reached, and then waits for a session to be available
instead of opening a new one.
Share Connection between GUI and Scheduler
When you select this check box, the connection pool is the same for the
Scheduler and the GUI. This option is applied separately for each site. The
total maximum simultaneous connection count will be exactly the
number specified in the Maximum simultaneous sessions parameter. If
42
you do not check this box, only the Schedulers simultaneous connection
count will be limited.
Transfer Parameters
Maximum transfer retry
Enter the maximum number of times that Axway SecureClient must
attempt to restart a failed transfer.
Delay before retry transfer
Enter the time (in seconds) that Axway SecureClient must wait before
attempting to restart a failed transfer.
Zip files before sending
Select this check box to automatically add files to a zip file before upload.
This option is available for upload only.
Unzip files after receiving
Select this check box to automatically unzip incoming zip files after
transfer. This option is available for download only.
Overwrite existing file
Select this radio button to automatically overwrite files that have the same
name as incoming files. This option is available for download only.
Rename existing file
Select this radio button to rename existing file by adding a number before
extension. For example, toto.txt is renamed toto1.txt. This
option is available for download only.
Dont download remote file
Select this radio button to prevent downloading remote files when a file
with the same name exists locally. This option is available for download
only
43
44
Letter
Description
Example
Era
AD; BC
Year
yyyy
Year
Month in year
July; Jul; 07
Week in year
27
Week in month
Day in year
195
Day in month
15
Day in week
Tuesday; Tue
AM/PM indicator
PM
24
12
Minute in hour
30
second in minute
55
Millisecond
954
PST; GMT-08:00
-0880
45
Security Settings
Use Windows certificate store
Select this option to use certificates managed by Windows. This is available only for Windows Systems using Java 1.6. When activated, Security
Manager will browse Windows certificates directly.
Load JRE Root Certificate
Select this option to load Root certificates that are provided by and
managed by JRE.
Certificate Database password
Specify the password that protects the complete certificate database. This
is optional and is used in addition to private key password.
Use FIPS approved provider
Select this option to activate the use of a FIPS approved provider. This
option is available only if the product key is granted the FIPS option. If the
FIPS option is not granted, you cannot select the check box.
46
SOCKS4
SOCKS5
HTTP
FTP
Ident method
For HTTP Proxies, select the authentication method to be used when
connecting through this proxy. Choose one of the following:
Basic
Server address
Enter either the DNS name or the IP address of the proxy server to use on
connection.
Server port
Enter the IP port number of the proxy server to use on connection.
User Name
The user name to be used for authentication against the proxy.
User Password
The user password to be used for authentication against the proxy.
Domain
For HTTP proxies for which you select NTLM as the Identification
Method, specify the domain for the proxy to use when logging in to a
remote site.
FTP firewall
Select the method to connect through the proxy and to send user identification. Used when the proxy type is FTP.
Editing a Proxy
You use the Proxy Preferences window to edit a proxy.
TASK
1.
2.
3.
Edit the values in the dialog box as necessary, and then click Save.
47
Adding a Proxy
You use the Proxy Preferences to add a proxy.
TASK
1.
2.
Click Add.
STEP RESULT: The Proxy dialog box appears.
3.
Enter the necessary information in the Proxy dialog box, and then click
Save.
Duplicating a Proxy
You use the Proxy Preferences to duplicate a proxy.
TASK
1.
2.
3.
Click Duplicate.
STEP RESULT: The Proxy dialog box appears, but all the fields contain the date
from the proxy that you selected.
4.
Make any needed changes to the information in the Proxy dialog box,
create a new alias, and Save with the new name.
Deleting a Proxy
You use the Proxy Preferences tab to delete a proxy.
TASK
1.
2.
48
3.
Click OK.
STEP RESULT: The proxy is deleted from the list of existing proxies.
49
Scheduler Settings
Maximum simultaneous running jobs
The number of transfers that can be running at the same time, using separate jobs. One job can contain several transfers or tasks. If the number of
schedules submitted exceeds this value, the schedules submitted most
recently will be delayed.
RMI Registry bind port
The port number on loopback interface (127.0.0.1) used to listen for
schedule requests. The default value is 1717.
Delay parameters
If binding the registry port fails, try to bind it again after this delay.
Check running jobs delay
The delay to periodically check running job state.
Resubmission delay for not started jobs
When the number of maximum simultaneous jobs is reached, this value is
the delay before trying to start a job in the queue again.
Reload configuration file delay
The time between updates of the configuration file.
Garbage collector parameters
Delay between calls by the schedule engine to the Java garbage collector.
This helps avoid memory leaks.
Collect tasks delay
Delay between attempts by the schedule engine to reuse memory from
finished tasks.
Collect unused connections delay
Delay between attempts by the schedule engine to close unused network
connection.
Debug parameters
Select this check box to enable schedule engine trace in log.
Network and configuration traces
Select this check box to enable network and configuration trace in log.
50
51
52
Exiting SecureClient
You can exit Axway SecureClient using any of the following methods:
Select Connection Exit. You exit the product, but the scheduler
continues running in background.
Select Connection Stop scheduler and Exit. You stop the scheduler and
exit the product.
Stopping the scheduler stops all current transfers and all transfers scheduled for the future unless scheduler is restarted before the date and time of the
scheduled transfers.
NOTE:
53
EXITING SECURECLIENT
54
10
Batch Mode
The batch mode in Axway SecureClient enables you to automate transfers using
command line parameters or a script file. It can be used to send, receive, list,
rename, or delete server files, as well as to manage the remote or local directory
tree. Axway SecureClient batch mode is activated by command-line parameters
using one of the following syntaxes:
where:
55
BATCH MODE
SCRIPT FILE SYNTAX
56
11
Command List
Command Name
Alias
Usage
Session Management
open
Opens a session
close
dir, ls
chdir
cd
cdup
mkdir
md
rmdir
rd
delete
rm
rename
ren
pwd
ldir, lls,
!list, !dir, !ls
lchdir
lcdup
!cdup
lmkdir
57
COMMAND LIST
Command Name
Alias
Usage
lrmdir
ldelete
lrm, !delete,
!rm
lrename
lren, !rename,
!ren
lpwd
!pwd
Transfer Management
get
put
mget
mput
Scheduler Commands
newjob
jobsubmit
setdateformat
Miscellaneous
58
echo
script
output
quote
COMMAND LIST
CDUP COMMAND
cdup Command
Description
The cdup command enables you to change the current remote working directory to its parent. The command is similar to the chdir command.
Syntax
cdup
Parameters
None
chdir command
Description
The chdir command enables you to change the current working directory on the
remote server. When used with no parameter, this command prints the current
directory, which is the same behavior as the pwd command.
Alias
cd
Syntax
chdir 'remote dir' or
cd remote dir
59
COMMAND LIST
CLOSE COMMAND
Parameters
remote dir
This parameter is the remote directory to change to. Depending on
servers, its path can be relative or absolute.
close Command
Description
The close command is used to close a connected session.
This command is not mandatory. An open command always closes the
connected session before opening a new one and close is automatically called at
the end of each script.
Syntax
close
delete Command
Description
The delete command deletes a file on the remote server.
Alias
rm
60
COMMAND LIST
DELETE COMMAND
Syntax
delete remote file
delete FILE PATTERN
Parameters
remote file
This parameter is the remote file to be deleted. Depending on servers, its
path can be relative or absolute.
FILE PATTERN
You can use the following wildcard characters: * (any string of characters),
? (any single character), [0-9], [A-Z], or [a-z] (range of characters).
You can also use the following additional patterns:
61
COMMAND LIST
ECHO COMMAND
echo Command
Description
The echo command can be used to display a text line on the standard output and
in an output file specified by a previous output command. The echo command
adds a newline character at the end of the line.
Syntax
echo 'text'
Parameter
text
The text to display.When the echo command is used with no parameter,
the command produces an empty line.
Example
The following script is stored in the file named echo_sample.txt:
echo display Synchrony Gateway FTP server help for site command
echo using quote command
quote help site
62
COMMAND LIST
GET COMMAND
get Command
Description
The get command is used to retrieve a file from a server. It can retrieve files in
text or binary mode.
Syntax
get REMOTE FILE [LOCAL FILE] [BIN|TEXT] [UNIQUE|OVERWRITE]
Parameters
REMOTE FILE (mandatory parameter)
This parameter is the name of the file to retrieve. When used with a
Synchrony Gateway server, it has three possible notations:
LOCAL FILE
This parameter is the local file name of the file to retrieve. It is an optional
parameter. If it is not supplied, it takes the same value as the REMOTE
FILE parameter.
BIN or TEXT
63
COMMAND LIST
GET COMMAND
BIN: the file data will not be encoded and will be saved as a byte stream.
TEXT: the file data will be saved as a text file (line stream, lines ending
with CR or CRLF ASCII characters depending on your operating system).
UNIQUE
This parameter can be used to avoid overwriting an existing file with a new
one. When this parameter is supplied Axway SecureClient will rename the
incoming file by appending a number at the end of the file name.
OVERWRITE
This parameter causes the local file to be overwritten with the remote file.
The default behavior in case of an existing local file with the same name is
to skip the transfer and not download the remote file. Check the preferences
section for more options.
NOTE:
Example
get 'remote file' 'locfile' unique
Example 2
open "sitename"
lcd C:\tmp
cd /
newjob
get /remotedir/file.txt newname.txt TEXT UNIQUE
jobsubmit
close
64
COMMAND LIST
JOBSUBMIT COMMAND
jobsubmit Command
Description
For use with the Scheduler.
The jobsubmit command submits the job started with the newjob command.
The job is submitted either immediately or at the date specified in the date
parameter.
Syntax
jobsubmit [date] [timing information] [number of iterations | job end date]
Parameters
date (optional parameter)
This parameter represents the job start date in the format:
"yyyy.MM.dd HH:mm:ss"
Examples
jobsubmit "2008.01.19 12:00:00" "0 12 1 * *" 36
65
COMMAND LIST
LCDUP COMMAND
This example submits the job at 12 noon on January 19, 2008. The job is
repeated at 12 noon on the first day of every month. The job is repeated 36 times
(in other words, for 3 years).
lcdup Command
Description
The lcdup command changes the current local working directory to its parent.
The command is similar to the lchdir .. command.This command has no
parameters.
Alias
!cdup
Syntax
lcdup
lchdir Command
Description
The lchdir command changes the current local working directory.
When used with no parameter, it sets the current working directory to the directory from which Axway SecureClient was started.
66
COMMAND LIST
LDELETE COMMAND
Alias
lcd, !chdir, !cd
Syntax
lchdir 'local dir'
Parameters
local dir
This parameter is the local directory to change to. Its path can be relative
or absolute.
ldelete Command
Description
The ldelete command deletes a local file.
Alias
lrm, !delete, !rm
Syntax
ldelete 'local file', FILE PATTERN
Parameters
local file
This parameter is the local file to be deleted. Its path can be relative or
absolute.
67
COMMAND LIST
LIST COMMAND
FILE PATTERN
You can use the following wildcard characters: * (any string of characters),
? (any single character), [0-9], [A-Z], or [a-z] (range of characters).
You can also use the following additional patterns:
list Command
Description
Use the list command to browse files on a server and browse Transfer Requests
with a Synchrony Gateway server.
Alias
dir, ls
Syntax
list [path]
list Q_[FILTER] for FTP only
68
COMMAND LIST
LIST COMMAND
Parameters
path
The path to the file or directory to be listed.
FILTER
For FTP, you can use a filter with the list command. Use of the filter
depends on the remote server capabilities. When used with a Synchrony
Gateway server, it can filter remote file names, transfer dates, and transfer
states.
File names can be filtered using a string with the * wildcard at the end of
the string. So the string file* will filter file names beginning with the
string file. The file name filter must be at the start of the filter string. Dates
can be filtered with one of the following possible values:
Example
list Q_file*_CD_FJ
For a Synchrony Gateway FTP server, this command filters files beginning with
the string file, that have been transferred successfully during the current day.
69
COMMAND LIST
LLIST COMMAND
llist Command
Description
The llist command displays the current local directory contents.
Alias
ldir, lls, !list, !dir, !ls
Syntax
llist
Parameters
None
lmkdir Command
Description
The lmkdir command creates a directory locally.
Alias
lmd, !mdir, !md
Syntax
lmkdir 'local directory or lmdir local_dir_name
70
COMMAND LIST
LPWD COMMAND
Parameters
local directory
The name of the local directory to create. Its path can be relative or absolute.
lpwd Command
Description
The lpwd command displays the full path of the current local working directory.
Alias
!pwd
Syntax
lpwd
Parameters
None
71
COMMAND LIST
LRENAME COMMAND
lrename Command
Description
The lrename command renames a local file.
Renaming can only be performed in the current directory.
Alias
lren, !rename, !ren
Syntax
lrename 'original filename' 'new filename'
Parameters
original filename
This parameter is the name of the file to be renamed.
new filename
This parameter is the new file name.
lrmdir Command
Description
The lrmdir command deletes a local directory.
Alias
lrd, !rmdir, !rd
72
COMMAND LIST
MGET COMMAND
Syntax
lrmdir 'local dir'
Parameters
local dir
This parameter is the local directory to be deleted. Its path can be relative
or absolute.
mget Command
Description
The mget command is used to retrieve multiple files from a remote server directory and store them in the current local directory.
Syntax
mget FILE PATTERN
Parameters
FILE PATTERN (mandatory parameter)
This parameter defines the remote files to be retrieved. You can use the
following wildcard characters:
[...] replaces any characters enclosed by the brackets. The asterisk (*) and
question mark (?) lose their special meanings within a character class. If
the first character following the opening bracket is an exclamation mark
(!) or a caret (^), then any character not in the character class is matched.
73
COMMAND LIST
MKDIR COMMAND
Examples
mget *.html # get all html files from remotedir (the current
remote directory) and store them in localdir (the current local
directory)
mget *.xml # get all xml files from remotedir (the current remote
directory) and store them in localdir (the current local
directory)
mget [0-9]*.xml # get all xml files, with a name starting with a
digit, from remotedir (the current remote directory) and store
them in localdir (the current local directory)
mkdir Command
Description
The mkdir command creates a directory on the server.
Alias
md
Syntax
mkdir 'remote directory or mkdir remote_dir_name
74
COMMAND LIST
MPUT COMMAND
Parameters
remote directory
This is the name of the remote directory to create. Depending on servers,
its path can be relative or absolute.
mput Command
Description
The mput command is used to upload multiple files from the current local
directory and store them on a remote server directory.
Syntax
mput FILE PATTERN
Parameters
FILE PATTERN (mandatory parameter)
This parameter defines the files to be stored. You can use the following
wildcard characters:
[...] replaces any characters enclosed by the brackets. The asterisk (*) and
question mark (?) lose their special meanings within a character class. If
the first character following the opening bracket is an exclamation mark
(!) or a caret (^), then any character not in the character class is matched.
A hyphen (-) between two characters can be used to denote a range. A
hyphen (-) at the beginning or end of the character class matches itself
rather than referring to a range. A close bracket (]) immediately following
the opening bracket ([) matches itself rather than indicating the end of the
character class. Otherwise, it must be escaped with a backslash (\) to refer
to itself.
75
COMMAND LIST
NEWJOB COMMAND
Examples
mput *.xls # send all xls files from localdir (the current local
directory) and store them in remotedir (the current remote
directory)
mput [A-Z]*.xls # send all xls files, with a name starting with
an upper-case letter, from localdir (the current local
directory)and store them in remotedir (the current remote
directory)
newjob Command
Description
For use with the Scheduler.
The newjob command starts a new job.
All the get, put, mget, mput, mkdir and lmkdir commands that follow the
newjob command, up to the next jobsubmit command, are added to the job.
As a job is related to a site, an open command must be used before the newjob
command. The open and close commands cannot be used between the newjob
command and the next jobsubmit command.
Syntax
newjob [name] [description]
Parameters
Name
The job name.
76
COMMAND LIST
OPEN COMMAND
Description
A description of the job.
Optional parameter
Batch Job used by default when no name is set.
open Command
Description
The open command opens a new session with a remote server that is defined by
its alias in the site database.
If reciprocal authentication is requested, some extra security parameters are
necessary.
Syntax
open [site alias]
or
open [site alias] {-kpwd private key password}
or
open [site alias] {-params private key password file}
Parameters
site alias
The alias of the site to connect to.
-kpwd
If reciprocal authentication is requested, Axway SecureClient requires a
password to access the private key that corresponds to the personal certificate to send. You can enter it directly in the open command with this
parameter. Remember that in the command line the password is visible on
the screen.
77
COMMAND LIST
OUTPUT COMMAND
-params
The function of this parameter is the same as the previous one. But with
this parameter, you do not enter the password directly. You indicate a file
where the password is stored. This file must be a Java properties file, and
must contain the following line:
UserKeyPwd='password'
output Command
Description
The output command is used to produce files with Axway SecureClient batch
mode execution trace.
The output command can be used several times in one script. This allows you
to produce an output file for each command individually. Output files are
created and truncated as needed. A second call to the output command always
ends the previous one and closes the output file associated with the first
command.
When the output command is used, all command traces are written to both the
terminal (if any) and the output file supplied by the last output command.
The main difference between the output command and using a shell redirection
(using the > character) is that it is possible to give separate files for each
command.
Syntax
output 'OUTPUT FILE'
78
COMMAND LIST
PUT COMMAND
Parameters
OUTPUT FILE (mandatory parameter)
This parameter is used either to supply a file to store traces, or to close the
file of the previous output command by giving the special value 'null'.
put Command
Description
The put command is used to store a file on a server. It can store files in text or
binary mode.
Syntax
put LOCAL FILE [REMOTE FILE] [GWPARAM(s)=value] [BIN|TEXT]
Parameters
LOCAL FILE (mandatory parameter)
This parameter is the local file name of the file to store.
REMOTE FILE
This parameter is the remote name of the file to store. If it is not supplied,
it takes the same value as the LOCAL FILE parameter.
GWPARAM(s)
GWPARAM(s) are Synchrony Gateway specific parameters. These
parameters are optional and can be supplied in the Site definition. If a
parameter is supplied by both the Site object and put command, the put
command takes precedence over the Site object.
There are four possible parameters:
org: Synchrony Gateway uses this parameter to determine the file origin.
79
COMMAND LIST
PWD COMMAND
dest: Synchrony Gateway uses this parameter to determine the file destination.
msg: This parameter is a text message that Synchrony Gateway stores and
associates with the file. This parameter can be used for user application
purpose.
Refer to the Synchrony Gateway documentation for more information on
these parameters.
BIN or TEXT
This parameter is used to enforce file encoding. If no value is supplied,
then the text file pattern rule is used to determine file encoding.
BIN: the file data will not be encoded and will be saved as a byte stream.
TEXT: the file data will be saved as a text file (line stream, line ending CR,
LF, or CRLF ASCII character depending on your operating system).
pwd Command
Description
The pwd command displays the full path name of the current remote working
directory.
Syntax
pwd
Parameters
None
80
COMMAND LIST
QUOTE COMMAND
quote Command
Description
The quote command is a generic command that allows you to use any FTP
command that does not use DATA connection.
The STOR, RETR and LIST commands cannot be transmitted by a quote
command. Use a get, put, or list command instead.
NOTE:
Syntax
quote 'FTP command' <command parameters>
Parameters
FTP command
This parameter is the FTP command as it will be sent on the network
connection.
Command parameters
These parameters are the FTP command parameters as they will be sent
on the network connection. Each parameter is separated from the
previous one by a space character.
Examples
The following command displays the result of the help command on a
Synchrony Gateway server.
> sclient site quote help
quote help
214-Get help (* => not implemented). Syntax: 'HELP [<sp>
command]'
214214- USER PASS ACCT CWD XCWD *CDUP *XCUP *SMNT
214- REIN QUIT PORT PASV MODE TYPE STRU ALLO
214- REST STOR STOU RETR LIST NLST APPE *RNFR
214- *RNTO *DELE *RMD *XRMD *MKD *XMKD PWD XPWD
214- ABOR SYST STAT HELP SITE NOOP SIZE MDTM
214- FEAT
214-
81
COMMAND LIST
RENAME COMMAND
rename Command
Description
The rename command renames a file on the remote server.
Renaming can only be performed in the current directory.
Alias
ren
82
COMMAND LIST
RMDIR COMMAND
Syntax
rename 'original filename' 'new filename'
Parameters
original filename
This parameter is the name of the file to be renamed.
new filename
This parameter is the new file name.
rmdir Command
Description
The rmdir command deletes a directory on the remote server.
Alias
rd
Syntax
rmdir 'remote dir'
Parameters
remote dir
This parameter is the remote directory to be deleted. Depending on
servers, its path can be relative or absolute.
83
COMMAND LIST
SCRIPT COMMAND
script Command
Description
The script command is used to call a script from the command line or within a
script file. It executes multiple commands with only one connection. Scripts are
called recursively. At the end of a called script, the calling script continues
execution after the script command.
A script can call itself recursively. In that case, recursion will only stop
when the system runs out of memory.
NOTE:
Syntax
script 'SCRIPT FILE'
Parameters
SCRIPT FILE
A text file that contains a list of Axway SecureClient commands. It must
contain only one command on each line. Comments can be added in the
script file using the # character.
Example
The following script is stored in the file named sclient_script1.txt:
#send file1 with some Gateway-specific parameters
put file1 appli=FTP_B org=sclient dest=company msg=filemessage
echo Inside sclient_script1.txt, before entering
sclient_script2.txt
#call the other script
script sclient_script2.txt
echo After exiting sclient_script2.txt, inside
sclient_script1.txt list file*_CD
# The following line calls another scriptscript
sclient_script2.txt
sclient site script sclient _script1.txt
84
COMMAND LIST
SETDATEFORMAT COMMAND
sclient_script2.txt:
echo Inside sclient_script2.txt
# retrieve the file, that was sent by sclient_script1.txt
get file1 file2
setdateformat Command
Description
For use with the Scheduler.
The setdateformat command specifies the format of the date read by the
jobsubmit command.
Syntax
setdateformat <date format>
Parameters
date format
This parameter specifies the format of the date read by the jobsubmit
command. This is the format used by the java.text.SimpleDateFormat Java
class.
For information about the SimpleDateFormat Java class, go to:
http://java.sun.com/javase/6/docs/api/java/text/SimpleDateFormat.html
85
COMMAND LIST
SETDATEFORMAT COMMAND
86
12
SecureTransport Client
Legacy Mode
This chapter lists and describes commands from SecureTransport Client that
are compatible with Axway SecureClient 5.6. Also included in this chapter are
sample commands.
Command-line options
The following command line options from SecureTransport Windows client
4.5.2 are supported by Axway SecureClient 5.6.
Description
/prefASC
/prefASCExt "list of
ASCII extensions"
/prefAskSched
/prefBinary
87
Description
/prefExpand
/prefFireType n
88
/prefForceSec
/prefFriendFire
/prefNoAskSched
/prefNoExpand
/prefNoForceSec
/prefNoFriendFire
Description
/prefNoProxy
/prefNoUploadCompress
/prefOverwrite
/prefPASV
/prefPORT
/prefProxy
/prefRetries n
/prefUnique
/prefUploadCompress
89
90
Description
/cmdlineDebugFile
file
/deleteAllReceived
/deleteAllSent
This option deletes all log entries for transfers sent from
the client machine. This is equivalent to /deleteSent 0.
/deleteReceived n
/deleteSent n
This option deletes all log entries for transfers sent from
the client machine n days ago and earlier. For example,
/deleteSent 1 deletes all log entries for transfers sent
before the current date.
/move
/progress
/quit
/quitWhenDone
/RemoveOnError
Description
/statusBAT
filename.bat
/Remote-Site
91
Reserved Character
Substitute Characters
%3B
%2C
%2F
%3F
%3A
%40
&
%26
%3D
%20
For example, if the user name is user1@example, password is password@example, address is my.example.com, and path is /my folder/my?file, you
must supply the URL as follows:
ftp://user1%40example:password%40example%40my.exampl
e.com/my%20folder/my%3Ffile
To use the substitute characters (without making them a substitute for the
reserved characters) as such in URLs or paths, you must prefix a % (percentage)
symbol before the substitute characters.
For example, if you want to specify %40 in the URL, without making it a substitute for @, you must specify %40 as %%40
92
Option
Description
stclient.cmd
ftpu
prefASC
prefRetries 50
93
Option
Description
stclient.cmd
prefNoAskSched
quitWhenDone
progress
Remote-Site
ftpu
In the following sample batch file, sections in boldface must be typed in one
line.
@echo off
set statusbat=%3
94
del %statusbat%
call C:\Progra~1\Axway\STClient\stclient.cmd %1 %2 /prefPORT /prefNoAskSched /prefRetries 2 /statusBAT %statusbat%
echo off
:mainloop
if NOT EXIST %statusbat% goto mainloop
call %statusbat%
echo "status.bat returned status of" %FileDriveStatus%
if '%FileDriveStatus%'=='ACTIVE' goto mainloop
goto checkbatf
:dodelete
echo "Status not deleted ...."
del %statusbat%
:checkbatf
if EXIST %statusbat% goto dodelete
echo "status deleted ..."
rem Terminate loop if done or if an error condition is reported.
if '%FileDriveStatus%'=='DONE' goto done
if '%FileDriveStatus%'=='ERROR' goto error
if '%FileDriveStatus%'=='STOP' goto stop
if '%FileDriveStatus%'=='INVALID' goto invalid
if '%FileDriveStatus%'=='NOTEXIST' goto notexist
echo "BAD STATUS"
exit -4
:done
echo "Status=DONE"
goto finished
:notexist
echo "Status=NOTEXIST"
goto finished
95
:error
echo "Status=ERROR"
goto finished
:stop
echo "Status=STOP"
goto finished
:invalid
echo "Status=INVALID"
goto finished
:finished
echo "transfer.bat completed"
96
13
Exit Codes
In batch mode, Axway SecureClient exits with a numeric code. Batch mode
stops script execution when the first error condition is reached.
The exit codes are:
Code
Meaning
Invalid command
Protocol error
97
EXIT CODES
98
14
Authentication
Trusted authorities: These are the authorities that have been chosen as
trusted. The choice is based on the certificate type. Self-signed certificates
go into the trusted store.
99
AUTHENTICATION
SSH KEY-BASED AUTHENTICATION
Personal: These entities can be authenticated by a server. Getting authenticated means two things. First, presenting a valid certification chain
leading to a trusted root authority. Second, proving that you possess the
corresponding private key by using it to sign a defined piece of data. To do
this, Axway SecureClient must have the corresponding private key. Thus,
a user entry of the certificate database is a certificate with its private key.
Such a certificate is also called a "personal" certificate.
100
15
Exit Classes
sopra.atljava.security.exit.ssl.SSLSessionListener,
sopra.atljava.security.exit.ssl.SSLPeerAuthListener, or
sopra.atljava.security.exit.ssl.SSLUserAuthListener
Note that several of these interfaces can be implemented in the same class. Each
of these implementations will be called at predefined points in the SSL authentication automaton to allow you to override the internal mechanisms. Thus, it
is possible to implement mechanisms to support a smart card, or to get the
certificates from a network or an LDAP directory, for instance. If the implementation decides to override a mechanism, it must be entirely overridden, from the
beginning to the end.
SSLSessionListener
This interface is responsible for handling the global SSL session. It is called at
the end of the handshake to validate the negotiated parameters, and is notified
of session errors.
SSLPeerAuthListener
This interface is responsible for handling the authentication of the remote
server. It is called to verify its certification chain, and to handle its public key.
101
EXIT CLASSES
SSLUSERAUTHLISTENER
SSLUserAuthListener
This interface is responsible for the authentication of the local user. It provides
SSL with its certification chain, and is called to manage the corresponding
private key. The implementing classes must be given to Axway SecureClient
with their complete Java name (for example com.client.ftpcs.exit.SSLSessionListenerImpl), and must be in an archive file called customexit.jar in order to be
implicitly included in the CLASSPATH.
102
16
Administration using
the command line
As an alternative to using the GUI, you can use the command line to configure
sites and certificates and to manage transfers, jobs, and logs for Axway SecureClient. Additional commands enable you to manage the license key or manipulate the scheduler, for example. This functionality is provided by the sclientadm
command line program.
To avoid conflicts between the GUI and command-line (in the same way as for
batch mode), ensure that the GUI is not running before executing commands
from the command line.
1: syntax error
2: run-time error
Error management
Default sclientadm behavior:
If a command fails, the error message is written on the error output and is
made of one line only, unless the silent mode is activated
The following options, common to all commands, modify the default
behavior:
-silent the option does not write anything on standard or error output
103
Help
To obtain help about sclientadm commands, enter:
sclientadm help
Command Name
Alias
Usage
Certificate Migration
migratecert
importkey
exportkey
delkey
displaykey
listkeys
Usage Information
help
104
Command Name
Alias
Usage
Proxy Management
listproxies
addproxy
delproxy
editproxy
dispproxy
105
Short Commands
Add new site
>>
sclientadm help addsite
help for addsite:
-alias {new alias}
-host {host or IP}
[-port {port}]
[-protocol {FTP|HTTP10|HTTP11|HTTP|SFTP}]
[-username {username}]
[-password {password}]
[-remotedir {remote directory}]
[-encoding {encoding charset}]
[-transfermode {transfer mode: AUTO|BINARY|ASCII}]
[-posttransfercmd {post transefer command to execute}]
[-servertype %%servertype%%]
[-httpident {http authentication methods:
Anonymous|Basic|CGI|NTLM}]
or:
-sitefile {filename or filename search pattern}
%%servertype%% values are:
when protocol is FTP :
GUESS|AXWAY|UNIX_STD|MS_FTP|IBM_ZVM|UNISYS|UNIX_NOGROUPCOL|JA
VA|SECURETRANSPORT
when protocol is HTTP*:
AXWAY|APACHE22|APACHE20|APACHE13|IIS|SECURETRANSPORT|LIGHT_HT
TPD|AUTO
when protocol is SFTP : UNIX|WINDOWS
Use this command to add a new FTP, HTTP, or SFTP site to the Axway SecureClient configuration.
Default port: 21 for FTP, 80 for HTTP, and 22 for SFTP.
106
List sites
sclientadm listsites
[-format {alias|brief}]
Use this command to display all information for a specific site. This command
returns output in the properties file format. You can use the output of this
command as a base for input properties file for the addsite full command.
Delete a site
sclientadm delsite
Use this command to delete a site from the Axway SecureClient configuration.
Change password
>sclientadm changepass
-alias {site name}
-newpass {new password}
Full Commands
Full commands make use of a site file.
Add new site(s)
sclientadm addsite
pattern}
107
Use this command to add one or more new sites to the Axway SecureClient
configuration. A simple filename targets a unique property file. A filename
search pattern (for example site*.properties) allows the creation of many new
sites. The only required property is Alias, which creates an empty site.
Update a site
sclientadm updatesite
-sitefile {filename}
Property
Possible values
Alias
Alias
Alphanumeric string
Protocol
Protocol
FTP
FTPS
HTTP
HTTPS
SFTP
108
Host
Host
Host name.
For example: localhost
RemotePort
Port
UserName
User Name
Alphanumeric string
Password
Password
Alphanumeric string
Account
Alphanumeric string
LocalDir
Local Directory
Property
Possible values
RemoteDir
Remote Directory
Passive
Connection mode
RemoteSrvType
Server Type
HTTP
AXWAY
SecureTransport
APACHE 2.2
APACHE 2.0
APACHE 1.3
Microsoft IIS
LightHttpd
Auto
FTP
AXWAY
SECURETRANSPORT
UNIX_STD
MS_FTP
IBM_MVS
UNISYS
UNIX_NOGROUPCOL
JAVA
GUESS
SFPT
UNIX
Windows
SecuredMode (FTPS
only)
Secured mode
HttpProtoVersion (HTTP
only)
Version
HttpIdentMethod (HTTP
only)
Identification method
Application
Application
Alphanumeric string
Originator
Originator
Alphanumeric string
Destination
Destination
Alphanumeric string
Message
Message
Alphanumeric string
109
Property
Possible values
ProxyName
Proxy name
LocalPort
ClientCertif
Client certificate
Certificate alias
ClientCertPassword
Client password
Alphanumeric string
ServerCertif
Server certificate
Certificate alias
ServerCertCNMatchHost
name
true
SSLParam
UseSSLCache
true
false
false
110
SFTPServerKeyStatus
Alphanumeric string:
TO IMPORT
TO CHECK
TRUSTED
NOT TRUSTED
SFTPServerFingerprint
Fingerprint
SFTPAuthMethod
AuthMethod
Property
Possible values
SFTPKeyAlias
UnknownRootBehavior
Reject connection
Reject
Prompt Certificate
Prompt
Accept connection
Accept
Use this command to add a new certificate to the Axway SecureClient database.
Optionally, you can force an alias and add an associated private key.
List certificates
sclientadm listcert
[-format {alias|brief}]
111
Delete a certificate
sclientadm delcert
List jobs
sclientadm help listjob
state {ALL|WAITING|RUNNING|ENDED}
[startid {id1}]
[-endid {id2}]
[-after { afterdate yy/MM/dd HH:mm:ss}]
[-before { beforedate yy/MM/dd HH:mm:ss}]
[-detail]
Use this command to list jobs that match state with startid < id < endid and
created after afterdate and before beforedate.
Date format: yyyy/MM/dd HH:mm:ss.
112
-id {id,id2, }
[detail]
Use this command to display full job information for a specific job.
Use the detail parameter to display all tasks for a job.
Cancel a job
sclientadm canceljob
id {id1, id2, }
Purge jobs
sclientadm purgejob
[startid {id1}]
[-endid {id2}]
[-after { afterdate }]
[-before { beforedate }]
Use this command to purge all ended jobs with startid < id < endid and
created after afterdate and before beforedate.
Date format: YYYY/MM/DD hh:mm:ss.
Archive logs
sclientadm archivelog
113
Manage license
sclientadm setlicense
Manage scheduler
sclientadm schedulerstart
sclientadm schedulerstatus
sclientadm schedulerstop
Use these commands to start, stop, or check the status of the scheduler.
114