Files Used by Reflection for Secure IT

Reflection for Secure IT stores files in the following location:

The default data folder location is:

Windows Server 2008:

Windows Server 2003:
\Documents and Settings\all users\Application Data\Attachmate\RSecureServer\

Note: The files in the data folder (with the exception of the host public key) contain information that should remain secure. These files should not be readable by any one except SYSTEM and Administrators. These file permissions are set by default.





Server configuration file. This file is in XML format.

Note: To minimize the chance of introducing errors, we recommend using the console whenever you want to modify your server settings.


The default private key of the public/private key pair used to identify the server to clients.

The default public key of the public/private key pair used to authenticate the server to clients.


This file stores cached credentials and keys used for establishing connections to remote SFTP servers. The file is encrypted using AES 256. In addition, passwords within the database are encrypted using the same algorithm with a different, system-specific key unique to the user. Moving this file to another system is not supported unless the system is identical (such as in a failover environment).


This file contains the key required to decrypt the credential cache and is required to use the cache. If it is deleted, you will need to recreate your credential cache.


This hidden file indicates that the server has migrated settings from a prior version. When this file is present, the server won't repeat an automated migration. This file has no effect on migrations done using the rsshd command line -m option.

Log Files

By default, Reflection for Secure IT stores log files in a Logs subfolder in the data folder.

Log File



Information about settings migration from an F-Secure or Reflection 6.x sshd2_config file.


Information about invalid settings values in the rsshd_config.xml configuration file. This file is created when you start the console.


Information about invalid settings values in the rsshd_config.xml configuration file. This file is created when you start the server.


Debug log file. (These files are not created by default. Enable text logging using the Debug Logging pane.)

User-Specific Files

User-specific files control access to the server by individual client users. Reflection for Secure IT looks for user-specific files in the Windows user profile folder. The user profile folder is configurable by the Windows system administrator. The default is:

Windows Server 2003:
\Documents and Settings\username\

Windows Server 2008:

File or Directory


<user profile>\.ssh2

Default user key directory. Copy user public keys to this directory.

<user profile>\.ssh2\authorization

Default user authorization file. Add a line for each key using the format "key" followed by the public key name. For example:


Related Topics

Change the Default Data Folder