Enable Web Edition User Access on the Reflection for Secure IT Server

To support file exchange using the Web Edition Transfer Client, you must configure the Reflection for Secure IT Server to allow access by Web Edition users.

Before you begin

  • Select a Windows user account with rights to log on to the Web Edition server (the computer on which you installed the Secure Shell Server and Web Transfer feature). This account will act as the "run as" account for Web Edition users. Web Edition users will run using the privileges of this user account. You'll need to know the username and password for this account.

    Note: To limit the access provided to Web Edition users, select a user account that is not a member of the Administrators group on this computer.

To enable access by Web Edition users

  1. On the Web Edition server, start the Reflection for Secure IT Server console. (Start > All Programs > Attachmate Reflection > Reflection SSH Server Configuration.)
  2. On left panel of the Configuration tab, click Web Edition Users.
  3. Enable Allow access to Web Edition users.
  4. Leave Restrict Web Edition users to file transfer sessions enabled. This setting helps ensure the security of your server. Disabling it creates a risk that a knowledgeable Web Edition user might use a terminal session to gain access to directories that you have not made accessible to SFTP users. Leaving this setting enabled is particularly important if your Web Edition user account has administrative privileges.
  5. For User Manager host, enter the name or IP address of the computer on which you installed the Reflection for Secure IT User Manager. If all Web Edition services are installed on the same computer, you can leave the default (localhost). Leave the default port value (9190). User Manager is configured by default to listen on this port.
  6. Click Select account. Click Add and enter the user name and password for the user under whose account Web Edition users will run. Click Test to confirm these credentials, then click OK to save this user account to the credential cache.
  7. In the Select Account dialog box, select the user account you just added and click OK to set this as the "run as" account for Web Edition users.
  8. Save your settings (File > Save Settings).
  9. Click Activate and verify. This triggers actions that ensure that the Reflection for Secure IT Server can establish a secure connection with the User Manager server. A dialog box display provides information about these steps. You will be prompted to accept the certificate presented by the User Manager server and to restart the Web Transfer service.
  10. (Recommended) To help ensure security on this system, disable port forwarding for all users. On the left panel of the Configuration tab, click Permissions. Under Tunneling, clear the two port forwarding options.

 

Next

Transfer Files to the Web Edition Server