To install MOVEit Automation:

  1. Log in to Microsoft Windows as Administrator or using a comparable account with full administrative privileges to the computer.
  2. Choose one of the following options to start the installation:
    • Right-click the downloaded MOVEit installation file and select Run as Administrator.
    • Run the installation from an Administrator command prompt, for example "C:Users\Administrator\Desktop\MOVEit_Install.exe"
  3. Select the language for the installation from the drop-down menu.
  4. Read the Welcome screen and choose either:
    • Express Mode: Installs all program features using the default installation path.
    • Custom Mode: Allows selection of specific modules and configuration of additional settings.
  5. To enable in-app notifications, select the Enable In-App Notifications check box.

    Click Next to proceed.

  6. Enter your MOVEit activation key and click Next . This activates your software using your computer's Internet connection and populates your serial number from the installation file.
    Note: Alternately, you can activate your MOVEit installation using a license file from the My Products section of the Customer Portal or through the offline activation process detailed here. This option is useful if your MOVEit server is not connected to the Internet.

    INSTALL MODE

  7. Select the MOVEit modules you want to install, then click Next . You can install Automation Server and Automation Web Admin. To ONLY install Automation Web Admin without Automation Server, please continue here.
    Note: The following steps apply to the installation of both modules. Some steps are excluded if both modules are not installed simultaneously.

    SYSTEM CHECK

  8. Review the results of the system configuration check. Resolve any issues and click Revalidate to perform the system configuration check again. Click Next to proceed.
    Note: If you selected Custom when beginning this installation, proceed to the next step. If you selected Express installation, skip to step 11.

    INSTALL SETTINGS

  9. Select the type of account for Windows services. For information about each account type, see Prior to installing MOVEit Automation.

    OPTIONS

  10. (2025.1 and later) Select the authentication type or types that you want to enable in MOVEit Automation For more information about Single Sign-On, see Single Sign-On.
    • Enable Single Sign-On (SSO) with OIDC

      To use Single Sign-On (SSO), you must have a pre-configured Identity Provider. The Identity Provider processes authentication.

    • Enable Username/Password Sign-On

      MOVEit Automation authenticates the user with the provided credentials.

    • Hide Username/Password Sign-On option on Login Page

      If selected, only SSO will be available as an option on the login page, even if Username/Password Sign-On is enabled. Select this option to allow Web Admin users to authenticate via SSO, while retaining support for username/password credentials for programmatic access, such as API.

  11. (2025.1 and later) To configure SSO, complete this step. If SSO configuration is not required, skip this step. You must have access to your organization's pre-configured Identity Provider portal. MOVEit Automation supports authentication via OpenID Connect (OIDC) and has been tested with the following Identity Providers:
    • Microsoft Entra ID (formerly Azure AD)
    • Active Directory Federation Services (ADFS)
    • Okta
    Other OIDC-compliant providers are not explicitly validated but are expected to be compatible with the MOVEit Automation authentication framework.
    1. On the Web Admin SSO Settings page, enter the following information for the configured OIDC app registration on your Identity Provider:
      1. The Issuer URL is a unique identifier for the identity provider and is used by clients to validate tokens. For example, the format for a Microsoft Entra ID Issuer URL is:
        https://login.microsoftonline.com/tenant_id/v2.0
      2. The Client ID is a unique identifier assigned to your application when you register it with the identity provider.
    2. On the Web Admin Single-Sign-On - Token Claim Names page, enter the information from the Claims on the ID Token provided by the Identity Provider.
      1. The on-premises SID of the user is the user's security identifier.
      2. The username of the user identifies the user's preferred username in the SSO token.
      3. The groups that the user belongs to lists the group memberships of the user, which can be used for role-based access control or permissions.
    3. On the Authentication Options page:
      1. Select the Allow Single Sign-On access to the MOVEit service check box to allow the MOVEit Automation server to connect to the Web Admin.
      2. Enter the URL of the Web Admin server that handles SSO. MOVEit Automation will use this URL to communicate with the Web Admin server for authentication.
      3. Select the Ignore Certificate Errors check box if the Web Admin server uses a self-signed certificate. Checking this box allows the setup to continue even if the certificate is not trusted by default.
    4. Click Next.
  12. Specify whether to install a new instance of My SQL Server locally, use an Existing Microsoft SQL Server or an Existing Microsoft Azure SQL Server database, then click Next.
    Note: To use an Amazon Relational Database Service (Amazon RDS), select Existing Microsoft SQL Server and use the address that you received from AWS when your database instance was created.
    1. If you choose My SQL Server, enter a name and location for the new instance and credentials for both the MYSQL Administrator and MYSQL User accounts, then click Next.
      Note: MOVEit recommends using the default names provided for your databases. If you choose to use non-standard database names, please do so during product installation as modifying them after installation could cause network monitoring issues.
    2. If you choose Existing Microsoft SQL Server or Existing Microsoft Azure SQL Server, enter the SQL Server name in the format:
      server,port\instance

      server is the name or IP address of the machine hosting the SQL Server. Use localhost if the database is on the same machine.

      port is the port number the SQL Server is listening on. Only needed if it's not the default port (1433).

      instance is the name of the SQL Server instance you want to connect to. Use this if you're connecting to a named instance.

      For example, 12.34.5.678,1422\MOVEITDB

      1. Enter the SQL Server Administrator Login name and password for MOVEit to use to access the existing instance, then click Next, or if using an Existing Microsoft Azure SQL Server select the check box to use Windows authentication.
  13. Select the destination folders for the MOVEit Application and Cache folders, and click Next .

    For the MOVEit Application folder, specify a local path on the configured host where you are running this MOVEit Installer.

  14. Enter the credentials for the MOVEit Automation Admin account and a Tamper Key. Click Next to proceed.
    Note: The Admin password can be modified following installation. However, the tamper key cannot. Ensure the credentials you have entered in this dialog are correct before proceeding.
  15. Enter the IP address or hostname of the MOVEit Automation Server on which the user will log into the MOVEit web interface as well as the applicable HTTP and HTTPS ports to be used for server communication. If you are entering more than one server, separate addresses or hostnames with comma(s).

    CONFIGURATIONS

  16. Enter the notification details:
    1. Enter the sender and recipient email addresses, and the SMTP server address that MOVEit will use for email communication. The recipient (To) address is used to send warning notifications when a serious problem occurs.
    2. Specify the port number (default is 25).
    3. Enable TLS if your SMTP server requires TLS encryption.
    4. Select the Ignore certificate errors check box if your server uses a self-signed certificate.
    5. If your SMTP server requires authentication, select Require credentials and choose one of the following authentication methods:
      • OAuth: Choose your provider:
        • Microsoft Office 365
          • Client ID: The Client ID for the OAuth client.
          • Client Secret: The Client Secret for the OAuth client.
          • Username: Username of the user whose mailbox you want to connect to.
          • Tenant ID: A globally unique identifier (GUID) that is different from your organization’s name or domain.
        • Custom
      • Username/Password: Enter your SMTP username and password.
    Click Next to proceed.
  17. Server Certificate: Specify whether you want to Create a new certificate or Use an existing certificate . If you opt to create a new encryption certificate, MOVEit will auto-generate one that will expire after 90 days, then click Next.
  18. Web Admin Certificate: Specify whether you want to Create certificate or Import Certificate Keystore (PKCS12/Password Protected) , then click Next.
    1. If you chose Create certificate , MOVEit will auto-generate one which will expire after 90 days.
    2. If you chose Import Certificate Keystore (PKCS12/Password Protected) , browse to the existing certificate and insert the certificate password.

    INSTALL

  19. Review the Summary dialog and ensure the detailed configuration settings are correct, then click Proceed . The MOVEit install program begins the installation.
    Note: Click Copy Credentials to generate a text file with this information for your reference following installation. This is your only opportunity to generate a copy of this important information.

    FINISH

  20. When installation is complete, click Finish to close the program.