MOVEit Transfer 2024.1 Administrator Guide

Before You Enable User-Home Folder Sharing Throughout Your Org!

Save PDF

Save selected topic Save selected topic and subtopics Save all topics

Share to email Copy topic URL

Start Transferring Files and Data
Introduction
MOVEit MFT Features and Advantages
MOVEit Transfer Config Utility
Firewall Configuration
Web Application Firewall (WAF) Configuration
Backup/Restore Utility
Admin/Web UI
FTP Server
SSH Server
Web Farms
Advanced Topics
User Guide Welcome
Privacy, Security, and Data Protection Features
- Privacy, Security Standards, and Auditing Requirements
- Security/Data Protection
Compliance Statements and Acknowledgements

Table of Contents

Before You Enable User-Home Folder Sharing Throughout Your Org!

Save PDF

Save selected topic Save selected topic and subtopics Save all topics

Share to email Copy topic URL

Last Updated: April 6, 2022
3 minute read

MOVEit Transfer
Version 2024.1
Version 2024
Documentation


	(Best practice)

Apply sharing authority at the individual folder level (not at "user-home" or policy scope). Enabling sharing authority at the lowest level in a folder tree is encouraged and it reinforces the principle of least privilege (PoLP) to resources. (Best practice)		Enable the Share permission attribute for users or groups in the Folder Settings page for an individual folder. (Best practice)

Consider this before you enable sharing as policy to any user's top-level ("user-home")

Before you enable Share...
Enabling the Share permission attribute on the Home Folder Permissions page will allow regular users to apply customized permission settings and extend folder access to others.
Shared folders do not conform to parent folder permission settings...
Once you delegate sharing authority, regular users can customize folder permission settings and user access lists. Shared folders do not need to re-use permission settings from the parent folder. (In most cases they won't.)
Before you turn off (or revoke) Share... (by clearing the check box and clicking Save)
If you revoke Share settings (clear the checkbox) after regular users have enjoyed sharing capabilities, folder permissions will no longer be customizable by them. (However, the folders created before you revoked Share will continue to provide access control to users already shared with.)

Note: Changes you apply here will affect all home folders on the system. For example, if you remove all permissions, users will NOT be able to upload to, download from, share, or even view their home folder unless you add permissions directly to the folder.

Other information: org and system level Secure Folder Sharing configuration

Turn on/off Secure Folder Sharing for selected orgs
When Secure Folder Sharing is properly licensed and available, MOVEit Transfer sysadmins can also turn on/off Secure Folder Sharing on an org-by-org basis. In this case, only admins of orgs selected by the sysadmin will be able to delegate Secure Folder Sharing authority and range of access control to regular users. See the Secure Folder Sharing topic for details.
Secure Folder Sharing license
The Secure Folder Sharing org profile controls must be enabled and a Secure Folder Sharing license must be in place in order to grant regular MOVEit Transfer users autonomy to share their "user-home" folder (/Home/someusername, for example) and associated subfolders with temp/guest users or other regular users. Removing the license for Secure Folder Sharing is similar to revoking the Share permission. Permissions will no longer be customizable by regular users. Only Administrators will be able to customize or remove existing permissions.