Secure Folder Sharing
- Last Updated: November 22, 2023
- 3 minute read
- MOVEit Transfer
- Version 2025
- Documentation
Secure Folder Sharing extends the collaboration capabilities of MOVEit Transfer while delivering in-transit and at-rest data confidentiality and data integrity.
Secure Folder Sharing helps you leverage:
- Orgs where folder-level collaboration enables mission and business goals.
- Orgs where regular users need greater autonomy and lightweight access to business information.
- An option of enabling regular users to branch out requests to temp users that can contribute/access important resources.
- Leveraging requests for all levels of information between groups, temp users, and regular users.
- Simple access and management of folder access lists within a designated "Secure Folder Sharing" org.
Choose orgs that will enable folder sharing UI controls for org admins (sysadmin post-install task)
Understand the ways you can apply or limit Secure Folder Sharing
The admin controls and Secure Folder Sharing license must be in place before you can grant MOVEit Transfer regular users autonomy to share their folders and subfolders with temp users and other regular users. The following table details the scopes at which you can apply or limit the use of this feature.
Feature Scope |
Description |
Mechanisms You can Use |
|---|---|---|
System level (sysadmin) |
Enables/limits if the feature is available for delegation (at a system-wide scope). |
|
Org level (sysadmin) |
Enables/limits if the feature is available (at selected org basis). |
Org profile. |
User role level (admin) |
Configures feature on the user-home folders of regular users. |
Home folder policy settings. |
Folder-specific scope (admin) |
Configures feature on folders. Admins can enable/remove specific sharing permissions for individual users associated with specific folders. |
Folder Access settings. (Best practice) |
User operation |
When you delegate sharing authority to a user as sharer you can limit the operations the sharer can pass on to others. |
Operation-specific sharing. Admin delegates fine scope of sharing operation controls (2019 feature). (Best practice) |
Choose which folder operations a user as sharer can pass to others
For example, applying operations such as Delete, Upload, List and List Users can be granted to privileged users and content. Whereas, Download only might be appropriate for collaborative environments where content updates are controlled centrally.
Admin Delegating Share Reveals a New Set of Access Controls
Best practices for using this feature
For MOVEit Transfer administrators, here are important things to consider:
- It is best practice for your regular users to selectively share using subfolders. Discourage users from sharing their entire home folder.
- Customized permission settings do not have to inherit policy settings from the parent folder. (In most cases they won't.)
- If you revert Share settings (clear the checkbox) after users have enjoyed sharing capabilities, permissions will no longer be customizable. (However, the folders created before you reverted Share will continue to provide access control to users already shared with.
- Enabling the Share permission attribute on the Home Folder Permissions page will enable users to directly share their user-home (~myuser) folder and is therefore discouraged.
Steps for configuring a Secure Folder Sharing environment in MOVEit Transfer
In order to enable Secure Folder Sharing, you must:
Install. Install MOVEit Transfer with a license that includes Secure Folder Sharing. (Typically this happens at install time.)
Plan/Choose. Choose which Orgs/users will benefit from the increased autonomy and enhanced powers of sharing and collaboration.
Delegate Authority. Enable users to break inheritance from parent folder permissions and share with other users (for example, on a per-folder basis).