Feature Availability

Feature

Express

Enterprise

SSL/TLS - secure FTP communications

Included

Included

SSL key manager - manage, import, export, and create SSL certificates

Included

Included

SSL Config - specify ciphers and versions allowed (SSL v2, v3, and TLS v1)

Included

Included

Checkpoint restart - resume interrupted transfers

Included

Included

Compression - inline  compression of ASCII files

Included

Included

Reduce transfer time over poor connections by allowing uploaded files to be split apart and transferred in multiple segments simultaneously (COMB)

Included

Included

Verification - guarantee integrity by comparing checksums

Included

Included

Command blocking - prevent unwanted behavior

Included

Included

S-key OTP - One-time-password scheme for plain-text FTP

Included

Included

PASV port range - facilitate FTP connections behind network firewalls

Included

Included

EBCDIC  - Used for communicating with legacy systems

Included

Included

UTF-8 - Transfer Unicode filenames over FTP

Included

Included

Session tools - Real-time session monitoring

Included

Included

Customizable - Modify various FTP banners to suit your specific needs

Included

Included

FIPS - FIPS 140-2 certified SSH cryptographic module 

ESM

Included

Key manager - manage, import, export, and create SSH key pairs

SFTP

Included

Key types - OpenSSH and SSH.COM (SECSH format) supported

SFTP

Included

Authentication - Any combination of password and/or public key

SFTP

Included

Strong ciphers - 256-bit Twofish, 256-bit AES CBC, and 256-bit AES CTR mode

SFTP

Included

Configurable SSH-protoversion-softwareversion - lower attack footprint

SFTP

Included

FIPS - FIPS 140-2 certified SSH cryptographic module 

SFTP, ESM

Included

Customizable landing portal - Login page can be branded

HTTP/S

Included

Form-based auth - sessions are managed securely by the server

HTTP/S

Included

Basic-auth - standard browser authentication (fallback auth mechanism)

HTTP/S

Included

Session management in accordance with OWASP guidelines

HTTP/S

Included

Password reset in accordance with OWASP guidelines

HTTP/S

Included

Lost username retrieval in accordance with OWASP guideline

HTTP/S

Included

SSO - use the Integrated Windows Authentication (IWA) in Internet Explorer

HTTP/S

Included

Accelerate file transfers using EFT Event Rule Actions

N/A

Accelerate module

HTTP->HTTPS auto-redirect - increased security through implicit redirection of non-secure connections

HTTP/S, ESM

ASM

Web client - Optional web client adds a rich set of features compared to script-driven HTTP/S transfers

HTTP/S, WTC

Included

Mobile client - Provides secure, remote access to your EFT files through HTTPS

HTTP/S, MTC

Included

Multi-directional - service inbound and initiate outbound AS2 transactions

N/A

AS2 module

Drummond certified - 3rd-party certified equals superior interoperability.

N/A

AS2 module

Message Level Security (MLS) - certificate-based authentication

N/A

AS2 module

Reliability Profile - AS2 extension that increases interoperability

N/A

AS2 module

Multiple Attachments (MA) Profile - AS2 extension that facilitates multiple concurrent transactions

N/A

AS2 module

Native - (proprietary) authentication (EFT-managed authentication)

Included

Included

Active Directory (AD) authentication

Included

Included

ODBC - leverage any ODBC data source for user authentication

Included

Included

NTLM - authenticate local system accounts (Choose "Windows AD Authentication" when creating the Site.)

Included

Included

LDAP - authenticate against LDAP sources, including AD

N/A

Included

SAML (WebSSO) - user interface controls for enabling and configuring SAML for achieving Single Sign On (SSO) for Web-based authentication

N/A

ASM

RADIUS - often used as a two-factor authentication source

N/A

RADIUS,  ASM

SMS authentication - two-factor authentication using a mobile device to receive a login code (requires SMS software)

N/A

SMS software, ASM

RSA SecurID^® - 3rd-party access manager that provides two-factor authentication

N/A

RSA server, ASM

CAC - Common Access Card authentication

N/A

ASM

AD Impersonation - leverage Active Directory ACLs

Included

Included

Permissions - set folder level permissions or inherit from parent

Included

Included

Permission groups - assign users to permission groups or templates

Included

Included

Virtual folders - map virtual to physical folders including network shares

Included

Included

Home folders - designate a home folder and optionally make it the user's root folder

Included

Included

Set limits - number of logins, connections,  file sizes, transfer speeds, disk quotas

Included

Included

Invalid passwords -  controls to auto-lockout, disable, or ban IP

Included

Included

Invalid account names - controls to auto-ban offender IP

Included

Included

DoS detection - controls to temporarily or permanently ban suspect IPs 

Included

Included

IP access rules - full featured IP access rule manager

Included

Included

Banned file types - prevent upload of unwanted file types

Included

Included

Monitor and kick offending users from the server

Included

Included

Password complexity - configure a large number of complexity options

Included

Included

Password reset - user-initiated or on initial login

Included

Included

Password reuse - disallow historical (previously used) passwords

Included

Included

Expire accounts - disable account on a given date

Included

Included

Expire inactive accounts - disable or remove account after N days of inactivity

ESM

ASM

Expire passwords - expire passwords after N days

ESM

ASM

Expiration reminder - email user reminder to change their password

ESM

ASM

Data sanitization - securely clean deleted data using military grade wiping

ESM

ASM

EFS - encrypt data at rest using Windows' Streaming repository encryption (EFS)

ESM

ASM

OpenPGP - use OpenPGP to encrypt, sign, and decrypt data

OpenPGP

OpenPGP

PCI DSS monitor - actively monitor and alert on violations

ESM, ARM

ASM, ARM

PCI DSS report - generate a compliance with a single mouse click

ESM, ARM

ASM, ARM

PCI DSS compensating controls (CCs) - capture and report admin-provided CCs

ESM, ARM

ASM, ARM

PCI DSS setup wizard - walkthrough configuration with PCI DSS in mind

ESM, ARM

ASM, ARM

DMZ Gateway - securely proxy transfers through the DMZ

DMZ Gateway

DMZ Gateway

Silent installation - unattended setup

Included

Included

Administrator GUI - Windows based Graphical User Interface (GUI)

Included

Included

Remote administration - administer from other systems in the network

Included

Included

Secure remote administration - SSL encrypted administration communications

Included

Included

Multiple administrators - allow concurrent administration

Included

Included

Secure administration - same password complexity options available for admins

Included

Included

Flexible authentication - leverage native, NTLM, or AD to authenticate administrators

ESM

ASM

Forensics - audit and report on all administrator activity and changes

ESM, ARM

ASM, ARM

COM API - programmatic administration

Limited

Included

Delegated administration - role based administrator accounts with granular permissions

Server and Site admin only

Included

REST endpoint for querying administrative info and server status

Included

Included

Backup and Restore - one-click backup and easy restore of entire configuration

N/A

Included

Batch account management - perform actions to multiple accounts simultaneously

N/A

Included

Logging - flat file log in W3C and other formats

Included

Included

Monitor inbound transfers in real time

ARM

Included

Audit to SQL - audit transactions to a SQL database

ARM

ARM

View reports - choose from pre-built or build your own

ARM

ARM

Audit to Oracle - audit transactions to an Oracle database

N/A

ARM

Monitor outbound transfers in real time

N/A

Included

Business Activity Monitoring (BAM) - real-time visibility, dashboard, and analytics (Requires ARM)

N/A

BAM

React to stimuli - trigger workflows based on file uploads and other server events

Included

Included

Send email to users or administrators as part of a workflow

Included

Included

Execute a process, including scripts, as part of a workflow

Included

Included

Context variables - use transaction values inside of workflows

Included

Included

Hot folders - trigger workflows when files arrive in a monitored folder

Folder Monitor

Included

Scheduled events - trigger workflows on a recurring basis

Timer Module

Included

Web Services - trigger workflows using WS calls; Invoke Web Service from URL

N/A

Included

Conditional logic - build fine-grained business logic into workflows

N/A

Included

Clean up - securely clean target folders from within a workflow

N/A

Included

Offload and download - push or pull files to remote servers as part of a workflow

File Transfer Client module

Included

Send pre- and post- commands to mainframe during copy/move actions

N/A

Included

Perform folder and file operations

N/A

Included

Compress/Decompress files

N/A

Included

Advanced workflows - tap into the Advanced Workflow Engine to build sophisticated workflows

N/A

AWE

Integration with antivirus and DLP (Data Loss Prevention) tools to permit or prevent transfers based on policies.

N/A

ASM module

Integration with cloud (AWS and Azure) storage; Copy, move, and download from cloud storage

Included

Included

Ability to monitor and act upon AWS S3 and Azure blob storage activity

Included

Included

Centralized control for automating transactions from distributed systems (Remote Agents), including provisioning, management and Event Rules

N/A

Included

Reusable connection profiles for use in Event Rules

N/A

Included

Logging for AWS S3 and Azure blog storage to EFT.log

N/A

Included

Ad hoc file transfer - secure file transfer available either via Outlook Add-in or web interface

HTTP/S, Workspaces

Workspaces

Two-way file sharing - recipients provided with multiple methods to send files back

HTTP/S, Workspaces

Workspaces

Receipt notification - email notification when files are picked up by the recipient

HTTP/S, Workspaces

Workspaces

Pick-up authentication - recipients can be required to verify their identity before downloading files

HTTP/S, Workspaces

Workspaces

Full file tracking - Users and administrators can view complete history of files sent and received

HTTP/S, Workspaces

Workspaces

Centralized policy controls - administrator can enforce varying levels of required usage policies

HTTP/S, Workspaces

Workspaces

Active directory authentication - authentication internal users using AD

HTTP/S, Workspaces

Workspaces

Integration with EFT - monitor all ad hoc  file transfer activity from EFT

HTTP/S, Workspaces

Workspaces

Complete customization - easily customize ad hoc  web interface

HTTP/S, Workspaces

Workspaces

Share  folders/files with others; invite others to share (Workspaces via browser and EFT Outlook Add-In)

HTTP/S, Workspaces

Workspaces

Request files via Workspaces

HTTP/S, Workspaces

Workspaces

Send file in email from Workspaces with Secure Message Body

HTTP/S, Workspaces

Workspaces

IPv6 - Full dual stack (IPv4/6 mixed) support

Included

Included

Virtual - Run on virtual machines, e.g. VMware and Hyper-V

Included

Included

Unicode - UTF-8 encoding of filenames and other fields where applicable

Included

Included

IDN - Internationalized domain name support

Included

Included

I/O Completion Ports - Technology that allows for tremendous performance on Windows systems

Included

Included

Active-passive clustering - Failover for high availability

N/A

Included

Active-active, high availability (HA) clustering with 3 or more EFT Enterprise licenses

N/A

Included

Supported on Windows Server 2012 and 2016

Included

Logo certified