Secure SFTP & FTPS Server for the IBM i
ARP-SFTP Server is a powerful and scalable high volume secure SFTP and FTPS server solution for the IBM i. Unlike the servers available in the IBM i operating system, ARP-SFTP Secure Server runs natively and does not require the use of your PASE environment and most importantly, it doesn't require giving out valid IBM i logins in order to transfer files if you are using it for B2B file exchanges. ARP-SFTP Server is comprised of two components: (1) a native SSH server that is built upon OpenSSH and (2) a native FTPS server. Both provide many security features lacking in IBM's SSH and FTP servers.
Both the secure SFTP and FTPS servers let you create real and virtual file systems for both real (IBMi profiles) and virtual remote users. You have total control of what an SFTP or FTPS client is doing when they connect and transfer files. Furthermore, the ARP-SFTP Server allows you to register what users are allowed to connect via SFTP or FTPS and you can allow them access to either the QSYS side (DB2 files, save files, etc) or the IFS side of the IBM unlike the IBM SSH server which only allows binary transfers to/from IFS. You can easily set up authentication in the ARP-SFTP Server to require password based or key based authentication or even BOTH. Finally the ARP-SFTP Server solution supports MFA to ensure that any connection using real IBM i logins is required to authenticate themselves using MFA. This is also important for companies who need MFA for cyber insurance. Basically ARP-SFTP Server provides what IBM i users expect and need in secure SFTP servers.
With ARP-SFTP Server you have the ability to build controlled environments for file exchanges. You can build user virtual directories, configure if users manage directories within their virtual environment and attach user lists to specific server instances to be in complete control of how you exchange files with partners. You can also ARP-SFTP Server has an abundance of API triggers that can be invoked before/after logins, commands, file exchanges and sessions. Unmatched in security features ARP-SFTP Server provides whitelisting of partner IP addresses as well as hacker shutdown features like auto blacklist of IP addresses where the server has detected suspicous activity. Other quality trademarks of ARP-SFTP Server that you see in all Arpeggio products include logging of security events to QAUDJRN, thorough logging and tracking by server, users and sessions and integration with other Arpeggio products. If you are looking for automated password management, ARP-SFTP server integrates with ARP-AUTH to allow users to reset passwords on their own. If you are implementing ARP-SFTP Server as part of a security project, it provides extra QAUDJRN messaging that can be detected by SIFT-IT and forwarded to SIEM consoles for event correlation and detection.
See for yourself and download a trial of ARP-SFTP Server.