We have released SFTPPlus version 5.21.1. This update focuses on expanding the use of the secure configuration vault with improvements to the AS2 and IBM MQ configuration.
Enhanced Security and Management
The primary change in this version is the transition of certificate and key management to the SFTPPlus Vault. This centralizes how the software handles sensitive credentials.
- Expanded Vault Support: AS2 server components, IBM MQ connections, and digital signature handlers now store certificates and private keys within the vault.
- Administrative Control: Administrators can now restrict access to specific vault items using role-based permissions.
- Security Defaults: HTTPS security is now active by default for AS2 asynchronous MDN responses.
Protocol and Database Improvements
We have updated several connection types to offer more flexibility and better organization:
- AS2 (Applicability Statement 2): Configuration options for certificates have been renamed and migrated to the vault system. Existing settings will migrate automatically during the update.
- LDAP and Active Directory: New options allow for automatic group association based on LDAP attributes. This includes support for Windows Domain SID values to map groups and roles.
- Oracle Database: Locations can now process files stored in sub-folders. Support for the Oracle Instant Client has also been added to improve connectivity with older database versions.
- OpenPGP: The functionality of the existing PGP event handler was expanded to support sign and verify PGP files during the transfer process.
Bug Fixes
- Windows Installation: The trial version on Windows now uses a consistent service name to prevent duplicate entries during upgrades.
Upgrade Information
SFTPPlus 5.21.1 is available for download today.
We recommend reviewing the automated migration steps for AS2 and LDAP if you utilize those features.
For a complete list of changes, see the release notes here.