Professional Documents
Culture Documents
Guide
ITS Global
May 2014
Glossary
1
Introduction
1.1
Audience
1.2
Best practices
2.1
2.2
Splitting files
Accessing SDTS
4.1
Logging In
4.2
Forgotten Password
4.3
Transferring Files
10
4.4
12
4.5
Changing a Password
12
4.6
File Options
12
4.7
Deleting a File
13
Logging Out
14
5.1
14
5.2
14
15
16
7.1
First Logon
16
7.2
24
7.3
Delete files
24
7.4
24
7.5
7.5.1
7.5.2
7.5.3
7.5.4
7.5.5
SecureFX behaviour
Download option
Drag & Drop from other windows
Transferring different file-types
Session disconnect
Closing SecureFX
26
26
27
28
29
30
Author
Date
Revision
1.0
Remko Feenstra
Draft
2.0
Daniel Valcq
Draft
3.0
Remko Feenstra
Draft
4.0
Remko Feenstra
Draft
Date Reviewed
1.
Daniel Valcq
2.
Jason Jennings
3.
4.
This document has been approved by
1.
Name
Date Approved
Jason Jennings
November 22,2013
2.
3.
4.
5.
Introduction
The Secure Data Transfer Service (SDTS) is a requirement from the business (Audit, Tax and ITS
Global) to securely exchange large amounts of data between clients, vendors, etc., and KPMG, and
vice versa. The service described in this document supports different levels of authentication and
authorization, and is capable of handling significant file sizes (in gigabytes).
This application is browser-driven and is located in each of the three global datacentres.
The SDTS services offered are:
Shared Folder: A shared folder is a folder used between multiple accounts for file transfer.
Automated or manual transfers: SDTS is capable of performing automated transfer and
routing of files. Files can be fetched from one remote server (pull) and transferred to another
remote server (push). Transfer can take place according to a schedule or on event driven
basis.
The focus of this document is on shared folders, as this is the most commonly used service.
1.1
Audience
Users of the SDTS service who own an account for file transfer. This document provides step by step
instructions on how to use the SDTS service, using the web interface and SecureFX.
1.2
Description
Click OK to continue.
Best practices
2.1
If you need to transfer huge files (over 5 Gbyte) you may want to consider splitting the file into
smaller parts. Using concurrent transfers may improve your transfer time significantly (depending on
the available bandwidth and latency).
When using the web-interface you should split large files in parts of 1 Gbyte or smaller and transfer
the files using multiple concurrent sessions (not more the 4 concurrent sessions). You can open
multiple browser windows to do so.
When using an SFTP client (like SecureFTP) you should split the file into 4-6 chunks. You can then
transfer the chunks concurrently (see the SecureFX user manual in this document). Using more than
4 concurrent sessions will in general not improve transfer speeds (depending on latency and available
bandwidth).
2.2
Splitting files
You can split files using various tools. KPMGs standard is Winzip. You can use the Winzip command
line add-on to split (and encrypt) a file in smaller parts. The Winzip command line add-on is not
installed by default, you can download it at: http://www.winzip.com/prodpagecl.htm
Accessing SDTS
This document contains information on accessing SDTS, using the web based client and the
SecureFX client. The web based client offers a user friendly way to manage your documents. When
more functionality is required, please use a SecureFTP client.
Standard access to the Secure Data Transfer Service (SDTS) application is via a web browser
window. Files can be transferred from any browser that can connect to the Internet.
4.1
Logging In
Open a web browser window and navigate to the Secure Data Transfer Service application
appropriate to your region;
https://sdts.amr.kpmg.com/ (Americas region)
https://sdts.aspac.kpmg.com/ (Asia Pacific region)
https://sdts.ema.kpmg.com/ (Europe and Middle East region)
Enter a valid username and password. If this is the first time the username and password are
being used, a further page is displayed, requesting the password be changed before proceeding
further.
If you have forgotten your password, please refer to section 4.2
If this is the first time you are accessing the SDTS environment, you will need to accept
certificate trusts the first time they login into the SDTS.
4
5
Click continue
Once successfully logged in, the Welcome page is displayed, showing the Home directory to
which you are subscribed to see.
4.2
1
Forgotten Password
If you have forgotten your passsowrd, click on the Forgotten Your Password? link. This will
provide the option to put in an email address so that a new temporary password can be sent to
you via email.
Please click on reset password. You will receive an email with a link in it as highlighted below
Please click on this link which will redirect you to a web page indicating that an email with the
your new (temporary) password will be sent shortly as seen below.
The web page can now be closed. It can take a few minutes for the email to arrive.
Once the email is received, please take note of the temporary password and click on the link to
start the login process. You will be taken to the login page where you must change the temporary
password, to make a new permanent password. Please be aware of the password strength
requirements for the new password.
Once the password has been successfully changed, you are requested to re-authenticate by
logging back in again, using the new password.
4.3
Transferring Files
Click on the Browse button, a dialog box appears allowing the user to browse for the files they
wish to upload.
10
The file can then be uploaded by clicking on the Open button seen at the bottom of the dialog
box.
Note: Files should be uploaded to the shared folder only, not the Home directory. The Home
directory is only available via your login account thus cannot be shared with other users. Only
shared folders are shared with other nominated SDTS accounts.
3
On your screen you can see now that your file has been uploaded. You can see the name,
size,date and time.
11
Note: The upload time is dependent upon various factors, including the size of the file and the
available network bandwidth.
SDTS has an optional feature where an e-mail notification is sent to a specified e-mail address once a
file has been successfully uploaded; a notification can also be sent if the transfer fails.
4.4
Stopping a Transfer
Due to certain circumstances, it may be necessary to temporarily stop a file transfer. SDTS allows file
transfers to be stopped as required. Go to the tab account and this will stop the transfer.
4.5
Changing a Password
To change the password of your account while is currently logged in, click My account on the
Welcome page. A new tab will be opened allowing you to change your password. To abort the
changing of the password, close the tab.
4.6
File Options
Before you can use the file options, actual files (and not folders) must be available; i.e. files must
have been previously uploaded to the server.
1
When logged in, the My Files tab will be present, this tab displays the files which were
previously uploaded.
To download a file, click the box (you can choose more then one file) before the filename and
click on the Download
button
12
A new window will open allowing you to browse to the location where the file is to be saved. If
you wish to open the file from SDTS, it can be double clicked.
Transfer Mode: You can change the transfer mode between binary or ascii in the start screen
located on the top right. It is possible to also change the password in this screen. Binary transfers
are the most common.
4.7
Deleting a File
A file can be deleted by simply clicking on the box before the file and pressing the delete button
13
Logging Out
There are two ways in which a user can exit the application: Manual or Automatic.
5.1
5.2
For security purposes, the SDTS application has a timeout period. If a session is idle for a
predetermined period, the session is automatically logged out.
14
When you use automated file transfers you need to user SecureFX (see next chapter).
Because there is no use for email the webpage is different, for this we use Jelly Ball.
This shows the option to browse locally for the file, just click upload file to transfer the file to the
server. You can delete files by using the delete button. Downloading uploaded files is done by the
download button.
15
The Van Dyke SecureFX client is the de-facto standard within KPMG to securely transfer files.
SecureFX is a fast and reliable option to transfer files larger than 1 Gb.
This chapter will explain the usage of SecureFX to transfer files. This manual does not discuss
installation of SecureFX, it assumes you have SecureFX already installed.
Note: Please be aware that SecureFX will not function through proxy-servers, you need a direct
Internet connection in order to connect to an SDTS server. All servers in the Global Data Centre can
connect directly to a SDTS server, please contact the Global Helpdesk for the correct internal DNS
names.
7.1
First Logon
16
17
Enter your username given by the administrator (this is your IID or email address). Optionally you can
enter your password, for security reasons this is not recommended.
Click Next.
18
Fill in a session name and a description (whatever you prefer) and click Finish.
19
If this is the first time you connect to the SDTS server you will be prompted to accept the host key,
please click Accept & Save.
The following popup is displayed, click OK:
If you have not filled in your username or password you will be presented with a logon box, please
enter your username and password and click OK.
20
The directory-structure on the SDTS server will be displayed, in order to simplify drag & drop you can
tile the windows (horizontally or vertically) as shown in the next figure.
21
To transfer files you can drag & drop them from one window to another, the transfer status window
will be shown.
Note: Per session you can only transfer one file at a time all though you can select the window again
you cannot drag & drop another file from and to the SDTS server window until the transfer is
completed. If you do so you will be prompted with various error messages. Please see section about
transferring multiple files at once.
If the file exists on your local machine you will be prompted and you have the option to rename it or
overwrite it before it is downloaded.
22
Click No if you do not want to cancel the download, Rename if you want to rename, Yes if you want
to overwrite the file.
If the files exists on the remote SDTS server you will be prompted and you will have the option to
overwrite (Yes) or cancel (No) the upload.
23
7.2
SecureFX has the option to resume broken or canceled downloads, please ensure that the file you
resume is the exact same file and not another version with the same name. No checks are
performed to guarantee this.
If the file is already partly uploaded or downloaded you will the option to resume the up- or download.
Click on Resume to do so.
7.3
Delete files
Delete files by selecting them and hit the Delete key or click on the X button
7.4
In order to transfer multiple files concurrently (to reduce transfer time, improve performance over
high latency links) you need to open as many sessions to the same server as you want to transfer
files concurrently.
The SDTS server will allow to connect more then one session per user. It is advised to use no more
then 4 concurrent sessions at a given time as more then 4 sessions in general will not improve file
transfer times.
In the example below we have opened 2 sessions. You can now drag & Drop one file from or to each
session from or to the local window.
24
25
Please note that each separate window to the same server will display different information as the
windows are not automatically refreshed.
In order ro update the windows you need to select the windows one by one and click the refresh
button
7.5
SecureFX behaviour
7.5.1
Download option
The download option will not download the file to the directory in the local window if you have
entered a download directory under Global options/Session options.
in that case the download directory will be used.
26
7.5.2
SecureFX only supports Drag & Drop from an Explorer window to SecureFX. You cannot drag & drop
files from SecureFX to an Explorer window.
27
7.5.3
SecureFX will recognise certain file-types and transfer them in either ASCII or Binary mode.
If you do not know you should use Binary mode. There could however be exceptions.
How SecureFX handles a specific file type is configured in the Global options under the Options
menu:
28
Options are:
ASCII
Binary
SecureFX will display the following prompt if it does not know the file type:
Open it will download the file and open it in (in this case) Powerpoint.
Save it to disk will save the file locally
7.5.4
Session disconnect
Due to timeout or manual session disconnect you may loose your connection to the SDTS server. If
the connection window in SecureFX is still open it will try and reconnect. You may be prompted with
the following:
If you Drag & Drop files the Transfer status may indicate that it is Establishing a connection to the
SDTS server (bottom line):
29
7.5.5
Closing SecureFX
When closing SecureFX you may be prompted if you want to close the open sessions, please be
aware you will get one prompt per open session:
If you have 2 sessions open to the SDTS EMA server you will be see this prompt twice
30
Contact us
Jason Jennings
Connectivity Services
T +61 3 9288 5909
E jjennings@kpmg.com.au
www.kpmg.com