|
|
| |
New in VShell
3.0
|
WIN |
UNIX |
 |
| Expanded triggers capability |
New triggers for Login, Logout, File Rename, File Delete, Folder Create, Folder Rename, and Folder Delete events to increase monitoring and automation capability. |
|
|
| SCP (RCP over SSH2) file transfers |
SCP file transfers using clients operating as a secure
RCP replacement that forwards a remote execution request to SCP
over SSH2 (not SFTP). Honors settings for logging, ACLs, and
SFTP roots. |
|
|
| VShellConfig export and import |
Import and export configuration using VShellConfig to save time when backing up or moving VShell. Make backups of existing
configurations and move configurations between machines. |
|
|
| Native 64-bit version for Microsoft Windows |
Native 64-bit (x64) version for Microsoft Windows. Enables
public-key-only authentication on the 64-bit platform |
|
|
| Multiple host keys |
VShell server can support one host key
per algorithm type. |
|
|
| Listen Addresses option |
A new page for the VShell Control Pane allows you
to edit a list of addresses and ports that VShell will listen on. |
|
|
| Control panel setting for maximum connections |
Adding the
maximum connections per user to the Control Panel makes it easier to
limit the number of concurrent times a user can log on to VShell. |
|
|
| Option to automatically purge log files |
Automatic purging of log files after specified
number of days. |
|
|
| |
VShell editions match your needs and budget
|
WIN |
UNIX |
|
VShell is
available in four editions designed to meet the needs of every
size network and organization. All VShell standard editions
offer the same features but allow you to control costs by deciding
how
many concurrent connections you need. The VShell Custom Server lets you select from a set of custom configurations.
|
| Starter Kits |
Available for all the three editions, combining VShell with SecureCRT® and SecureFX® clients.
|
|
|
| VShell Administrator Server |
Allows two concurrent client connections, and is designed primarily for remote system administration use.
|
|
|
| VShell Workgroup Server |
Allows ten concurrent connections, and is intended to serve the needs of a substantial group of users.
|
|
|
| VShell Enterprise
Server |
Supports an unrestricted
number of concurrent connections for a large user community.
|
|
|
| VShell Custom Server |
VShell Custom Server allows large customers to deploy VShell with custom configuration of certain options. For more information on
the VShell Custom server please contact VanDyke Software Sales
|
|
|
| |
VShell Secure Shell
Server Key Features
|
WIN |
UNIX |
|
| Multiple SFTP
root directories |
Allows you to provide discretionary file system access to users and groups beyond their home directories.
|
|
|
| Access control |
Grant discretionary access to services by authorized users or groups. On an individual or group basis, allow or deny access to VShell features such as shell, SFTP, and port forwarding.
|
|
|
| VShell triggers |
Triggers allow automated actions saving time and resources following SFTP uploads and downloads. After excessive failed logon attempts, initiate protective or corrective measures if it looks like a security problem is developing.
|
|
|
| Trusted authentication methods |
Choose from a number of trusted
authentication mechanisms including public key, Kerberos, and X.509
digital certificates to create a much more secure two-factor authentication
strategy to control access to your network. (X.509 support is not
available for Mac OSX and FreeBSD.)
|
|
|
| RADIUS
server support for SecurID authentication |
VShell for Windows allows authentication
through RADIUS servers using SecurID or other methods. RADIUS
support is implemented through keyboard-interactive authentication.
|
|
|
| Jail shell |
Two configuration options,
ChrootUsers and ChrootGroups, combine to restrict users and members
of groups to their home directory with any shell, SFTP, or subsystem
operation.
|
|
|
| Command-line utilities |
Reduce human error and automate
routine tasks using command-line utilities: vsftp, interactive
SFTP command-line utility providing quick, easy, and secure file
transfer
operations; vsh, command-line shell utility; vcp, command-line
file transfer utility; and vkeygen, public/private key generator
utility.
|
|
|
Back
to Top
| |
Secure Electronic Data Exchange with Secure File Transfer
|
WIN |
UNIX |
|
| Multiple SFTP root directories |
Allows you to provide discretionary file system access to users and groups beyond their home directories.
|
|
|
| Automated secure file
transfers |
Use vcp, vsftp, vsh, or any
SFTP or SCP2 clients to automate and schedule unattended file
transfers.
|
|
|
| DMZ access |
Secure access to files where
both those within the company and those outside the company can
upload and download files.
|
|
|
| Business-to-business solutions |
Create a secure cross-platform
file sharing infrastructure for exchanging work products with customers
and partners.
|
|
|
Back
to Top
| |
Fine-Tuned Configuration
|
WIN |
UNIX |
|
| Multiple SFTP root directories |
Allows you to provide discretionary file system access to users and groups beyond their home directories.
|
|
|
| Allowed/required list for authentication methods |
VShell can now specify which
authentication methods are allowed or required when users connect
to your server.
|
|
|
| Access control |
Grant discretionary access to services by authorized users or groups. On an individual or group basis, allow or deny access to VShell features such as shell, SFTP, and port forwarding.
|
|
|
| Authentication banner support |
Display legal text when clients connect.
|
|
|
| Filters |
Configure which hosts can connect by IP address, hostname, or netmask; configure which port-forwarding requests are allowed.
|
|
|
| Log file |
Select message events that will be logged in the VShell log file (Errors, Warnings, Informational, Connection, Authentication, Forwarding, SFTP, and Debug).
|
|
|
| Windows Control Panel |
Configure VShell for maximum security and still have convenient remote access.
|
|
|
| General server configuration |
Configure general server options like listening port, keepalives, idle timeout period, and command shell. |
|
|
| Host key management |
Display the server's host key in a fingerprint format for easier verification.
|
|
|
| Ciphers, MACs, and compression |
Encrypt the data using the selected cipher algorithms, ensure data integrity with the selected MACs, and improve transfer speed over slower network links using compression.
|
|
|
| Authentication setting |
Configure authentication options by limiting the number of failed attempts, setting a timeout period for completed authentications, and setting the required authentication methods.
|
|
|
| VShellConfig |
A Windows command-line
utility that allows editing of SFTP roots and access control
lists (ACLs).
|
|
|
Back
to Top
| |
Secure Remote Administration
with Secure Command Shell
|
WIN |
UNIX |
|
| Accomplish common administrative
tasks |
With existing secure shell utilities, add new users to the network, check print queues, and control services.
|
|
|
| Edit files remotely |
Use text oriented editors (e.g.,
EDIT and vi) to edit files on the remote system.
|
|
|
| Start unattended batch
jobs |
VShell's support for remote
command execution allows unattended jobs to be started with any
Secure Shell (SSH2) client.
|
|
|
| Remotely and securely
administer servers |
Securely access and administer
web, mail, database, and application servers.
|
|
|
| Option to
specify alternative command shells |
Use cmd.exe or
other popular shells available like Bash, Korn and C Shell.
|
|
|
| VT220 emulation |
Superior screen rendering and
keyboard control of command shells and other applications.
|
|
|
| Enforce end-user scrollback
mode |
Force "TTY mode" from
the server so clients automatically get scrollback.
|
|
|
Back
to Top
| |
Strong Security with Secure Shell (SSH2)
|
WIN |
UNIX |
|
| SSH2 support |
Provide secure cross-platform flexibility when connecting from a number of remote clients for shell, port forwarding, or secure file transfer.
|
|
|
| User authentication |
Control access to servers and networks using existing usernames and passwords combined with a choice of other enterprise-wide authentication methods.
|
|
|
| Data encryption |
Choose from a wide selection of ciphers including 3DES, Twofish, Blowfish, AES-128, AES-192, and AES-256 to ensure strong data encryption. RSA and DSA public-key authentications are also supported.
|
|
|
| Data integrity |
Guarantee the integrity of each message sent over the network (preventing replay
or insertion attacks).
|
|
|
| Host identity verification |
Unique server host key proves its identity to a client as a "known" host (preventing a man-in-the-middle attack).
|
|
|
| Secure Shell client compatibility |
Connect with a wide variety of Secure Shell clients including: SecureCRT, OpenSSH, WRQ, SSH Communications, and other standard SSH2 clients.
|
|
|
| Port forwarding |
Forward TCP/IP ports to securely
access standard data traffic like POP3 and SMTP over the internet
and intranets through a single, secure, multiplexed channel.
|
|
|
| Public key-only authentication |
Automate unattended file transfers and batch jobs. Can also streamline logon process for users.
|
|
|
| Public Key Assistant support |
Make it possible for users to upload their own public keys with a click of a button.
|
|
|
| Agent |
Agent forwarding support allows
transparent authentication to multiple linked servers after the
first Secure Shell server has authenticated the user.
|
|
|
| OpenSSH public-key format support |
Eliminates the requirement that users with OpenSSH clients convert keys and maintain two formats.
|
|
|
| Kerberos v5 authentication via GSSAPI |
As an emerging standard, this adds to your foundation for interoperability while enhancing the security of enterprise-wide network authentication.
|
|
|
| X.509 certificate authentication method |
Comply with organization-wide PKI policies designed to protect critical information and overcome identity theft and electronic fraud.
|
|
|
| X.509 certificate mapping |
Certificate mapping associates users with digital certificates without requiring the certificates to be stored locally.
|
|
|
| X.509 certificate checking |
Certificate checking allows revocation checking at various levels of the chain of certification authorities.
|
|
|
| Unattended first-time host key generation |
Option to generate first-time host keys automatically following installation, simplifying enterprise deployments.
|
|
|
| Additional key exchange method |
Diffie-Hellman Group Exchange (GEX) allows the server to send the client variable data with which to perform Diffie-Hellman key exchange.
|
|
|
| Keyboard interactive |
Keyboard-interactive authentication allows you to customize authentication using PAM plugins. PAM plugins can, for example, enable password expiration enforcement policies or the use of SecurID cards.
|
|
|
| FIPS
140-2 support for Windows |
VShell for Windows uses a FIPS
140-2 validated cryptographic library. VShell can be installed
in "FIPS Mode", which will use the validated cryptographic
library and only allow FIPS-approved algorithms. If you need
a FIPS 140-2 compliant solution for UNIX please let us know.
|
|
|
| Deny
Host file |
This
feature has been added to reduce the impact of a dictionary
attack. VShell for Windows now tracks failed authentications
by IP address and can add these addresses to the Deny Host
file after the specified threshold has been reached. Once
an IP address has been added to the Deny Hosts file, VShell
will not allow future connections from that address. |
|
|
Back
to Top
| |
Server Application
|
WIN |
UNIX |
|
| IPv6
technologies |
For strategic organizations moving beyond
outdated networks
incapable of handling sophisticated network traffic. WIN & UNIX. (If you
need IPv6 support for AIX 4.3 or HP-UX 11 - let us know).
|
|
|
| Message of the day |
Message of the day allows communication
of important new information at logon.
|
|
|
| Remote-command execution |
Kick off unattended batch files
or scripts using remote command execution.
|
|
|
| Idle timeout option |
Allows timing out sessions
after a configurable idle time.
|
|
|
| Pass-through printing
support |
Pass-through printing allows
a remote host program to print on the printer attached to your
local terminal (or PC running terminal emulation).
|
|
|
| Windows command-line
utilities |
In order to check
who is logged onto VShell, the command-line utility Who.exe is
included with VShell. The command-line utility Whoami.exe is also
included.
|
|
|
| Mouse support |
VShell provides mouse support
for character-based applications running in a command window.
|
|
|
| Local or domain user logon |
Logon to a local NT machine
or the network domain.
|
|
|
Back
to Top
| |
Evaluation, Updates,
Support
|
WIN |
UNIX |
|
| Try before you buy free evaluation copy |
Official software
releases can be downloaded and evaluated for 30 days without charge.
|
|
|
| Open beta software releases |
Beta software releases can
be downloaded and evaluated for 30 days without charge.
|
|
|
| One-year software updates |
All registered users receive
a year of software updates.
|
|
|
| One-year technical support |
All registered users receive
a year of technical support by e-mail from VanDyke Support.
|
|
|
| Software maintenance available |
Software updates and support are available after the first year.
|
|
|
Back
to Top
| |
Section 508 Compliance
|
WIN |
UNIX |
|
| Rehabilitation
Act Section 508 compliance |
In 1998, Congress
amended the Rehabilitation Act to require Federal agencies to make
their electronic and information technology accessible to people
with disabilities. Inaccessible technology interferes with an individual's
ability to obtain and use information quickly and easily. Section
508 was enacted to eliminate barriers in information technology,
to make available new opportunities for people with disabilities,
and to encourage development of technologies that will help achieve
these goals. VShell Server has been registered as a compliant
product at the Section
508 database. Voluntary Product Accessibility
Template (VPAT) documents detailing this compliance are available
online in Microsoft Word
format.
VShell Server
VPAT |
|
|
Back
to Top
| |
|
VShell, SecureCRT, and SecureFX are registered trademarks of VanDyke Software, Inc. in the United States and/or other countries. All other trademarks or registered trademarks are the property of their respective owners.
|
|
