Configuring security

Secure Option options are:

  • Blank: No security.
  • FTPS: Adds support for cryptographic protocols.
  • SFTP: An additional means of securely transferring files across the Internet, providing the ability to have secure, efficient, file transfer. This feature requires an enterprise license.

FTPS

Select FTPS from the menu and click Configure to open the FTPS dialog box, where SSL-related settings are configured.

Note: TLS session resumption is disabled when a client certificate is used. When connecting to an FTP server when a client certificate is used, ensure TLS Session Resumption is not enabled on the FTP server side.
  • Encryption options are:
    • Implicit: This is implicit encryption, where the client connects to an implicitly secure port on the server.
    • Explicit: This is explicit encryption, where the client issues FTP commands to explicitly tell the server to go to secure mode. This is the default.
  • Mode

    Select the mode from the list.

  • SSL Protocol

    This is used to select the openSSL version from the list: All, TLSv1, TLSv1.1, TLSv1.2, and TLSv1.3. When you select an SSL protocol, a description of the selected protocol is shown in the comment field together with the Mode description.

  • SSL Cipher Suites

    Set ciphers in this field. If no cipher is set, then the default cipher suites are used. If this field is not set, then the default cipher suites are used.

    • Anonymous mode:

      server: !DEFAULT:HIGH:ADH

      Client: ALL

    • Non-anonymous mode:

      HIGH:RC4+RSA:+MD5:!DHE:!3DES:!EXP:!ADH:!AES256-SHA:!AES128-SHA:!EDH:!aNULL:!eNULL:!NULL

SFTP

Select the SFTP option from the menu and click Configure to open the SFTP dialog box, where SSL-related settings are configured.

The Private Key Password field is a password and is encrypted in NetConfig.

Note: 
  • An SFTP server using OpenSSH does not support the append option on SFTP uploads. When using the append option on SFTP uploads, the server must support this option.
  • libcurl does not do a complete ASCII conversion when doing ASCII transfers over FTP. This is a known limitation. libcurl sets the mode to ASCII and performs a standard transfer. Therefore, be careful when using ASCII mode in SFTP transfers.