Authentication Types

EFT Server supports the following database types for authenticating users:

GlobalSCAPE Authentication does not rely on outside sources for user information. All information in the database is:
- Protected from the operating system
- Contained within the .aud file located in EFT Server installation folder (e.g., C:\Documents and Settings\All Users\Application Data\GlobalSCAPE\EFT Server Enterprise: On Windows 2008, Application Data files for all users are in a hidden folder named %systemroot%\ProgramData instead of under Documents and Settings\All Users\Application Data.)
- The path to the .aud file is defined in ftp.cfg. If you change the path to either of those files, you must redefine the path to the .aud file on the Site's General tab User auth manager configuration.
- Encrypted and can only be modified through the administration interface.
Windows Active Directory (NTLM/AD) Authentication. Using this method, EFT Server assigns permissions to users from the NT user database on the system that is running EFT Server. EFT Server queries the Primary Domain Controller (PDC) for your domain and adds all domain users to the Settings Template tree.
LDAP (Lightweight Directory Access Protocol) is a protocol for accessing information directories on an LDAP Server.
ODBC Authentication allows all users in an external ODBC database to have access to EFT Server.

Once a Site has been created, you cannot change the authentication method.

When the High Security module is activated, RADIUS is supported on each GlobalSCAPE, LDAP, or ODBC-authentication Site. (RADIUS is available in EFT Server Enterprise only)

EFT Server Site Files

When you create a Site, EFT Server creates a file called FTP.cfg. FTP.cfg contains a list of all of the users defined on a Site, as well as all of the users' personal information, such as AS2 settings, enabled protocols, e-mail address, home folder, etc. The user lists are organized in the file by Site, so you can have multiple sites with the same account name. Depending on the type of authentication chosen, EFT Server also creates an .aud file for the Site (e.g., MySite.aud). The .aud file is an authentication database that contains information that is not supported by the chosen authentication method, but is used by EFT Server. For example, LDAP authentication does not use groups, so the .aud file for LDAP contains the list of groups and distribution of users between these groups that are used in EFT Server. Active Directory authentication uses the methods and properties provided by the AD server, therefore EFT Server does not need an .aud file for AD-authenticated Sites.

This online help file is for EFT Server version 6.3.x. For other versions of EFT Server, please refer to http://help.globalscape.com/help/index.html.

(If the Index and Contents are hidden, click Show Contents pane in the top left corner of this topic.)

If this help topic did not help you, search the Knowledgebase or pose your question in the GlobalSCAPE User Forum.

For the most up-to-date information, to view version history, updates, and activation instructions; or to download a PDF of this user guide, visit the Support Center at http://www.globalscape.com/support.

Leave compliments or complaints regarding the help in the User Forum. At a minimum, please provide the topic title and why you needed help.

For information about GlobalSCAPE, visit www.globalscape.com, subscribe to our Secure Info Exchange blog, or follow us on Twitter.

Last modified: 20-Dec-11 at 15:59:53