Enabling FTPS and HTTPS (SSL) on the Site

Specify SSL versions and ciphers before enabling SSL connections. SSL must first be enabled on EFT and Site, then can be enabled in the Settings Template and user. (See also Configuring SSL on the Server.)

If you require certificates from connecting clients before they can connect, then their certificate must be in the Trusted Certificates Database or signed by a certificate in the Trusted Certificate Database.

• If you are using SSL authentication for accounts that need to send AS2 transfers, leave it at the default password authentication, not certificate authentication.

• EFT does not support SSL Certificate Private Keys without passphrases.

To enable SSL

1. In the administration interface, connect to EFT and click the Server tab.

2. On the Server tab, select the Site you want to configure.

3. In the right pane, select the Connections tab.

4. In the Listener Settings area, select the applicable check boxes (FTPS, HTTPS, and/or AS2).

5. In the SSL certificate settings area, click Configure. The SSL Certificate Settings dialog box appears.



6. Do one of the following:

   • To create a certificate, click Create and follow the prompts in the wizard. (Refer to Creating Certificates for details, if necessary.)

   • To use an existing certificate:

   1. In the Certificate box, type the path to the .crt file or click the folder icon to find and select it.

   2. In the Private key box, type the path to the .key file or click the folder icon to find and select it.

   3. In the Certificate passphrase and Confirm passphrase boxes, type and confirm the passphrase for the certificate pair.

7. Select the Require SSL certificates from connected clients check box, if you want connecting clients to use an SSL certificate.

8. Click OK to close the dialog box.

9. Click Apply to save the changes to EFT.