Configure Remote Administration

To configure EFT for remote administration

1. Launch the administration interface on EFT computer and connect to EFT you want to configure for remote administration. (You cannot setup remote administration remotely.)

2. In the right pane, click the Administration tab.

3. In the Server administrator listening IP box, specify the IP address that is allowed to connect remotely. You can select a specific IP address that is defined on the computer on which EFT is installed or All Incoming IP addresses. (For command-line login, the EFT administrator listening IP address must be set to a specific IP address, not All Incoming.)

• For remote administration through DMZ Gateway, be sure to use the IP address of DMZ Gateway, not EFT.

4. In the Port box, specify the port on which EFT listens for connections. The default port is 1100. For security, you should use a different port other than the default.

5. Select the Allow remote administration check box. A warning message appears advising you to connect over SSL for more secure administration.

If you attempt to allow remote administration on a high security-enabled Site, a message appears to warn you that this setting violates PCI DSS, and allows you to continue with reason or disable the feature.

6. Click Yes to set up secure administration or No to administer the server over a clear (not secure) connection.

7. To require SSL for remote connections, click the Require SSL for remote administration check box, and then click Configure. Refer to Assigning a Certificate for details of configuring SSL.

8. Click Apply to save the changes on EFT.

9. Close the administration interface. Make sure that the EFT service is still running, then configure the remote administration interface using the procedure below.

To configure the remote administration interface

1. Launch the administration interface on the remote computer.

2. Click the Server tab.

3. Click the group to which you want to add the remote server. (Click File > New Group if you need to define a new group.)

4. Right-click the group, then click New Server. The Login wizard New Administrator Connection page appears.

5. Click A remote computer.

6. In the Label box, type the name of EFT to which you want to connect. You can call it anything you want; it has nothing to do with EFT's computer name.

7. In the Host address box, type the IP address of EFT computer.

8. In the Port box, type the port number used by EFT.

9. Click Next. The EFT Administrator Login page appears.

10. Click A remote computer, then click its name (the label you gave EFT in step 6) in the box.

11. In the EFT administrator credentials area, provide your Username and Password, and then click Connect.

If SSL is required for remote administration, a Server Certificate dialog box appears.

12. Accept or reject the SSL certificate from the remote EFT by clicking Trust Once (just for this session), Trust Always (for this and future connections, provided the SSL certificate does not change), or Reject (do not accept the certificate and do not connect to the server). (To undo a trust-always certificate, delete the appropriate trusted certificate file(s), stored in the %AppData% directory as Cert_for_<ip>.crt.)

• If connection was successful, the remote Server appears in the tree.

• If connection was not successful, verify the IP address and port on which EFT listens for connections, and ensure that SSL is properly configured on EFT, if used.