Easy Pass to Secure File Transfer
TM
»User: »Password:   Remember Me? 
Sysax Product Forums / Sysax Multi Server / Bugs and Feature Requests / Importing SSL Certificate for FTPS
Posted:  08 Nov 2008 11:27
I am using FileZilla 2.2.29 on a Windows XP Pro SP2 system. I don't see any logging options for this, nor do I see anything that looks like a log file. The FileZilla status screen contains the following.
Error: Can't establish SSL connection Error: Disconnected from server Error: Unable to connect!
I also checked the Windows Event Logs on the Client, but nothing appears there.
Is there a better FTPS client for windows you could recommend that would
provide logging?
Here are the FTP Server logs from your product.

2/2/2007 12:7:33 NOTE: Connection from 192.168.100.119 disconnected
2/2/2007 12:7:38 NOTE: Connection from 192.168.100.119 disconnected
2/2/2007 12:7:44 NOTE: Connection from 192.168.100.119 disconnected
2/2/2007 12:7:50 NOTE: Connection from 192.168.100.119 disconnected
2/2/2007 12:7:56 NOTE: Connection from 192.168.100.119 disconnected
2/2/2007 12:8:2 NOTE: Connection from 192.168.100.119 disconnected

Nothing in the Server's Windows event logs.
Posted:  08 Nov 2008 11:30
Did you get any message from the connecting client as to why the connection was refused? Do you have
a session log from the client that you can send us?
Posted:  08 Nov 2008 11:33   Last Edited By: sysaxsupport
I am currently evaluating version 4.02 of your Multi Server product, on a Windows 2003 server.
I have been unsuccessful in importing the IIS certificate into Multi Server. If I create a self-signed certificate, using your utility, I can establish a connection. When I try to use my registed certificate, the ftps client receives the following message "Error: Can't establish SSL connection".
I've downloaded and installed openssl and followed the steps to convert my x509 Base64 .cer file to a .pem format. In Multi Server, when I choose this certificate, it appears to accept and install the .pem file. However I am unable to establish a ftps connection. FTP server option running is FTPS (explicit on port 21). The Certificate that I am attempting to use is the FQDN of the server,( not www.servername ).
The certificate is configured for all purposes. I'm sure that I'm missing a simple step.
Do you have a white-paper on installing a registered x509 certificate?

Executing script C:Program FilesSYSAXFTPAutomationscripts est.fscr
Script Engine: Line 1: Executing ftpconnectssl. Parameter(s):
"customertest" 21 "Administrator" (not displayed)
220- Sysax Multi Server Service (Version 4)
220 =20
AUTH TLS
234 AUTH command accepted. Setting up SSL/TLS connection
USER Administrator
Script Engine: Line 1: Executing ftpdisconnect
QUIT
Script Engine: Script did not complete correctly.
Script completed with an exit code of 1


Openssl version 0.9.8d 28 Sep 2006
I'll pull down your automation client, run the command below and forward on the results.
Thanks,
Posted:  08 Nov 2008 11:38   Last Edited By: sysaxsupport
Did you try exporting in PFX format
Posted:  08 Nov 2008 11:52   Last Edited By: sysaxsupport
Your suggestion to export my cert in pfx format, and then convert to pem worked like a charm.
Thanks for your help.
I'm moving forward with my end-user testing now.I'm definitely going to purchase one copy of your server product for the short term. If things work out as well as I hope, I have two more locations that
each have a ftp server that I'd like to secure.
When I'm using the NT integrated user accounts, where exactly is the
user's ftp server?
In this mode, I don't see any place to make these settings.

When performing FTP with windows user accounts, the user's home folder should be the user's profile folder (eg. C:\Documents and Settings\username). File and folder access permissions are controlled by the permissions for the corresponding windows user account. In this case and it is not possible to have fine control over folder and file access as in custom accounts.
 

Copyright © 2008 Codeorigin, LLC - All Rights Reserved.
XML RSS 2.0 XML Atom 1.0