Security protocol required (SECURE_FTP)
Use this setting to indicate whether use of a security protocol is optional or required.
This setting is applicable both when configuring an FTP client and an FTP server.
If configuring an FTP Server:
You have indicated the server is enabled for Transport Layer Security (TLS), or Kerberos, or both.
If you check the box labeled "Clients must use secure connections",
the server requires all clients to login using a security protocol.
- If the server is enabled for TLS only, clients must login using TLS.
- If the server is enabled for Kerberos only, clients must login using Kerberos.
- If the server is enabled for both TLS and Kerberos, clients must login using either TLS or Kerberos.
If you do not check the box labeled "Clients must use secure connections",
the server allows clients to login using a security protocol, but it is not required.
- If the server is enabled for TLS only, clients must either login using TLS, or no security mechanism.
- If the server is enabled for Kerberos only, clients must either login using Kerberos, or no security mechanism.
- If the server is enabled for both TLS and Kerberos, clients can login using TLS, Kerberos, or no security mechanism.
If configuring an FTP Client:
You have selected the security mechanism Transport Layer Security (TLS) or Kerberos.
The client logs in using the specified security mechanism.
- If the client's security mechanism is TLS, the client logs in using TLS.
- If the client's security mechanism is Kerberos, the client logs in using Kerberos.
If you check the box labeled "Clients must use secure connections",
the client logs in using the specified security mechanism. If the server does not support
the client's security mechanism, the login fails and the client cannot login.
If you do not check the box labeled "Clients must use secure connections",
the client logs in using the specified security mechanism. If the server does not support
the client's security mechanism, the server indicates this back to the client. The client then completes the login,
but without using a security mechanism.