![]() The SSL handshake is the procedure at the start of an HTTPS file transfer session wherein a web browser and the HTTPS server agree which set of algorithms (collectively known as cipher suites) should be used during the session.Īn SSL handshake culminates with the creation of a session key, which is a symmetric key used for encrypting whatever files are uploaded and downloaded during the HTTPS file transfer session. The public key and private key, on the other hand, will be used to secure certain pieces of data that are exchanged during what is known as the SSL Handshake. The user can still disregard that warning and proceed to login to your server but at least he would have already been notified of the risks. Without that signature, the browser would alert the user like this: In order for the browser to trust your server's digital certificate, the certificate should bear a Certificate Authority's (CA's) digital signature. The digital certificate will serve as your server's credentials and will help the user's browser determine whether your HTTPS server can be trusted or not. When a user's Web browser first connects to your server via HTTPS, your server will look up which server key was assigned for the service and then send the corresponding digital certificate and public key back to the browser. Here's how these three elements come into play. And in the context of the Key Manager, the Server Key actually consists of three elements: a private key, a digital certificate and a public key. Preparing Server Keysīefore we replace example_rsa, let me explain first what this key is for. Let me now show you where you can do that. You would want to replace that with something representative of your organization and, of course, more secure. However, be advised that it's by no means suitable for a production environment, especially one facing the web.įirst of all, the server key employed by default is only the example_rsa key that came with your JSCAPE MFT Server installation. You should then see your newly added HTTP/S service in your list of services.Īt this point, you would now have an operational HTTPS file transfer service, which you can try using in a test environment. In the next screen, tick both HTTP and HTTPS checkboxes, and then click the OK button. When the pop-up window appears, select HTTP/S from the drop-down list and then click OK. Navigate to the Services module and then click the Add button. Go to the Domains tab, select the domain where you want HTTPS to be activated, and then click the Edit button. Activate The HTTPS Service On Your Desired Domain That's why you need to proceed to step 2. ![]() They won't be able to login to the server. They'll even be able to enter values into the fields but that's about it. ![]() Note: If you just configure the server up to this point, your end users will be able to connect to it and see the login screen. When you're done, go to the bottom-right corner of that page and click the Apply button. JSCAPE MFT Server will automatically redirect the browser to your HTTPS service. So, for example, if a user enters either of the following into their browser:ĭ - in which case most browsers would just automatically append to the beginning. The settings we made will allow end users to enter your server's host name or IP address as normal (usually via HTTP) and then redirect them to your HTTPS connection without them noticing. To do that, scroll down to the Connections panel and then tick the checkbox labeled Redirect HTTP requests to HTTPS. Of course, since we want our users to connect to the secure HTTPS file sharing service (and not the unencrypted HTTP service), we have to make sure they are redirected to the HTTPS service even if they initially attempt to connect via HTTP. Why do we have to tick the HTTP on host checkbox too? Because if we leave that unchecked, end users who attempt to connect via HTTP (which is usually the default action on most browsers) will get an " Unable to connect" error. In the Web tab, tick both the HTTP on host and HTTPS on host checkboxes. Launch your JSCAPE MFT Server Manager and go to the Settings menu
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |