User Connections to CA XCOM Gateway

Configuring and Administering CA XCOM Gateway › Configure CA XCOM Gateway › Configure SSL Communication › User Connections to CA XCOM Gateway

User Connections to CA XCOM Gateway

CA XCOM Gateway FTP users can request secure communication by using FTP client software that is capable of using the FTPS protocol and selecting that protocol, in place of FTP, when connecting to the CA XCOM Gateway FTP server. For more information, see the chapter "Using CA XCOM Gateway FTP."

To enable the use of the ftps and ftp protocols

Create a keystore or make one available for use by the Apache FTP Server.
If preferred, the JBOSS/Tomcat keystore referenced in the preceding section can be shared by both Tomcat and the Apache FTP Server.

After Apache FTP Server installation, update the FTPD-Gateway.xml file within the res/conf subdirectory of the Apache FTP Server installation folder.

To enable use of both the FTPS protocol and the FTP protocol, append the following two XML elements to the content of the FTPD-Gateway.xml file, setting the port number, file, and password attributes to the appropriate values:

Note: The two listener names must be different; one of them must be "default" and you can specify any name for the other one (in this example, "ftps" is the other name).

<listeners>
<nio-listener name="ftps" port="22" implicit-ssl="true">
<!-- Uncomment this section to configure explicit SSL support-->
  <ssl>
    <keystore file="C:/keystore.jks" password="changeit"/>
    <truststore file="C:/keystore.jks" password="changeit"/>
  </ssl>
</nio-listener>

<nio-listener name="default" port="21">
<!-- Uncomment this section to configure explicit SSL support-->
  <ssl>
    <keystore file="C:/keystore.jks" password="changeit"/>
    <truststore file="C:/keystore.jks" password="changeit"/>
  </ssl>-->
</nio-listener>
</listeners>

To enable the use of only one of FTPS and FTP, append only one of these XML elements to the content of the FTPD-Gateway.xml file, using "default" as the listener name, as follows:

<listeners>
<nio-listener name="default" port="port number" implicit-ssl="true">
<!-- Uncomment this section to configure explicit SSL support-->
  <ssl>
    <keystore file="C:/keystore.jks" password="changeit"/>
    <truststore file="C:/keystore.jks" password="changeit"/>
  </ssl>
</nio-listener>
</listeners>

Tell Technical Publications how we can improve this information