Search

How to configure TLS (FTPS) in FileZilla FTP Server

We had already learned in a previous lesson that plain FTP is not secure. In case, if you had missed that lesson, click the following link to learn why plain-text FTP is not secure. In this lesson, we will learn how to secure FTP by adding TLS protection (FTPS) in FileZilla FTP Server and how to use FileZilla FTP Client with TLS protection (FTPS).

Follow below steps to configure TLS (FTPS) in FileZilla FTP Server and to use FileZilla FTP Client with TLS protection (FTPS)

Step 1 - Open FileZilla Server administrator interface. Enter host IP address, port number for administrative interface and password (if available). Click "Connect".

configure-ssl-tls-filezilla-ftp-server-01.jpg

Step 2 - FileZilla FTP Server administrative interface is now connected to the Server.

configure-ssl-tls-filezilla-ftp-server-02.jpg

Step 3 - Click "Edit" menu, and then "Settings" as shown below.

configure-ssl-tls-filezilla-ftp-server-03.jpg

Step 4 - You need a digital certificate to configure TLS in FileZilla FTP Server. If you are using this FTP Server in the internet, it is always better to purchase a trusted CA (Certificate Authority) signed digital certificate and configure TLS in FileZilla FTP Server. You may also generate a self-signed certificate and use that certificate to configure TLS in FileZilla FTP Server for internal use. In this example, we are going to generate a self-signed certificate and going to use that certificate to configure TLS (FTPS) in FileZilla FTP Server.

Select "FTP over TLS settings" and the click "Generate new certificate" to generate a self-signed digital certificate.

configure-ssl-tls-filezilla-ftp-server-04.jpg

Step 5 - Fill in your details in the form window, similar to below image. Note that higher key size provide much more security, with lesser performance.

configure-ssl-tls-filezilla-ftp-server-05.jpg

Step 6 - If the digital certificate is generated successfully, you will get a message similar to below image.

configure-ssl-tls-filezilla-ftp-server-06.jpg

Step 7 - "FTP over TLS settings" form fields will be filled automatically with the details of the newly generated self-signed digital signature. Check the checkbox "Enable FTP over TLS support (FTPS). If you want to disable plain-text FTP, check "Disallow plain unencrypted FTP" checkbox. Leave other settings as default. Click the following link, if you want to learn the difference between explicit FTP over TLS and implicit FTP over TLS.

configure-ssl-tls-filezilla-ftp-server-07.jpg

Step 8 - Now got to "Users" and select the user from the user list. Check "Force TLS for user login" checkbox.

With this step, the settings at the FileZilla Server for configuring TLS is over. Now, let us move to the FTP Client computer and start configuring FileZilla FTP Client for FTP over TLS (FTPS).

configure-ssl-tls-filezilla-ftp-server-08.jpg

Step 9 - Open FileZilla FTP Client.

configure-ssl-tls-filezilla-ftp-server-09.jpg

Step 10 - Click "File" menu and the "Site Manager", as shown below.

configure-ssl-tls-filezilla-ftp-server-10.jpg

Step 11 - Select "Require explicit FTP over TLS" or "Require implicit FTP over TLS" as shown in below image. Click the following link, if you want to learn the difference between explicit FTP over TLS and implicit FTP over TLS.

configure-ssl-tls-filezilla-ftp-server-11.jpg

Step 12 - I had selected "Require explicit FTP over TLS" for this demo example, as shown below. Enter the host IP address and the username. Click "Connect" button.

configure-ssl-tls-filezilla-ftp-server-12.jpg

Step 13 - Enter the password of the user entered in previous step. Click "OK" button.

configure-ssl-tls-filezilla-ftp-server-13.jpg

Step 14 - Digital certificate details will be shown as in below image. The warning "The server’s certificate is unknown" is because it is a self-signed certificate. It is okay for internal use. Check thoroughly the details in server digital certificate are correct or not. If you are convinced about the genuineness of the digital certificate, click "OK" button to connect FTP Server using TLS (FTPS).

configure-ssl-tls-filezilla-ftp-server-14.jpg

Step 15 - Now you are connected to the FTP Server using FTP over TLS (FTPS).

configure-ssl-tls-filezilla-ftp-server-15.jpg

Related Tutorials
What is FTP (File Transfer Protocol)
Important RFCs related with FTP
What is anonymous FTP
FTP Active vs Passive modes
Different types of FTP Client software
How to use FTP Active mode in FileZilla Client
FTP Commands
FTP Response Codes
Important commands in Windows command-line FTP client
How FTP works
Why FTP is not secure
Differences Between FTPS and SFTP
How to install FileZilla FTP Server
How to add a user in FileZilla FTP Server
How to add anonymous user account in FileZilla FTP Server
Difference between Require explicit FTP over TLS and Require implicit FTP over TLS
How to install FileZilla FTP Client
How to login to a FTP Server using FileZilla FTP Client
FileZilla Site Manager
How to login to a FTP Server using Windows Command-line FTP Client