An FTP connection is configured using the FTP connector to establish access with a specific FTP server. Once a connection is established, you can configure one or more FTP activities associated with that connection to use as a source or target within an operation or script.
Creating or Editing an FTP Connection
To configure a new FTP connection, within the Connectors filter, click the FTP connector block:
To configure an existing FTP connection, within the Endpoints filter, double-click the FTP connection block:
This will open a configuration screen for the FTP connection, covered next.
Configuring an FTP Connection
Configuration of an FTP connection includes these fields:
- Endpoint Name: Enter a name to use to identify the FTP connection. The name must be unique for each FTP connection and must not contain forward slashes (
/) or colons (
:). As a specific connection and its activities are referred to as an endpoint, this name is also used to identify the FTP endpoint.
Host: Enter a valid FTP server location, such as
- Use Default Port: Keep this checkbox selected to use the default port. The default port depends on the selected security option:
- SFTP: 22
- Unsecure FTP: 21
- Explicit FTPS: 21
- Implicit FTPS: 990
- Port: Enter a custom port only if the FTP server is listening to a non-default port. This field will be enabled only if the Use Default Port box is not selected.
- Security Options: Use the dropdown to select from these security options:
- SFTP: This option uses the SFTP protocol and should be used only if you are connecting to an SFTP server. Public and private key files for SFTP can be configured in the SSH section of the Private Agent configuration file, as described in Connecting to SFTP with SSH Keys. Note that SFTP and FTP/FTPS are different protocols and use different default ports.
Unsecure FTP: This option uses unencrypted FTP and is not secure because passwords are sent in clear text over the network.WARNING: This option should be used only if the environment is safe.
Explicit FTPS: This option uses explicit FTP with SSL, requiring the FTP client to request security information before a file transfer begins. When this option is selected, additional fields to set SSL Options and choose the Authentication Mode become available (covered next).
Implicit FTPS: This option uses implicit FTPS (implicit FTP with TLS/SSL), requiring a TLS/SSL connection prior to file transfer.
SSL Options: When Explicit FTPS is selected, use the dropdown to select one of these options:
- Try SSL: This tries to initiate a TLS/SSL-encrypted transfer. If that fails, non-encrypted FTP will be used.
- Require TLS/SSL for control connection: With this option, the initial FTP control connection is encrypted using TLS/SSL to ensure that the password exchange is encrypted. The transfer itself will not be encrypted but at least the password is not sent in clear text. If the data itself is not sensitive or is already encrypted, you can use this option. If the server does not support FTPS, the transfer will fail.
- Require TLS/SSL for all data transfer: Selected by default, this option requires both the control connection and the data connection to be encrypted using TLS/SSL. If the server does not support SSL, the transfer will fail.
- Authentication Mode: When Explicit FTPS is selected, use the dropdown to select one of these options:
- Prefer TLS Authentication: Selected by default, this option specifies that TLS authentication is preferred.
- Prefer SSL Authentication: This option specifies that SSL authentication is preferred.
- Proxy Settings: If you want to specify a custom proxy, you can do so here. Use the dropdown to select one of these options:
- Disable: Proxy settings are disabled for this specific source, bypassing the Private Agent proxy configuration if one exists.
- Default: Proxy settings are enabled, using the Private Agent proxy configuration if one exists. If proxy settings are not specified in the agent configuration, then the Default setting has the same result as the Disable setting.
- Custom: Proxy settings are enabled for this specific source using custom information provided here. This option bypasses the Private Agent proxy configuration if one exists, and instead uses custom proxy information. When Custom is selected, additional fields become available for you to configure. For details on these fields, see Enabling Proxy for Private Agents.
Username & Password: Enter a username and password (if applicable) that will allow access to the FTP server. You can leave these fields blank if no username or password is required.
Optional Settings: Click to expand additional optional settings:
Passive Mode: Keep this checkbox selected to use the FTP server's "PASV" method to retrieve files. When this option is enabled, the agent will open a control connection to the FTP server, tell the FTP server to expect a second connection, and then open the data connection to the FTP server itself on a randomly chosen high-numbered port. This works with most firewalls unless the firewall restricts outgoing connections on high-numbered ports.
Transfer Timeout: Specify the number of seconds after which an FTP transfer will time out. By default, this number is 14,400 seconds, or 4 hours. Entering a value in this field will override the default timeout value.
Test: Click this button to verify the connection. The server will check only that the specified directory exists and not that the specified user has write permission to the directory.
- Save Changes: Click this button to save and close the connection configuration.
- Discard Changes: After making changes to a new or existing configuration, click Discard Changes to close the configuration without saving. A message will ask you to confirm that you want to discard changes.
- Delete: After opening an existing connection configuration, click Delete to permanently delete the connection from the project and close the configuration (see Component Dependencies, Deletion, and Removal).
After configuring an FTP connection, you can configure one or more FTP Read or Write activities associated with that connection to use as a source or target within an operation or script. For more information, see these activities:
Last updated: Mar 05, 2020
- No labels