THE INFORMATION IN THIS ARTICLE APPLIES TO:<
- EFT Server, v5.1 and later
Does EFT Server support certificate chaining?
A certificate chain is used to establish a chain of trust from a peer certificate to a trusted CA certificate. Each certificate is verified through the use of another certificate, creating a chain of certificates that ends with the root certificate. The issuer of a certificate is called a certification authority (CA). The owner of the root certificate is the root certification authority. The last certificate in the chain is usually a self-signed certificate.
EFT Server v5.1 and later supports full certificate chains, which is a single file with a combination of all certificates in the chain. Usually, you will receive this file from a signing authority. Otherwise, you can create the chain manually, as described in Knowledgebase article #10373 or ask the GlobalSCAPE Technical Support team to create one for you.
(A certificate chain that is created using OpenSSL is not a format supported in current versions of Java and will cause the Web Transfer Client (WTC) to be presented with an unverified certificate.)