Search

GlobalSCAPE Knowledge Base

Disallow (Shut Off) Basic Authentication for HTTPS

Karla Marsh
EFT Express (SMB) & Enterprise

THE INFORMATION IN THIS ARTICLE APPLIES TO:

  • EFT v7.4.11 and later

DISCUSSION

The Web Transfer Client for EFT uses form-based authentication. Basic auth is provided to remain compliant with RFC 7617. As added assurance that best practices are followed, EFT administrators can force use of HTTPS for all connections.

You can disallow (shut off) basic authentication for HTTPS using the registry setting below.

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\GlobalSCAPE Inc.\EFT Server 7.4\

Type: BOOL

Value name: DisableHTTPBasicAuthentication

Values: Default = 0; 1 = disable basic authentication for HTTPS.

Restart Required: Yes

Details
Last Modified: 6 Months Ago
Last Modified By: kmarsh
Type: HOTFIX
Article not rated yet.
Article has been viewed 2.5K times.
Options
Also In This Category
Tags