System Details

How to get here

This page displays system details for WS_FTP Server. These settings are server-wide and affect all hosts.

  • System ID. The unique identifying number for this server is listed here. This number differentiates which server logged an event in a clustered environment.
  • Install folder. This is the folder in which the WS_FTP Server program files are installed.
    Note: The only method of changing this directory is uninstalling WS_FTP Server and re-installing in a new directory.
  • System folder. Enter or select the folder under which folders for each new host appear.
    Note: If you change the System directory, the location of existing host directories will not be changed. The change only affects new hosts.
  • Host separator. The character used to separate the username from the host name when users log in to the WS_FTP Server or the WS_FTP Server Manager. You can use any single character as the host separator.
  • Default host. Select the host you want to serve as the default host when logging into the WS_FTP Manager, and when logging into the WS_FTP Server Web Transfer Client, which is an add-on module. If you log in as a user that belongs to this host, you only have to enter the username and password; the host separator and host name are not required.
    Note: The default host above is only used when you log in to the WS_FTP Server Manager, and when logging into the WS_FTP Server Web Transfer Client. This default host has no relationship to the default host that is specified on each listener.
  • Date format. Sets the date display format for all of the WS_FTP Server Manager pages that display the date, and sets the format for text boxes where you can enter a date. Once you select a date format, the WS_FTP Server Manager will verify a date that you enter against the selected format.
  • Cryptographic Module. Click the Operate in FIPS 140-2 mode checkbox to enable FIPS-validated cryptography mode. (All connections will transact using FIPS-validated cryptography. See Using WS_FTP in FIPS Mode for details.) Click the Disable CBC Mode Ciphers checkbox to disable all CBC mode ciphers across all interfaces, and filter out all 3DES ciphers. Some organizations may require this for PCI compliance. The 3DES ciphers are only available if SSLv3 is enabled. All 3DES ciphers are filtered out when Disable CBC Mode Ciphers is checked on the System Details page.
    Note: If you select FIPS mode or Disable CBC Mode Cipshers, the list of Listener algorithms is ignored in favor of a fixed set. To restrict WS_FTP Server to FIPS-validated connections, you need to change the settings as described in the following procedure.

FIPS-related security settings:

  1. Shut off all insecure listeners (with only FTPS and SFTP listeners remaining).
  2. In the Server Manager, select Server > Listeners. The Listeners page opens.
  3. Click the IP address of the listener you want to open. The Edit Listener page opens.
  4. Click Edit SSL Settings. The Listener Encryption Settings page opens.
    1. For SSL type, select SSL Enabled (or Implicit SSL).
    2. Select the appropriate SSL certificate. You may need to create one.
    3. For SSL security level, select Enable TLS Only.
    4. Click Save.
  5. Navigate to Host > Host Settings > SSL Settings.
    1. For Minimum SSL level, select 128 or 256.
    2. Select Force SSL.
    3. Click Save.
      Note: These settings are cached by WS_FTP Server for up to ninety seconds. Changes made to these settings are not recognized until the services are restarted or the cache expires.