Server Configuration

Quick Overview

Starting with v2.0.6, there is a new settings page that allows users to configure all security aspects of the product.

The old procedure is still supported and details can be found here.

Step by step guide for enabling HTTPS

It is necessary to create an SSL/TLS certificate before activating HTTPS. First please check the How to Add SSL Certificate

  1. After adding your SSL certificate, navigate to Server configration tab
  1. Observe that it is now possible to enable HTTPS.
  1. Fill in the desired settings in the configuration window. Note that you can find more information about each field below.
NameDescription
HostDNS name or IP Address of the machine running the MetaDefender Managed File Transfer server. A DNS name will cause the server to listen on all network interfaces. An IP address will bind the server to that particular value. Note: this value is also used to generate links in email notifications.
PortThe port used to listen for connections.
Shared Memory SizeAllocated memory for rate limiting coordination.
RateMaximum allowed requests within a defined time period.
Burst SizeMaximum requests temporarily permitted during bursts.
No DelayThe no delay option is useful if you want to impose a rate limit without constraining the allowed spacing between requests
CertificateName of the certificate created on step 2.
TLS versionTLS protocol version to use. By default TLSv1.2 will be enabled if the operating system allows it. Connections with clients, that do not support at least one of the configured TLS versions, will fail
  1. Click UPDATE and wait to be redirected to the new URL.

Enforcing TLS version

If you're upgrading from a previous version or deliberately leave all TLS options unchecked that will instruct Managed File Transfer to default to the following:

  • for outbound connections (i.e requests made by Managed File Transfer) will use the operating system default TLS protocol
  • for inbound web requests Managed File Transfer's web server (NGINX) will default to TLS v1.2 or TLS v1.3

If you wish to enforce a particular TLS version please select only that option.

Type to search, ESC to discard
Type to search, ESC to discard
Type to search, ESC to discard