SSL certificate for FTPS, is it the same as for HTTPS?

ssl ssl-certificate ftps

Solution 1:

Both FTPS and HTTPS use the same basic kind of certificate (SSL server certificate). However, depending on your software you may need it in a different format, such as pkcs8 instead of x509. There are ways to convert between those formats (openssl command-line stuff, mostly). Odds are high that clients are using the same libraries for the SSL portions of FTPS as for HTTPS; same for the servers.

I'm not doing any FTPS, but I can tell you that we use the exact same formats of certificates for HTTPS, IMAPS, IMAP+TLS, SMTP+TLS, LDAPS, LDAP+TLS, etc...

Solution 2:

As far as I know you use exactly the same type of SSL certificate (a server certificate, actually). Of course the certificate will have to be issued for the correct hostname of your FTP server.

You don't need a certificate from a "root certification authority" (the ones that come preinstalled on every system) unless you need to use the established PKI to prove your identity - ie. if you use it for internal use and check the certificate fingerprint to prove identity, there's no need for an external CA, and the certificate will then enable you to encrypt traffic anyway.

Related

Best file sharing protocol for Windows clients?
Apache allowing HTTP access when should be redirected to HTTPS
glibc 2.7 on CentOS 5.5?
Synology and Active Directory - "no logon servers available"
Cannot install grub, segmentation fault, unable to identify filesystem, superfluous RAID member, found two disks with same index — Debian 7
Regex negative look-ahead is not working for mod_rewrite between different Apache versions
dovecot-lmtp: No such file or directory)
How exactly does the HOST/machine SPN work?
Grub rescue, will not boot from mdadm RAID, no such disk or device -- mduuid wrong?
W2008 - C Drive almost out of space - options?
mariadb mad file take all space in hard drive
Should I worry about the integrity of my linux software RAID5 after a crash or kernel panic?