FTPS problem

bmekler · Post by **bmekler** » Tue Jul 02, 2013 6:19 am

Trying to connect to an IIS 7.5 FTP server that uses FTPS and client certificates. Other clients (Alex FTPS, SmartFTP) connect fine, but CoreFTP LE fails to open a passive mode connection after login. Sample log:

150 Opening ASCII mode data connection.
Resolving ftps.domain.com...
Connect socket #2456 to <ip address>, port 21...
220 Microsoft FTP Service
AUTH SSL
234 AUTH command ok. Expecting TLS Negotiation.
Cert '10 00 00 00 00 00 82 2E D3 19' specified...
USER username
331 Password required for hargaman.
PASS **********
230 User logged in.
SYST
215 Windows_NT
Keep alive off...
PWD
257 "/" is current directory.
PBSZ 0
200 PBSZ command successful.
PROT P
200 PROT command successful.
PASV
227 Entering Passive Mode (<ip address>,192,50).
LIST
Connect socket #2468 to <ip address>, port 49202...
150 Opening ASCII mode data connection.
No response from server.
SSL failed
Connection terminated
Error loading directory...

For comparison, same server, account and certificate using SmartFTP:

[08:21:17] SmartFTP v4.1.1322.0
[08:21:17] Resolving host name "ftps.domain.com"
[08:21:17] Connecting to <ip address> Port: 21
[08:21:17] Connected to ftps.domain.com.
[08:21:18] 220 Microsoft FTP Service
[08:21:18] AUTH TLS
[08:21:18] 234 AUTH command ok. Expecting TLS Negotiation.
[08:21:18] Acquiring client credentials. Cert thumbprint=274DFF11BE6B1B14C7578A27C8E6F6B166424360, Cert store=My, Cert store location=1
[08:21:18] TLS 1.0 encrypted session established.
[08:21:18] Key Exchange: 2048 bit RSA
[08:21:18] Session Cipher: 128 bit AES
[08:21:18] Command channel protection set to Private.
[08:21:18] PBSZ 0
[08:21:18] 200 PBSZ command successful.
[08:21:18] USER username
[08:21:18] 331 Password required for username.
[08:21:18] PASS (hidden)
[08:21:19] 230 User logged in.
[08:21:19] SYST
[08:21:19] 215 Windows_NT
[08:21:19] Detected Server Type: Windows NT
[08:21:19] RTT: 123.645 ms
[08:21:19] FEAT
[08:21:19] 211-Extended features supported:
[08:21:19] LANG EN*
[08:21:19] UTF8
[08:21:19] AUTH TLS;TLS-C;SSL;TLS-P;
[08:21:19] PBSZ
[08:21:19] PROT C;P;
[08:21:19] CCC
[08:21:19] HOST
[08:21:19] SIZE
[08:21:19] MDTM
[08:21:19] REST STREAM
[08:21:19] 211 END
[08:21:19] OPTS UTF8 ON
[08:21:19] 200 OPTS UTF8 command successful - UTF8 encoding now ON.
[08:21:19] Detected Server Software: Microsoft IIS FTP Service
[08:21:19] PWD
[08:21:19] 257 "/" is current directory.
[08:21:19] TYPE A
[08:21:19] 200 Type set to A.
[08:21:19] PROT P
[08:21:19] 200 PROT command successful.
[08:21:19] PASV
[08:21:19] 227 Entering Passive Mode (<ip address>,192,51).
[08:21:19] Opening data connection to <ip address> Port: 49203
[08:21:19] LIST -aL
[08:21:20] 150 Opening ASCII mode data connection.
[08:21:20] 0 bytes transferred. (0 bytes/s) (250 ms)
[08:21:20] 226 Transfer complete.

Post by **ForumAdmin** » Thu Jul 04, 2013 5:43 pm

Try the "AUTH TLS" connection option instead of "AUTH SSL"