Your Browser is not longer supported

Please use Google Chrome, Mozilla Firefox or Microsoft Edge to view the page correctly
Loading...

{{viewport.spaceProperty.prod}}

Checking the default settings

&pagelevel(4)&pagelevel

In the case of a new installation, openFT sets default values for the operating parameters and FTAC settings. These are chosen in such a way that they generally suffice for normal openFT operation. However, you should check whether these settings are suitable for your particular application and requirements. The special functions such as remote administration server, trace, traps, automatic deletion of log records etc. as well as the use of TNS and CMX are deactivated.

The default admission set is defined in such a way that unrestricted file transfer is possible. As FTAC administrator you should therefore modify the standard admission set to match the security needs of the computer (see also section “Administering admission sets”).

Operating parameter settings

Following a new installation (including the installation of openFT-CR and release of openFT-FTAM and openFT-FTP), you can use the ftshwo command to display the settings:

ftshwo 
STARTED PROC-LIM CONN-LIM ADM-CLIM RQ-LIM MAX-RQ-LIFE TU-SIZE  CCS-NAME
  YES       2       16       8      2000      30       65535    CP1252
PTN-CHK DYN-PART SEC-LEV  FTAC-LOG FT-LOG FT-DIR-LOGADM-LOG  USE TNS USE CMX 
  STD       ON   B-P-ATTR    ALL    ALL       NONE     ALL      NO   NO
OPENFT-APPL      FTAM-APPL         FTP-PORT           ADM-PORT    ADM-CS
*STD             *STD              21                 11000         NO
ACTIVE           ACTIVE            ACTIVE             ACTIVE
RSA-PROP RSA-MIN AES-MIN ENC-MAND
2048        0     NONE     NO
HOST-NAME        IDENTIFICATION / LOCAL SYSTEM NAME
*NONE            mc011.mynet.local / $FJAM,MC011 
FT-ADMIN         FTAC-ADMIN
SYSTEM           *STD
DEL-LOG  ON  AT     RETPD    RECOVERY  ADM-TRAP-SERVER
 OFF   DAILY 00:00    14      IN+OUT     *NONE 
TRAP: SS-STATE FT-STATE PART-STATE PART-UNREA RQ-STATE TRANS-SUCC TRANS-FAIL
CONS    OFF      OFF       OFF        OFF       OFF       OFF        OFF
ADM              OFF       OFF        OFF       OFF       OFF        OFF 
FUNCT:  SWITCH PARTNER-SELECTION    REQUEST-SELECTION    OPTIONS  OPTIONS-LL
MONITOR  OFF   ALL                  ALL
TRACE    OFF   ALL                  ALL                  NONE       OFF

For a detailed description of the individual values, see the manual "openFT (Unix and Windows systems) - Command Interface".

You should first of all check the following settings:

  • Instance ID

    This is preset to the name of the computer in the local network. If this is not sufficient to ensure unambiguous identification throughout the network, please change the value (ftmodo -id), see also section “Unique Instance Identifications”.

  • Local port numbers for the protocols (OPENFT-APPL, FTAM-APPL, FTP-PORT).

    If you use other port numbers for addressing, e.g. for openFT, FTAM or FTP, then you should adapt these ( ftmodo command, options -openft, -ftam and -ftp).

  • Dynamic partners (DYN-PART)

    Dynamic partners are permitted. If you want to lock this for security reasons then use ftmodo -dp=f to set the value to OFF.

You can also change the operating parameter settings in the openFT Explorer. To do this, open the Administration menu and choose the Operating Parameters - Options command.

FTAC settings

Following a new installation, all the values for the default admission set are set to 100. This means that the system is open for all users with a valid password, for all partners and for all actions. You should adapt the default admission set to meet the security needs of the system. You can do this using the ftmoda command, see manual "openFT (Unix and Windows systems) - Command Interface". Alternatively, you can use the openFT Explorer and adapt the *STD admission set in the Admission Sets object window.

Powered by Atlassian Confluence and Scroll Viewport.