Addendum to User’s GuideWS_FTP _ProIf the connection is rejected, a fail message is sent to the client. If the connection is accepted, or if the server is not set up to receive certificates, it decodes the session key from the client with its own private key and sends a success message back to the client, thereby opening a secure data channel.The key to understanding how SSL works is in understanding the parts that make SSL itself work. The following is a list of these parts and the role each plays.Client. In this case, the client is the WS_FTP Pro 6.6 software.Certificate. The Certificate file holds the identification information of the client or server. This file is used during connection negotiations to identify the parties involved. In some cases, the client’s certificate must be ‘signed’ by the server’s certificate in order to open an SSL connection. Certificate files have the .crt ending.Session Key. The session key is what both the client and the server use to encrypt data. It is created by the client.Public Key. The public key is the device with which the client encrypts a session key. It does not exist as a file, but is a byproduct of the creation of a certificate and private key. Data encrypted with a public key can only be decrypted by the private key that made it.Private Key. The private key decrypts the client’s session key that is encrypted by a public key. The private key file has the .key ending. Private keys should NEVER be distributed to anyone.Certificate Signing Request. A certificate signing request is gener- ated each time a certificate is created. This file is used when you need to ‘sign’ a certificate. Once the Certificate Signing Request file is signed, a new certificate is made and can be used to replace the unsigned certificate.How to make an SSLconnectionTo make an SSL connection with a server configured for SSL that you have an account on:1 Follow the directions for configuring a site, being sure to select the Secure (SSL) option.
