FTPS client - need to import root certificate

Posted on 2009-02-20
Last Modified: 2013-12-09
Okay I'm trying to help out a coworker here and just don't have the time to mess with it this week... so I'm being lazy.  Please note that I'm an expert in PKI here - I just don't have the time to mess with new software for a couple weeks.

We are looking at an FTPS client/server for a new rollout.  Right now working on filezilla server and either filezilla client or turboftp client.

We need to use our own certs - using a self-signed one is not an option.  We got the server software set up ok to allow our internal CA issued cert by specifying the pfx in pem format and the .cer file in base64.

However, client connects and we get the certificate message from both clients stating that it can't verify the ceritificate because the root isn't trusted.  I cannot for the life of me find where the root cert store is in either client software to import our internal CA's root for testing, much less determine if our public cert vendor is included in the default store or not - if Comodo is in the store for either of these then that's fine I'll just go straight to a prod cert for testing.

To sum it up nicely:
How do I import a root certificate into Filezilla client or TurboFTP client on Windows 2003 Server?

If you can't figure this out, I am more than open to other software that is easier/better to work with - both in general and in specific regards to ftps.
Question by:Paranormastic
    LVL 31

    Accepted Solution

    So I found something that is supposed to work for Filezilla client:
    Take the p7b of the root chain and convert to PEM, then put that PEM file into the directory that contains filezilla.exe.
    I'm having the application guy verify that.

    Still not finding much on TurboFTP - going to try a similar method on that and cross our fingers.  Leaving this open in case anyone manages to find anything better/more definitive.
    LVL 31

    Author Comment

    Accepting my own answer for filezilla portion.  Turboftp is still outstanding, but will research that further on my own when i get time.

    Featured Post

    Threat Intelligence Starter Resources

    Integrating threat intelligence can be challenging, and not all companies are ready. These resources can help you build awareness and prepare for defense.

    Join & Write a Comment

    Imagine a situation that you have installed SSL ( Certificate on your Cisco ASA (Cisco Adaptive Security Appliance) firewall. Installation of SSL certificate on ASA is an another topic for which you …
    #SSL #TLS #Citrix #HTTPS #PKI #Compliance #Certificate #Encryption #StoreFront #Web Interface #Citrix XenApp
    Sending a Secure fax is easy with eFax Corporate ( First, Just open a new email message.  In the To field, type your recipient's fax number You can even send a secure international fax — just include t…
    Internet Business Fax to Email Made Easy - With eFax Corporate (, you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…

    746 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    16 Experts available now in Live!

    Get 1:1 Help Now