Using FTPS (FTP over SSL)

FTPS is FTP used over a secure SSL channel. The use of FTPS requires that a certificate is generated on ArcSight Management Center.

Using FTPS with Blue Coat ProxySG

The use of FTPS requires several steps on both ArcSight Management Center and the Blue Coat ProxySG appliance. The first step is that a self-signed certificate or CSR is generated on ArcSight Management Center. If the certificate is self-signed, it must be imported into the Blue Coat ProxySG appliance. If signed by a CA, the certificate of the CA must be imported into the Blue Coat ProxySG appliance.

On ArcSight Management Center:

  1. Generate the certificate (either a self-signed certificate or CSR) on ArcSight Management Center.

  2. Enable FTPon Connector Appliance. For detailed steps, see Enabling FTP.

On the Blue Coat ProxySG Appliance:

See your current Blue Coat ProxySG documentation for detailed instructions to complete the following necessary steps.

  1. Import the self-signed or the certificate of the CA into the Blue Coat ProxySG appliance. If importing a self-signed certificate into the Blue Coat ProxySG appliance, click the View Certificate button on the Generate Certificate page to display the certificate to be used with FTPS. Copy its entire contents and paste them into the Import CA Certificate window on the BlueCoat ProxySG appliance.

  2. Add the imported certificate into the browser-trusted CA Certificates Lists on the Blue Coat ProxySG.

  3. Configure the FTP upload client on the Blue Coat ProxySG appliance, ensuring that you select the option to use secure connections.

  4. Run an upload test on the Blue Coat ProxySG appliance to verify that it was able to successfully upload its log files to Connector Appliance over FTPS.