(OFTP2 module only)
TLS settings
Security level
The security level determines which ciphersuites are supported for incoming TLS connections. The options available are High, Standard, Compatible and Insecure.
•High offers the best security.
•Standard offers a good balance between adequate security and compatibility.
•Compatible also allows older clients to connect to !MC5, with medium restrictions regarding the security of the ciphersuites used.
•Insecure should only be used if partners with outdated OFTP software would otherwise not be able to connect to !MC5.
You can view the exact list of activated ciphersuites by clicking on the Show details button.
If this option is enabled, !MC5 requests the client's certificate for an incoming TLS connection. Only if the client sends a certificate and it can be found in the partner database of !MC5, the connection will be established. With this function you can ensure that only known partners can establish connections on TLS level.
TLS versions
Here you can select which TLS versions should be supported for incoming connections. TLS 1.0 is considered insecure and should only be activated if a partner uses outdated software that does not support a higher version. The less "old" TLS versions are enabled, the more secure. The settings apply to all incoming OFTP2 connections.
TLS certificate (only with add-on Multimandant)
With licensed add-on Multimandant the own TLS certificate has to be stored here.
OFTP2 settings
Save copy of signed data
If this option is activated and singed files are sent to a partner, a copy of the signed data is saved into the subfolder Signed in the partners outgoing directory.
TLS/OFTP2 certificates
In order to use OFTP2 at least one certificate for TLS authentication has to be selected. Depending on used OFTP2 features (adjustable by partner) additional certificates or certificate usages are necessary. One certificate can be used for all usages or different certificates for different usages.