Defining the default security level on Windows

This procedure describes how to define the default security level on Windows.

Before you begin

• Ensure that you have an FTP over SSL/TLS server installed and configured.
• Determine whether your server requires:
  • Client authentication
  • Server authentication
  • Client and Server authentication
  • None of the above.

To define the default security level on Windows:

1. Navigate to the following location:

   <Control-M/Agent home directory>/cm/AFT/data/SSL/cert

2. Open the aft_security_level.reg file in a text editing application (for example, Notepad).
3. Change the value of the Security_Level parameter to 3 or 4, according to your Server security requirements.

   If you want to authenticate the identity of the server, set your security level to Level 3. Otherwise, you must set your security level to Level 4.

4. Save and close the aft_security_level.reg file.
5. Double-click the aft_security_level.reg file to run it.

   A message is displayed prompting you that you are about to update the registry.

6. Click Yes.
7. When a further message is displayed prompting you that the registry has been updated, click OK again.
8. Restart Control-M/Agent services, and proceed to Certification.