Configuring Control-M MFT for client authentication

This procedure describes how to configure Control-M MFT for client authentication that allows the server to authenticate Control-M MFT. You can either use the Control-M MFT Certificate of Authentication (CA), or you can use one supplied by an outside vendor, as described in Configuring Control-M MFT for an alternative CA.

To configure Control-M MFT for client authentication:

1. Set the host security level to Level 4.
2. Configure Control-M MFT for server authentication, as described in Configuring Control-M MFT for server authentication.
3. Do one of the following:
   • To use the Control-M MFT CA, use your server’s Import utility to import clientCA.crt file from the following location:

     <Control-M/Agent home directory>/cm/AFT/data/SSL/cert

   • To use an alternative CA, you must configure Control-M MFT so that this CA is recognized by the application, as described in Configuring Control-M MFT for an alternative CA.

   NOTE: All paths described in the following procedures are written for UNIX users. Users of Microsoft Windows must ensure that when following these commands, all occurrences of a foreslash ("/") are changed to a backslash ("\").