Hi Erik,

I`ve spent some days struggling with the same issue. For testing purpouses we installed a Filezilla server with FTPS mode and it worked with a certificate generated by filezilla itself (self-signed). We did the same for the external FTPS server and failed because of certificate error. Finally we discover that if we were to use only FTPS for control connection it was working fine, it seems that the second time it tries to do the handshake for encrypting the file it fails. We supose that it happens because this second handshake is done using IP address instead of server name.

To sumarize:

In Local network ->

Installed filezilla server in a computer with server name, enable SSL, allow explicit mode, force PROT P. Generate certificate with server name instead of IP address using filezilla. Remove from generated certificate the private key. Import certificate in Visual administrator as TrustedCAs (7.0).

CC - server name, port 21, passive, FTPS control and data connection. Auth TLS, user, pass, pbsz, prot. OK

With external server->

Import certificate in VA. CC - server name, passive, FTPS control and data connection. Auth TLS, user, pass, pbsz, prot.

NOT OK, second handshake error

Don't force PROT P in FTPS server. CC - server name, port 21, passive, FTPS control connection. Auth TLS, user, pass, pbsz, prot. OK

To allow control and data connection encryption maybe is needed to set external name for FTPS server in server settings.

Hope this helps.

Iván.

Error from diagtool:

Error during disconnect from ftp server as2.progrator.com, ignored: com.sap.aii.adapter.file.ftp.FTPEx: 550 Unexpected reply codeiaik.security.ssl.SSLException: Peer sent alert: Alert Fatal: bad certificate

10:40:42:154 J2EE_GUEST ~l_sender/FTPS_TEST/VANS]_54305 ~rverTrusted(X509Certificate[]) Failed to verify server certificate chain: no trust anchor found