Sample code for 30+ languages & platforms
Unicode C++

Secure FTP with Client Certificate

See more FTP Examples

Chilkat FTP2 provides the ability to use a client certificate with secure FTP (implicit or explicit SSL/TLS). This example demonstrates how to load a certificate from a .pfx and use it as the client-side SSL cert. Note: Client-side certificates are only needed in situations where the server demands one.

Chilkat Unicode C++ Downloads

Unicode C++
#include <CkFtp2W.h>
#include <CkCertStoreW.h>
#include <CkJsonObjectW.h>
#include <CkCertW.h>

void ChilkatSample(void)
    {
    bool success = false;

    // This example requires the Chilkat API to have been previously unlocked.
    // See Global Unlock Sample for sample code.

    CkFtp2W ftp;

    ftp.put_Hostname(L"ftp.example.com");
    ftp.put_Port(21);
    ftp.put_Username(L"test");
    ftp.put_Password(L"test");

    // This example will use explict TLS/SSL.
    // Establish an explicit secure channel after connection
    // on the standard FTP port 21.
    ftp.put_AuthTls(true);

    // The Ssl property is for establishing an implicit SSL connection
    // on port 990.  Because this example uses explicit SSL, it 
    // should remain false.
    ftp.put_Ssl(false);

    // Load a certificate from a .pfx
    // A PFX may contain several certs, including the certificates
    // in a chain of authority.
    CkCertStoreW certStore;
    const wchar_t *password = 0;
    password = L"***";
    // Load the certs from a PFX into an in-memory certificate store:
    success = certStore.LoadPfxFile(L"chilkat.pfx",password);
    if (success != true) {
        wprintf(L"%s\n",certStore.lastErrorText());
        return;
    }

    // Find the desired certificate.
    CkJsonObjectW jsonCN;
    jsonCN.UpdateString(L"CN",L"cert common name");

    CkCertW cert;
    success = certStore.FindCert(jsonCN,cert);
    if (success == false) {
        wprintf(L"Certificate not found!\n");
        return;
    }

    // Use this certificate for our secure (SSL/TLS) connection:
    success = ftp.SetSslClientCert(cert);

    // Connect and login to the FTP server.  The connection is 
    // made secure because of the AuthTls setting.
    success = ftp.Connect();
    if (success != true) {
        wprintf(L"%s\n",ftp.lastErrorText());
        return;
    }
    else {
        // LastErrorText contains information even when
        // successful. This allows you to visually verify
        // that the secure connection actually occurred.
        wprintf(L"%s\n",ftp.lastErrorText());
    }

    wprintf(L"Secure FTP Channel Established!\n");

    // Do whatever you're doing to do ...
    // upload files, download files, etc...

    // .....
    // .....

    success = ftp.Disconnect();
    }