Use Lets Encrypt to secure FTPs connections
I usually use the ftp.site.com subdomain for the client FTP connections.
And to secure those connections I enabled FTPs. But at this point the users receive a certificate host name mismatch because the FTPs connection is being setup using the VPS Lets Encrypt cert.
It would be nice to use the Lets Encrypt certificate service also to secure the FTPs connections.
Thank you for your input! We will consider this functionality in upcoming releases if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
I'm using FileZilla as FTP client (macOS version)
Joshua Saraceni commented
We use FileZilla as our FTP client.
We use WinSCP as FTP client.
The current state on SNI in FTP software is close to "isn't working". In some cases, using a particular pair (client and server) of software, some scenarios may work. But once you do a side step, you face troubles.
So, ladies and gentlemen, could you specify what FTP client you're using? It could help.
Siegfried Sbrzesny commented
Let's Encrypt for FTP - everything that makes Plesk more secure will be enjoyed by Plesk user
Too much money to still not having it :(
Definitely what we need! Thank you Plesk and Lets Encrypt team!
I'd like to add my request for priority on this, especially since it is a known issue which, per support ticket response, is close to being worked on:
>> The feature of having per-domain SSL certificates
>> for FTP by Let's Encrypt is already known for our development
This would be a big help. Currently we have to manually renew the certificates covering the FTP service, setting reminders for staff to check every server periodically. (In other words, it is possible, but is currently a manual process, when everything else about Let's Encrypt in Plesk is slick and automated). Thank you.
Current solution is totally unusable. Everytime you connect to secured ftp of domain.com you get a warning that certificate common name does not match the domain you are connecting to. How it is supposed to work?
This feature must have been implemented years ago.
JFYI: in case of Plesk Onyx 17.5+ and Let's Encrypt 2.3+:
FTP server is secured with the Panel certificate.
Mail server also can be secured with the Panel certificate.
The Panel certificate can be issued with help of the extension.
Currently only web admin url, webmail and web server supported by the extension. We must complete support including mail server certs, ftp certs, or any service provided by plesk serving anything...