Security tips for your CompleteFTP server
We recommend the following best practices for securing your CompleteFTP server instance:
- Enable two-factor authentication (2FA) for CompleteFTP accounts.
- Implement strong password policies for all accounts and ensure all users adhere to them.
- Regularly review and monitor Active Directory accounts for any suspicious activity.
- Assign the principle of least privilege to all users, granting them only the permissions necessary to perform their tasks.
- Remove unnecessary or unused accounts.
- Disable unused protocols.
- Keep your CompleteFTP software up-to-date with the latest security patches.
- Keep your Windows server up-to-date with the latest security patches via Windows update.
- Ensure that Enterprise Distributed Technologies is able to contact your organisation if and when flaws are found.
- Provide regular security awareness training to employees, emphasizing the importance of strong password management, phishing awareness, and safe browsing practices.