Security tips for your CompleteFTP server

We recommend the following best practices for securing your CompleteFTP server instance:

  1. Enable two-factor authentication (2FA) for CompleteFTP accounts.
  2. Implement strong password policies for all accounts and ensure all users adhere to them.
  3. Regularly review and monitor Active Directory accounts for any suspicious activity.
  4. Assign the principle of least privilege to all users, granting them only the permissions necessary to perform their tasks.
  5. Remove unnecessary or unused accounts.
  6. Disable unused protocols.
  7. Keep your CompleteFTP software up-to-date with the latest security patches.
  8. Keep your Windows server up-to-date with the latest security patches via Windows update.
  9. Ensure that Enterprise Distributed Technologies is able to contact your organisation if and when flaws are found.
  10. Provide regular security awareness training to employees, emphasizing the importance of strong password management, phishing awareness, and safe browsing practices.