Documentation forServ-U MFT & Serv-U FTP Server

Server Identity

The MFT version of Serv-U File Server 15.3.2 introduces a new, improved method of encrypting passwords using the concept of Server Identity. Prior to 15.3.2, passwords were created using hard coded TEA - Tiny Encryption Algorithm - keys. Server Identity is a "secret object" comprising a unique, randomly generated 128-bit ID for the server (also known as the Server UID) and a Password Encryption Key (referred to as the PASSENKY). The PASSENKY is an encrypted value stored in RAM. Each time the server is required to encrypt or decrypt sensitive data, the server creates a decrypted copy of PASSENKY, uses it to encrypt or decrypt the data, and then deletes the copy.

When you install Serv-U 15.3.2 or later on a clean host machine, the server identity is automatically generated. This attribute can be exported and saved as a password protected file for use with replicated instances of this server.

If you install Serv-U 15.3.2 or later on a machine on which a server definition exists, you have the option to create a new server identity or import an existing server identity.

Only Serv-U Local Administrators or full privileged System Administrators can export and import Server Identities.

For procedures see: