I am currently configuring FTPS communication in Automation Studio for a 4PPC70 PLC and would like to confirm whether my approach follows recommended security practices.
Configuration steps performed:
-
Created a certificate under Access and Security β Certificate Store (own certificate with auto-generated private key).
-
Enabled secure communication in PLC configuration:
-
Online Parameters β Protocol: Secure (SSL/TLS)
-
FTP Server: ON (FTPS)
-
Web Server: ON (HTTPS)
-
OPC UA: Enabled
-
-
Downloaded the configuration to the PLC.
-
Connected using WinSCP with:
-
Protocol: FTP
-
Encryption: Explicit TLS/SSL
-
Encountered error: βSSL3 alert write fatal: Protocol versionβ
-
-
Resolved the issue by setting minimum TLS version to TLS 1.0 in client settings.
After this change, I am able to access PLC files successfully.
However, I would like to understand:
-
Is this configuration considered secure?
-
What are the recommended best practices for FTPS configuration in Automation Studio?
-
Is using TLS 1.0 acceptable in this case, or should it be avoided?
-
Are there additional security measures I should implement?
-
What would be the most secure approach for configuring FTPS or alternative file transfer methods in this context?
Any guidance on achieving a more secure setup would be appreciated.
Thank you 
.
