Skip to content

WebDAV

TurboFTP Server supports WebDAV (Web Distributed Authoring and Versioning, RFC 4918, which is an extension of HTTP 1.1) and is class 1 and class 2 compliant. The WebDAV feature is available when HTTP/S support is included in the license, i.e., the Corporate version.

TurboFTP Server, by default, only provides WebDAV service on top of HTTPS such that the connection is protected by the secure SSL/TLS layer. When servicing WebDAV clients, TurboFTP Server supports both Basic authentication and Digest authentication. In Basic authentication, the user password is sent in plain text. For maximum security, Digest authentication will be used when possible. However, Basic authentication will be used when a domain's authentication method is Active Directory, LDAP, or NTLM. It is also used when FIPS 140-2 mode is enabled because Digest authentication uses the MD5 hash algorithm, which is not allowed by FIPS 140-2 standard.

WebDAV service is enabled in Domain -> Connection tab. Because WebDAV depends on HTTPS, HTTPS service must also be enabled, and a valid SSL certificate must be assigned. To access the WebDAV service, use a URL of the following formats:

https://domain_address/dav (port 443)
https://domain_address:port/dav (port other than 443)

Windows Vista and 7

Windows Vista and 7 have performance problem if Auto-Proxy detection enabled. It is suggested that the following option on these platforms be turned off:

Internet Options-> Connections-> LAN Settings-> Automatically detect settings

Standards Implemented

RFC 4918: HTTP Extensions for Web Distributed Authoring and Versioning (WebDAV)
RFC 7617: The 'Basic' HTTP Authentication Scheme
RFC 7616: HTTP Digest Access Authentication