Transfer files to HULFT Square with an FTP connection (via a VPN)

In HULFT Square, you can securely transfer files using an FTP connection via a VPN.

This section explains how to create an FTP service and a VPN service to transfer files.

This tutorial uses the FTP Service and VPN Service applications. Before continuing this tutorial, install FTP Service and VPN Service from App Square.

In addition, for the file upload destination, you will use the workspace Team A, which you created in Create a workspace to work together. Confirm in advance that the workspace has been created.

For details about the installation of applications, refer to App Square.

Note

To use FTP and VPN, a separate contract is required.

It takes approximately one business day for your contract to become effective.

Procedures

Preparation

Make the following preparations to connect to an FTP service and a VPN service:

Check the directory on the HULFT Square storage where you intend to upload a file
Install FTP Service and VPN Service from App Square
Configure the FTP policy

Assign FTPServiceFullAccess to the FTP service administrator.
Configure the VPN policy

Assign VPNServiceFullAccess to the VPN service administrator.
Check the IP addresses of the users who are to be permitted access
Prepare the environment (such as an application) to be used to access the FTP server

Start up a VPN service

After applying a policy for VPN Service to a user, press the F5 key to reload the screen.

= Remarks =
When the screen is reloaded, VPN appears in the navigation menu.
Select > SERVICES > VPN.
On the VPN page, select Add.

In step General, set the fields as shown below, and then select Next.

Field name	Setting content (example)
Name	VPN_1
Description	(Optional)
CPU	1
Memory	2 GB
Scalability	1
Assigned group	Select the group with operation permissions.

In step Parameters, set the fields as shown below, and then select Next.

Field name	Setting content (example)
IP Allowlist	Enter an IP address (such as your own IP address) that is to be permitted access.
Name	Enter the name.
Common name	Enter the common name (server name).
Organizational Unit	Enter the department name in the organization.
Organization	Enter the organization name.
Locality	Enter the address (name of the municipality) of the organization.
State or Province	Enter the address (name of the state or province) of the organization.
Country	Enter the country name.
Validity (in days)	Enter the validity period of the VPN service.

In step Service Events, set the fields as shown below, and then select Next.

Field name	Setting content (example)
Workspace to save	Select a workspace for storing logs.
Author	Select a user who will be the author of log files.

In step Summary, confirm that the settings are correct, and then select Finish.
On the page displayed from > SERVICES > VPN, wait a few minutes for the VPN service to start and then confirm that appears for the status.

Note
If you configured the VPN service settings, it may take some time to apply the settings to the service.

Add an external user who can connect to the VPN service

On the page displayed from > SERVICES > VPN, select Information from the action menu for the VPN service that was started.
Select the link beside External SFTP User that indicates the number of users.
On the VPN > VPN service name > External Users page that is displayed, select Add.

In step General, set the fields as shown below, and then select Next.

Field name	Setting content (example)
Name	Enter the user name.
Authentication	Password
Password	Enter the password.

In step Summary, confirm that the settings are correct, and then select Finish.

Note
After you add an external user, it may take some time until it's ready for use.

Start up an FTP service

After applying a policy for FTP Service to a user, press the F5 key to reload the screen.

= Remarks =
When the screen is reloaded, FTP appears in the navigation menu.
Select > SERVICES > FTP.
On the FTP page, select Add.

In step General, set the fields as shown below, and then select Next.

Field name	Setting content (example)
Name	FTP_Server_1
Description	(Optional)
CPU	1
Memory	2 GB
Scalability	1
Assigned group	Select the group with operation permissions.

In step Parameters, set the fields as shown below, and then select Next.

Field name	Setting content (example)
Port	21
Passive Port Range	Enter a range between 1024 and 65535.
Root Directory	/Team A/data (*1)
Secure connection	Select a VPN service.

This displays the /Workspace name/Directory name.

In step Service Events, set the fields as shown below, and then select Next.

Field name	Setting content (example)
Workspace to save	Select a workspace for storing logs.
Author	Select a user who will be the author of log files.

In step Summary, confirm that the settings are correct, and then select Finish.
On the page displayed from > SERVICES > FTP, wait a few minutes for the FTP service to start and then confirm that appears for the status.

Note
If you configured the FTP service settings, it may take some time to apply the settings to the service.

Add an external user who can connect to the FTP service

On the page displayed from > SERVICES > FTP, select Information from the action menu for the FTP service that was started.
Select the link beside External SFTP User that indicates the number of users.
On the FTP > FTP service name > External Users page that is displayed, select Add.

In step General, set the fields as shown below, and then select Next.

Field name	Setting content (example)
Name	Enter the user name.
Authentication	Password
Password	Enter the password.

In step Summary, confirm that the settings are correct, and then select Finish.

Note
After you add an external user, it may take some time until it's ready for use.

The user name is added to the root directory that has been set for the FTP service.

Connect to the VPN

On the page displayed from > SERVICES > VPN, select Information from the action menu for the VPN service that was started.
Copy the value of Endpoint.
Download the CA certificate from Certificate.
Configure VPN communication from the client you use.
Start Manage computer certificates from the Control Panel.
Select Trusted Publisher > All Tasks > Import, and then import the CA certificate downloaded in step 3.

Note
The extension of the downloaded CA certificate is .pem. If a .pem file is not displayed, change the settings so that all files are displayed.
Start the VPN settings from Settings.

On the Add a VPN connection page, set the fields as shown below.

Field name	Setting content (example)
VPN provider	Windows (built-in)
Server name or address	Specify the host name copied in step 2.
VPN type	IKEv2
User name	Specify the user name of the VPN connection user who is set in HULFT Square.
Password	Specify the password of the VPN connection user who is set in HULFT Square.

Connect to the VPN.

Establish an FTP connection and transfer a file

On the page displayed from > SERVICES > FTP, select Information from the action menu for the FTP service that was started.
Copy the values of Endpoint and Port.
On the FTP client, specify the host name and port number copied in step 2, and establish a connection.
Log in with the username and password specified in Add an external user who can connect to the FTP service.
Upload a file to the connected directory.

Check the HULFT Square storage

Confirm that you can find your uploaded file under the Root Directory that you specified on the > SERVICES > FTP page (in step 5. in "Start up an FTP service").

Note

It may take some time to complete file synchronization.