Skip to content

Failure to startup SFTP service

View some of the Frequently Asked Questions to our support staff. Included are some tips and tricks making this forum ideal for users getting started with GoAnywhere MFT, Gateway, Agents, etc.
Note: Users can reply to existing topics but only our support staff can add new topics to this forum.
Post Reply
  • User avatar
  • Support_Jake
  • Support Specialist
  • Posts: 83
  • Joined: Tue Jul 17, 2018 9:14 am
  • Contact:

Failure to startup SFTP service

by Support_Jake »

Question:

My SFTP service is not starting, what could be the cause of this?


Answer:

Does your GoAnywhere system have FIPS 140-2 Compliance Mode enabled?

In order to remain FIPS compliant, GoAnywhere systems running in FIPS mode will only allow the use of FIPS approved ciphers. At the moment, the following three ciphers are the only FIPS approved ciphers:
  • AES256-CBC
  • AES192-CBC
  • AES128-CBC
If any other ciphers are being used by the SFTP service, the service will not start. Starting in the 5.7.0 release, you should see an error similar to "ERROR Cipher algorithm 3des-cbc is not available" or "ERROR Cipher algorithm blowfish-cbc is not available" in the goanywhere.log file.

To fix this issue, go to the SFTP service and click edit. Select "Server." Under the "Selected" column for the "Enabled Cipher Algorithms" field, remove any ciphers but the 3 specified above. Save your changes and restart the service. The service should now start and function properly.
Jacob Przybysz
Associate Support Manager
+1 402.944.4242 Image fortra.com
Image
Post Reply

Return to “Knowledge Center”