Reference:
Edit Standard FTP Address
Entry
Client connections to FTP servers can be encrypted in one of two ways. Beyond FTP supports both FTPS which uses the SSL/TLS protocol, and SFTP using the SSH protocol. The SSH protocol defaults to port 22 and does not currently support certificates.
There are two selections available for SSL/TLS: Explicit SSL and Implicit SSL. The first typically opens a connection on the standard FTP port (default of 21) and then uses the AUTH command to engage the encrypted handshake and secure the channel. The second typically calls a special port (default 990) and immediately begins the SSL handshake process to secure the channel. If you require “firewall friendly” operation of the secure connection you may clear the command channel.
A default certificate is shipped with the product in the file APTClient.pfx. You may load and select a certificate of your own by selecting the Certificate button. This certificate MUST include a private key.