Error:Primary connection and data connection certificates

[Elias]

Hello,
I was using filezilla 3.5.0 as an FTPS client for a while now and been able to access my SSL enabled ftp server. The certificate used on my FTP server was issued by my internal CA.
Today I installed a new certifcate purchased from verisign and installed on my FTP server and when i try to coonect to my ftp server with FileZilla client, I get the following error "Error: Primary connection and data connection certificates don't match". How do I remove the cached old Certifcate from fileZilla client and accept the new certifcate that is installed on the server.

Status: Resolving address of ftp.xxx.xxxxx
Status: Connecting to XXX.XXX.XX.X :21...
Status: Connection established, waiting for welcome message...
Response: 220 Microsoft FTP Service
Command: AUTH TLS
Response: 234 AUTH command ok. Expecting TLS Negotiation.
Status: Initializing TLS...
Status: Verifying certificate...
Command: USER Ftp.XXXXX.XXXXX|Username
Status: TLS/SSL connection established.
Response: 331 Password required for Ftp.XXXXX.XXXXX|Username.
Command: PASS ********
Response: 230-HELLO Welcome
Response: 230 User logged in.
Command: SYST
Response: 215 Windows_NT
Command: FEAT
Response: 211-Extended features supported:
Response: LANG EN*
Response: UTF8
Response: AUTH TLS;TLS-C;SSL;TLS-P;
Response: PBSZ
Response: PROT C;P;
Response: CCC
Response: HOST
Response: SIZE
Response: MDTM
Response: REST STREAM
Response: 211 END
Command: OPTS UTF8 ON
Response: 200 OPTS UTF8 command successful - UTF8 encoding now ON.
Command: PBSZ 0
Response: 200 PBSZ command successful.
Command: PROT P
Response: 200 PROT command successful.
Status: Connected
Status: Retrieving directory listing...
Command: PWD
Response: 257 "/" is current directory.
Command: TYPE I
Response: 200 Type set to I.
Command: PORT 10,2,50,246,8,59
Response: 200 PORT command successful.
Command: LIST
Response: 125 Data connection already open; Transfer starting.
Error: Primary connection and data connection certificates don't match
Error: Transfer connection interrupted: ECONNABORTED - Connection aborted
Response: 226 Transfer complete.
Error: Failed to retrieve directory listing
Error: Connection closed by server

[boco]

Cached certificates are in the trustedcerts.xml file in the FileZilla settings directory (~/.filezilla or %APPDATA%\FileZilla).

[Elias]

Cached certificates are in the trustedcerts.xml file in the FileZilla settings directory (~/.filezilla or %APPDATA%\FileZilla).

OK I giot it...Thanks

[Chris Blake]

I am unable to locate the Trustedcert.xml file on my Windows 7 machine, where do I look? I looked in the C:\Users\cablake\AppData\Roaming\FileZilla folder with no luck.

[boco]

The location you looked up is correct (unless you used a fzdefaults.xml file to change the settings location). The file name is trustedcerts.xml, and it may not exist if you never stored a certificate permanently.

[Chris Blake]

I have stored many certificates permanently however I have no Trusted xml. How would i chnage teh default location and or name of the trusted xml?

[boco]

First, make sure you're using the latest FileZilla version, 3.5.0. Look if there is an fzdefaults.xml file in the Program Files directory of FileZilla. If there is, open it with a text editor and check the ''Config location'' setting.

If there is no fzdefaults.xml, and you saved certs, you must have trustedcerts.xml in the %APPDATA%\FileZilla directory, as you cannot change the name of the file, and FileZilla does not use other methods like registry.

In case of FileZilla 2, unsupported version.