Never reuse passwords from other services. FileCatalyst supports complex passwords—use a mix of uppercase, lowercase, numbers, and symbols. Consider a password manager.
For automated transfers (via FileCatalyst Workflow, CLI, or API), avoid embedding credentials in scripts. Use revocable transfer keys or short-lived tokens instead. Rotate them regularly.
If your FileCatalyst deployment (e.g., WebDAV or Central) supports MFA, turn it on. This adds a critical second layer—even if a password is stolen, attackers can’t log in without the second factor.
Always log out from shared workstations. Avoid saving passwords in browsers. When using FileCatalyst HotFolder or WebApp, ensure you’re on a trusted network (use VPN for remote access).