Windows Server 2003 domain FTP server setup

Posted on 2005-03-29
Medium Priority
Last Modified: 2010-03-18
I need to setup an FTP server that requires users to enter a login and password.

I have a Windows Server 2003 domain and the FTP machine I have has Windows Server 2003 on it.  The domain is behind a Sonicwall Pro Firewall.

What is the best / most secure way to set up a FTP server within an Active Directory domain that requires a login / password for external users?

Each client will need access to and only to their specified directory which is simply a shared folder on the FTP server.

Is it a better idea for me to not put the FTP server in the domain and make the FTP users simply local users?  If I did that would I still be able to have a mapped network drive internally so that when we need to FTP something we can simply open up the respective folders and put the files in it?

Any ideas would be helpfull.
Question by:tim-shoemaker
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions

Expert Comment

ID: 13654781
it is not recommended using DC as FTP server. What you may do is setup VPN. if you do want to setup FTP, this how to may help, http://www.howtonetworking.com/Windows/ftp0.htm.

Author Comment

ID: 13654872
Sorry....I should've been more specific.  The server that the FTP will reside on is a stand alone server right now.  I can add it to the domain if need be but not as a DC.  I'm trying to figure out how to have users authenticate with a user name / password without involving active directory and still be able to have a mapped drive with my internal LAN users.
LVL 34

Accepted Solution

Dave_Dietz earned 1000 total points
ID: 13656117
Add the server to your domain.

Create local accounts for your FTP users on the server (not domain accounts).

Create an FTP site using Non-AD User Isolation - http://www.microsoft.com/resources/documentation/iis/6/all/proddocs/en-us/wsa_ftp_isolate.mspx and http://support.microsoft.com/default.aspx?scid=kb;en-us;555018

Share out the folders for your internal users just like you would on any other domain server.

End result - FTP will require authentication and will not need to access the domain to check userIDs, FTP users will only be able to access their drectories and your internal users can manage files via the shares....

Dave Dietz

Featured Post

Get free NFR key for Veeam Availability Suite 9.5

Veeam is happy to provide a free NFR license (1 year, 2 sockets) to all certified IT Pros. The license allows for the non-production use of Veeam Availability Suite v9.5 in your home lab, without any feature limitations. It works for both VMware and Hyper-V environments

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Sometimes you might need to configure routing based not only on destination IP address, but also on a combination of destination IP address (or hostname) and destination port number. I will describe a method how to accomplish this with free tools. …
The Need In an Active Directory enviroment, the PDC emulator provide time synchronization for the domain. This is important since Active Directory uses Kerberos for authentication.  By default, if the time difference between systems is off by more …
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…
Add bar graphs to Access queries using Unicode block characters. Graphs appear on every record in the color you want. Give life to numbers. Hopes this gives you ideas on visualizing your data in new ways ~ Create a calculated field in a query: …

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question