FTP Server and Server 2008 R2 Problems

Posted on 2011-05-09
Last Modified: 2012-05-11
I am at my wits end with the new features and setup of FTP with Server 2008 R2. I simply cannot get

it to function properly.

What I want to accomplish (and what I have acimplished in 2003 R2) is:

Domain users log on to FTP using their AD credentials and are isolated to their virtual directory.

Virtual directories do match the names of the AD accounts.

The steps that I have taken are as follows

1. Add FTP Site
2. Name FTP Site
3. Physical Path (pointed to previously create "FTP" directory on root of C:\)
4. Binding, IP address set to local server IP, port 21
5. No SSL
6. Authentication set to Basic
7. Authorization, allow access to "specified roles or user groups"
8. Typed in "Domain Users"
9. Permissions set to Read/Write
10. Finish

This is all basic FTP setup minus the new Authorization in step 7. When clicking on the FTP Site, FTP

Authntication is set to Basic (with domain name added). FTP Authorzation Rules set to "Specified

roles or user groups" (Domain Users).

To go a little deeper this is what my FTP directory structure looks like

            domainname (LocalUser on 2003)\
The directories above have appropriate NTFS permissions added. From my local machine I can browse and

see the shares, I get prompted for credentials in IE when going to ftp://servername but cannot login

(not even with domain admin)

I am going to continue to play with this but this is utterly ridiculous at this point. I don't

understand why MS has to make this more difficult than it has to be and has been in 2003 R2?
Question by:dswope79
    LVL 4

    Expert Comment

    Did you open the necessary ports in the Firewall?

    You can run these commands and try again

    netsh advfirewall firewall add rule name="FTP (no SSL)" action=allow protocol=TCP dir=in localport=21
    netsh advfirewall set global StatefulFtp enable

    LVL 2

    Author Comment

    Yes, I opened them using the exact same commands you have there.
    LVL 2

    Author Comment

    When using FileZila I keep getting the following error

    atus:      Resolving address of server@domain.local
    Status:      Connecting to x.x.x.x:21...
    Status:      Connection established, waiting for welcome message...
    Response:      220-Microsoft FTP Service
    Response:      220 Company Name
    Command:      USER user@domain.local
    Response:      331 Password required for user@domain.local.
    Command:      PASS *********
    Response:      530 User cannot log in, home directory inaccessible.
    Error:      Critical error
    Error:      Could not connect to server
    Status:      Delaying connection for 5 seconds due to previously failed connection attempt...

    The above was an internal attempt at connecting.
    LVL 2

    Author Comment

    Some omre steps I have taken with no success

    Added firewall exceptions

    netsh advfirewall firewall add rule name="FTP (no SSL)" action=allow protocol=TCP dir=in localport=21
    netsh advfirewall set global StatefulFtp enable

    Added program exception per

    Followed this for isolation process

    Which is where I followed the directions and created the "domain name" folder under the FTP root instead of "LocalUser" as done in 2003 R2

    "Windows domain accounts
    (requires basic authentication)


    LVL 2

    Author Comment

    This works as long as I remove isolation and select "user name directory" under "Do not isolate users. Start in". Some small piece is missing here
    LVL 2

    Accepted Solution

    I got it figured out
    LVL 2

    Author Closing Comment

    I got this on my own

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    Find Ransomware Secrets With All-Source Analysis

    Ransomware has become a major concern for organizations; its prevalence has grown due to past successes achieved by threat actors. While each ransomware variant is different, we’ve seen some common tactics and trends used among the authors of the malware.

    Running classic asp applications under Windows Server 2008 R2 (x64) and IIS 7 is not as easy as one may think. It took me a while to figure it out while getting error 8002801d a few times. After you install the OS you will need to install the fol…
    You might have come across a situation when you have Exchange 2013 server in two different sites (Production and DR). After adding the Database copy in ECP console it displays Database copy status unknown for the DR exchange server. Issue is strange…
    This tutorial will walk an individual through configuring a drive on a Windows Server 2008 to perform shadow copies in order to quickly recover deleted files and folders. Click on Start and then select Computer to view the available drives on the se…
    This tutorial will show how to configure a single USB drive with a separate folder for each day of the week. This will allow each of the backups to be kept separate preventing the previous day’s backup from being overwritten. The USB drive must be s…

    761 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    10 Experts available now in Live!

    Get 1:1 Help Now