Solved

IIS 7.5 Secure FTP User Isolation

Posted on 2013-11-08
2
391 Views
Last Modified: 2014-01-21
Hello.

I am new to setting up FTP sites in general, but my organization has requested that I set one up so that our clients may send/receive files.

I am currently trying to do this with as little investment as possible, which has lead me to setting up an IIS FTP site on our file server.

The requirements for the project are this:

• External clients locked into their directory without the ability to see other folders.
• Internal staff have to be able to see the FTP root directory and have access to all files
• External clients have non-domain logins and internal staff must be able to access with their AD credentials

So the first part was easy to setup, I have the FTP site running and User isolation enabled, the external accounts are indeed locked to their respective directories; however, I am not finding a way to disable the user isolation for the internal staff.

I fear the only way this is going to work correctly is to have separate FTP sites for internal vs external.

Is there another way?
0
Comment
Question by:HFComm
2 Comments
 
LVL 30

Accepted Solution

by:
Brad Howe earned 500 total points
ID: 39635583
For internal staff to be able to access the root directory of all the clients you need to setup one more virtual path.

For example.

IIS Console
    > ftp site
                 -> LocalUser
                                   -> user1
                                   -> user2
                                   -> administrators
                                            -> Root <-- This is just an empty directory under administrators.

                  ->Root <-- This is a virtual path pointing to the ..\LocalUser folder

Let me know if you need a hand,
Hades666
0
 

Author Comment

by:HFComm
ID: 39652063
Hades666 -

Thank you for the reply, I think I understand the theory on how this should work and I have everything setup for the external clients to be able to access.

When I try to login with an active directory user I get a home directory is not accessible. I want all AD users to end up at the same root, So I thought maybe if I created the virtual directory by group name (ALLUSER) that it would pick that up. It did not. If I create a virtual directory with my username of course it works fine..

Can you please advise? Thanks
0

Featured Post

NAS Cloud Backup Strategies

This article explains backup scenarios when using network storage. We review the so-called “3-2-1 strategy” and summarize the methods you can use to send NAS data to the cloud

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
deploying a service to production environment 13 92
Expand customer access for public website. 9 55
DLL in ASP.NET 20 56
Exchange 2013 where are images stored? 2 36
This is a fairly complicated script that will install the required prerequisites to install SCCM 2012 R2 on a server.  It was designed under the functional model in order to compartmentalize each step required, reducing the overall complexity.  The …
Online collaboration is quickly becoming embedded in the workplace, and its benefits are tangible. See what the current landscape looks like and what the future holds for collaboration tools and the future of work.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
Internet Business Fax to Email Made Easy - With eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…

914 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now