Solved

FTP Folder Access

Posted on 2014-04-23
7
532 Views
Last Modified: 2014-06-04
We have an FTP (SSL) site via IIS7 - I need to isolate folders

Under FTP root User A can connect and access  - I need to create a folder under root that User A & B can access - But user B cannot access the Root directory

How is this best done?

Thanks,
0
Comment
Question by:sparkis
  • 2
  • 2
  • 2
  • +1
7 Comments
 
LVL 13

Expert Comment

by:SagiEDoc
ID: 40019418
This can be achieved with folder permissions. The issue being that you will need to create an A and B folder in the root. User A and B will both need read access to the root. The you can assign user A and user B the required permissions needed for folder A and folder B.
0
 
LVL 35

Accepted Solution

by:
Mahesh earned 500 total points
ID: 40019598
on root folder assign authenticated users read \ read and execute and list folder contents NTFS permissions
The from advanced security permissions remove inheritance and keep only system, administrators group full control permissions, remove any other groups except authenticated users there on the ACL and change authenticated users permissions scope (Applies to) to This folder only

Now get into FTP root folder and provide required individual users \ groups required permissions on sub folders so that users can access only sub folders for which they got access

Mahesh
0
 

Author Comment

by:sparkis
ID: 40019857
I have been able to control access to each folder under root via Allow/Deny Authorization rule inheritance on the FTP folders within IIS

So User A can access Folder A and User B can access folder B

Is there a way from within IIS that these folders are only visible to the appropriate user - that would be ideal. As of now they can both see both folder they just cannot access each others folder.
0
Find Ransomware Secrets With All-Source Analysis

Ransomware has become a major concern for organizations; its prevalence has grown due to past successes achieved by threat actors. While each ransomware variant is different, we’ve seen some common tactics and trends used among the authors of the malware.

 
LVL 13

Expert Comment

by:SagiEDoc
ID: 40020007
There is a list folder / read data permission you could attempt to use to prevent the users seeing folders that are not applicable to them.
0
 

Author Comment

by:sparkis
ID: 40020056
Under NTFS? - I tried this and it did not work.
0
 
LVL 35

Expert Comment

by:Mahesh
ID: 40021439
This way you can't restrict

In case of shared folders, you can enable access based enumeration on shared folder properties

But in case of FTP this is also not possible unless you explicitly share FTP root folder

Mahesh.
0
 
LVL 23

Expert Comment

by:Coralon
ID: 40021712
This is not that difficult.  

A lot depends on how your users are managed.
In either case, you set A to use the root folder.
For B, you set their root/home directory to the subdirectory.  

Now, as you saw, A will still be able to at least see that B's directory exists.  If you need them isolated, then you turn on the directory isolation, and assign each of them their own folders at a parallel level.

Coralon
0

Featured Post

Control application downtime with dependency maps

Visualize the interdependencies between application components better with Applications Manager's automated application discovery and dependency mapping feature. Resolve performance issues faster by quickly isolating problematic components.

Join & Write a Comment

Prologue It is often required to host multiple websites on a single instance of IIS, mostly in development environments instead of on production servers. I am sure it is not much a preferred solution on production servers but this is at least a pos…
Lync server 2013 Backup Service Error ID 4049 – After File Share Migration
This tutorial will walk an individual through the steps necessary to enable the VMware\Hyper-V licensed feature of Backup Exec 2012. In addition, how to add a VMware server and configure a backup job. The first step is to acquire the necessary licen…
To efficiently enable the rotation of USB drives for backups, storage pools need to be created. This way no matter which USB drive is installed, the backups will successfully write without any administrative intervention. Multiple USB devices need t…

757 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now