Solved

FTP Folder Access

Posted on 2014-04-23
7
542 Views
Last Modified: 2014-06-04
We have an FTP (SSL) site via IIS7 - I need to isolate folders

Under FTP root User A can connect and access  - I need to create a folder under root that User A & B can access - But user B cannot access the Root directory

How is this best done?

Thanks,
0
Comment
Question by:sparkis
  • 2
  • 2
  • 2
  • +1
7 Comments
 
LVL 13

Expert Comment

by:SagiEDoc
ID: 40019418
This can be achieved with folder permissions. The issue being that you will need to create an A and B folder in the root. User A and B will both need read access to the root. The you can assign user A and user B the required permissions needed for folder A and folder B.
0
 
LVL 35

Accepted Solution

by:
Mahesh earned 500 total points
ID: 40019598
on root folder assign authenticated users read \ read and execute and list folder contents NTFS permissions
The from advanced security permissions remove inheritance and keep only system, administrators group full control permissions, remove any other groups except authenticated users there on the ACL and change authenticated users permissions scope (Applies to) to This folder only

Now get into FTP root folder and provide required individual users \ groups required permissions on sub folders so that users can access only sub folders for which they got access

Mahesh
0
 

Author Comment

by:sparkis
ID: 40019857
I have been able to control access to each folder under root via Allow/Deny Authorization rule inheritance on the FTP folders within IIS

So User A can access Folder A and User B can access folder B

Is there a way from within IIS that these folders are only visible to the appropriate user - that would be ideal. As of now they can both see both folder they just cannot access each others folder.
0
Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

 
LVL 13

Expert Comment

by:SagiEDoc
ID: 40020007
There is a list folder / read data permission you could attempt to use to prevent the users seeing folders that are not applicable to them.
0
 

Author Comment

by:sparkis
ID: 40020056
Under NTFS? - I tried this and it did not work.
0
 
LVL 35

Expert Comment

by:Mahesh
ID: 40021439
This way you can't restrict

In case of shared folders, you can enable access based enumeration on shared folder properties

But in case of FTP this is also not possible unless you explicitly share FTP root folder

Mahesh.
0
 
LVL 24

Expert Comment

by:Coralon
ID: 40021712
This is not that difficult.  

A lot depends on how your users are managed.
In either case, you set A to use the root folder.
For B, you set their root/home directory to the subdirectory.  

Now, as you saw, A will still be able to at least see that B's directory exists.  If you need them isolated, then you turn on the directory isolation, and assign each of them their own folders at a parallel level.

Coralon
0

Featured Post

Why spend so long doing email signature updates?

Do you spend loads of your time carrying out email signature updates? Not very interesting are they? Don’t let signature updates get you down. Let Exclaimer Cloud - Signatures for Office 365 make managing email signatures a breeze.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Need to test AD authentication 3 49
Intermittent issues with RDP on domain servers 4 46
SBS 2008 cannot logon remotely 7 47
Disable NetBios Seeting via Group Policy 6 50
To effectively work with Diskpart on a Server Core, it is necessary to write some small batch script's, because you can't execute diskpart in a remote powershell session. To get startet, place the Diskpart batch script's into a share on your loca…
Scenario:  You do full backups to a internal hard drive in either product (SBS or Server 2008).  All goes well for a very long time.  One day, backups begin to fail with a message that the disk is full.  Your disk contains many, many more backups th…
This tutorial will walk an individual through the steps necessary to configure their installation of BackupExec 2012 to use network shared disk space. Verify that the path to the shared storage is valid and that data can be written to that location:…
This tutorial will show how to configure a single USB drive with a separate folder for each day of the week. This will allow each of the backups to be kept separate preventing the previous day’s backup from being overwritten. The USB drive must be s…

895 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now