FTP restrict user access to a specific folder

windows-server-2008-r2 iis-7.5 ftp
23,759

I've finally solved this problem. Here is what I did:

  1. Configure FTP with IIS Manager Authentication (I've pointed my FTP site to empty folder C:\inetpub\ftproot which was empty)

  2. In IIS Control panel, select your FTP Site and then double click on FTP User Isolation.

  3. Select User name directory and click Apply.

  4. Now right click on the FTP Site, click Create new Virtual directory.

  5. Set the alias to the IIS Manager user name that you created in step 1, and set its physical path to everywhere you want that user to have access.

  6. Click OK.

Now that IIS manager user is able to access the folder you wanted via FTP, and he'll not have access to any other place.

Please note that you should repeat steps 1-6 for each user. (Step 1, from CONFIGURE THE IIS MANAGEMENT SERVICE AND ADD AN IIS 7 MANAGER part to the end of that page, then steps 2-6)

Share:
23,759

Related videos on Youtube

Mahdi Ghiasi
Author by

Mahdi Ghiasi

Updated on September 18, 2022

Comments

  • Mahdi Ghiasi
    Mahdi Ghiasi over 1 year

    I have created a FTP Site inside IIS 7.5 panel. Now I have access to whole site using administrator username and password.

    Now, I want to let my friend access a specific folder of that FTP site. (for example, this path: \some\folder\accessible\)

    I can't create a whole new FTP Site for this purpose, since it says the port is being used by another website.

    How to create an account for my friend to have access to just an specific folder?

    P.S: I have read about User Isolation feature of IIS 7.5, but I couldn't find how to create a user just for FTP and set it to a custom path.

  • Mahdi Ghiasi
    Mahdi Ghiasi over 11 years
    So, let user see (and modify) just a subfolder is not possible in IIS7.5?
  • rws907
    rws907 over 11 years
    Not if they don't have at least read rights to the parent folder. If they do, technically you could tell them that they have to configure the path exactly but you're putting a lot of trust that the user a) knows how to do that and b) is trustworthy.
  • MDMarra
    MDMarra over 11 years
    @rsmith84 you can do all of that with FTP 7.5 services.
  • MDMarra
    MDMarra over 11 years
    Future visitors should note that you can accomplish the same thing with a Windows user account and NTFS ACLs as well.
  • rws907
    rws907 over 11 years
    Learn something new everyday.
  • Jey DWork
    Jey DWork about 5 years
    I want to add that it seems to be required with windows accounts to have a (virtual) directory called 'LocalUser' in your root which in turn has (virtual) directories matching the user names with access. If you are in an AD instead of 'LocalUser' you have to name the folder according to your domain name and when your domain is mydomain.com the folder has to be named 'MYDOMAIN'. As this seems a bit cloudy another tip is to look in Sysinternals Process Monitor and here file system activity from svchost.exe during an attempted user logon to get the actual path the server is looking for.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

IIS 7.5 on Windows Server 2008 R2 refusing to create PASSIVE MODE FTP connections
PHPMailer loads a while, then gives 500 - Internal server error
Cannot Read Configuration File Because it Exceeds the Maximum File Size
Configure Filezilla FTP Server to Allow Uploads
Problems with FTP file access to VirtualBox guest running Windows 2008 Server R2 x64
Username in the address for an FTP site
Upgrading IIS7 to IIS8
Why does localhost not work on Windows Server 2008 R2?
Access to local ftp server by host name or server name instead ip address
HTTP Error 503 - Service is unavailable (how fix?)