Login :: Register
General Topics
 Glossary

 Management Scripts
 Installation
 Configuration
 Administration
 LogFiles/Reporting
 Performance Tuning
 Securing Your Server
 Troubleshooting

 Software & Tools for IIS
 IIS State (Crash Utility)

 More Topics...
HostedbyMaximumASP170x35
2005 IIS MVPs
 IIS MVPs for 2005
 What is MVP
Other IIS Sites
 IIS Active
 IIS Answers
 IIS Lists
 IIS Toolshed
 IIS Training
 IIS Resources
  How do I configure the FTP Service for Basic Authentification on IIS5 Non Domain Controller 
How do I configure the FTP Service for Basic Authentification on Windows 2000 Server (Non Domain Controller)

Configuring the FTP Shhkhhkjervice for Basic Authentification on Windows 2000 Server running as a standard Server; not a Domain Controller.

We first off need to create a user account for the ftp user
  • Open the [Start Menu] - [Programs] - [Administrative Tools] - [Computer Management]
  • Expand the [Computer management (Local)] - [System Tools] - [Local Users and Groups
  • Select the [Users] item, and right click and select [New User] and enter the following
    • User  name  = FTPUser1
    • Full name = FTP User 1
    • Description = FTP User Account
    • Password = 12345678
    • UnSelect the [User must change password at next logon]
    • Select  the [User cannot change password]
    • Select  the [Password never expires]
    • and make sure the [Account is disabled] is unselected.
    • Click the create button to create the user.
    • Click close to close the New User dialog.

 

  • We now need to configure the IIS FTP Service
    • Open the [Start Menu] - [Programs] - [Administrative Tools] - [Internet Services Manager]
    • Expand the tree until you see Default FTP Site
    • Right click the Default FTP Site and select properties
    • Select the Security Accounts Tab
    • Remove the check from the Allow Annonymous Connections check box
    • Click Yes to the warning dialog that pops up (you can not get around this, FTP is unsecure, you can not use SSL)
    • Now select the Home Directory tab and take note of the Local Path for the FTP site, by default it is c:\inetpub\ftproot
    • Click Apply, and then Click OK

  • We now need to configure the user so that they are allowed to logon to the server.
    • Open the [Start Menu] - [Programs] - [Administrative Tools] - [Local Security Policy]
    • Expand [Security Settings] - [Local Policies]- [User Rights Assignment]
    • Select the item [Log on Locally] from the right list of policies.
    • Right click and select [Security]
    • In the Local Security Policy Settings dialog click the Add button
    • Select the User Account we created earlier FTPUSER1, and click the Add Button
    • Click OK to close the Select Users or Groups Dialog.
    • Click OK to close the local Security Policy Settings dialog.
  • Now copy a simple text file or anything to your ftp site directory at c:\inetpub\ftproot or what ever the local path was to your FTP site.

 

 

 

IIS has now been configured  to only allow authenticated users to the FTP Service.

We can test this by either opening a FTP client software application and attempting to connect to the ftp service or by using your web browser to connect.

We will use a web browser, so in the web browser address bar type the following assuming the computer was on the IP address 192.168.0.3
You can use a DNS name if you have one configured for your server, or you can use the NETBios name if you are running on an intranet.

ftp://FTPuser1:12345678@192.168.0.3

The format of the above url is Username:Password@ServerName

That should be all you need to do to configure the FTP Service Basic Authentification on IIS 5 on Windows 2000 Server which is not running as a Domain Controller.
 This site and its contents are Copyright 1999-2004 by IISFAQ Microsoft Corporation in no way endorses or is affiliated with IISFAQ