How to set up an FTP site so that users log on to their folders (201771)


The information in this article applies to:

  • Microsoft Internet Information Server 4.0
  • Microsoft Internet Information Server 5.0
This article was previously published under Q201771
We strongly recommend that all users upgrade to Microsoft Internet Information Services (IIS) version 6.0 running on Microsoft Windows Server 2003. IIS 6.0 significantly increases Web infrastructure security. For more information about IIS security-related topics, visit the following Microsoft Web site:

http://www.microsoft.com/technet/security/prodtech/IIS.mspx

SUMMARY

This article explains how to set up an FTP site so that when users log on with their user name and password, they are logged onto their respective subfolders by default. Although they can navigate to the root folder, they cannot see the contents of the other users folders.

When anonymous users view the FTP site, they can only view the contents of the root folder. Although they will see the names of the users' subfolders, however, they cannot examine their contents.

MORE INFORMATION

To set up the FTP site, follow these steps:
  1. In User Manager, create a user account for each of your users.

    Note These users need to have the local log on permission. By default, new users belong to the built-in Users group, which has local log on permission.
  2. Using the Windows NT Explorer, on a partition formatted with NTFS, give the FTP site's root folder the following security access types:
    • Administrators: Full Control
    • Everyone: Read
    • System: Read
  3. Create a subfolder for each user. (These subfolders will inherit the root folder's security settings). Make the following security changes:
    • Remove the Everyone group.
    • Change the System account's folder's access to Full Control (instead of Read).
    • Add the user who will use that folder, and give that user Full Control access.
  4. Configure the home page for the user. To do this, follow these steps:
    1. In Control Panel, open Administrative Tools.
    2. Double-click Computer Management.
    3. Expand Local Users and Groups, click Users, right-click the user name, and then click Properties.
    4. Click the Profile tab.
    5. Make sure that Local path is selected under Home Folder, and then type the appropriate path in the Local path box. For example, type the path as d:\Ftp\FolderName.

      Note The user name and the folder name must match. For example, if the user name is JoeUser, the FolderName should also be JoeUser. If the folder name is different, the user will see the same view that is available to Anonymous users. This view is the complete parent folder structure. The user is still denied access to folders to which they are not specifically granted NTFS permissions. However, the parent folder view may be undesirable.
For additional information, click the following article number to view the article in the Microsoft Knowledge Base:

240727 How to Use the FTP utility in a typical session

Modification Type:MinorLast Reviewed:6/23/2005
Keywords:kbhowto kbpending KB201771
©2004 Microsoft Corporation. All rights reserved.