help needed about "ftp home directory configured in active directory "

hi all

i have question , have asked many mcitp trainers  but nobody knows answer. , have asked here in forum didn't result.   exponentially greatfull describe me steps should in turn.

my question :

i have domain called : mydomain.local .  i  have example 10 users in domain named u1 , u2, u3 , ....    i  have deployed win 2008 r2 sp1 ftp server , joined domain. via iis console , want deploy ftp user isolation using  " ftp home directory configured in active directory " feature (which exist in ftp user isolation section ).

i know ftp user isolation don't know feature " ftp home directory configured in active directory "  do !!

may tell me feature ( in simple words please )

my second ask may please tell me steps should in turn  ( whole process deploying ftp user isolation using " ftp home directory configured in active directory" ) ?

for example if possible , please describe me steps following pattern ( or if not possible , please check following steps , tell me wrong ,  any corrections should )      :-)

1- in ftp site root folder, should create folder named u1 or first should create general folder ( it's name same mydomain netbios name )?

2 - in adsiedit.msc console , in propertis of u1 user account , in msiis-ftpdir , msiis-ftproot attributes of u1 user account, should write ?

3 - in ftp server when select ftp home directory configured in active directory " , select "set" button , system asks me username , password.  which username , passwordshould write here ? ( domain admin username or password or user name , password of ftp server local administrator ?

4 - after doing these steps happens ? added properties of user account ( u1 ? )   see maped network drive when loges in domain domain username , password ?  

are there additional required  steps don't know ?

thank very :-)

i know ftp user isolation don't know feature " ftp home directory configured in active directory" !!

may tell me feature ( in simple words please )

it doesn't sound like, or i'm not sure if have experience of other ftp servers on market, work "home folder" attribute or setting set each user. 1 example used use heavily in past, along side iis when running websites, serv-u ftp. powerful, offers numerous features, including bandwidth throttling per user, permissions download based on uploaded bandwidth, upload/download precentages, home folder, etc. home folder folder ftp server connects user when connect. can either "lock" them folder can't see other folder, or don't lock it, can manually traverse root of c:, d:, etc, of course never let them.

besides serv-u, other ftp servers include smartftp, cuteftp, coreftp, , others.

 

 

1- in ftp site root folder, should create folder named u1 or first should create general folder ( it's name same mydomain netbios name )?

the beauty of not have create directory each account. create 1 "root" folder anywhere  like. thi general folder referred to.  create a subfolder (example) called "ftp root folder" on c: drive, d: drive, etc. specify in iis isolation configuration specifying ad account settings. once that, log in, stuck in folder.

configuring ftp user isolation (look @ sub links specific steps):
http://technet.microsoft.com/en-us/library/dd464015(ws.10).aspx

 

2 - in adsiedit.msc console , in propertis of u1 user account , in msiis-ftpdir , msiis-ftproot attributes of u1 user account, should write ?

you don't need adsi edit if have windows 2008 r2 dc. can use attribute editor tab of ad user account properties.

see screenshots in link:
configure ad ftp user attributes, testing, troubleshooting.
http://www.iislogs.com/articles/adftparticle/step4_postconfig/

 

3 - in ftp server when select ftp home directory configured in active directory " , select "set" button , system asks me username , password. username , passwordshould write here ? ( domain admin username or password or user name , password of ftp server local administrator ?

that's account iis use access operating sytem folder structure. create own. don't use administrator account. @ configuration steps in link:

how configure ftp user isolation active directory steve schofield
http://www.iislogs.com/articles/adftparticle/

 

4 - after doing these steps happens ? added properties of user account ( u1 ? ) see maped network drive when loges in domain domain username , password ?

so when log in, see root of folder logged in to, or folder in. can create, modify, delete in there because it's folder. not have ability @ other folders in operating system.

this way, when user logs in using ftp, not "see" home folder, such logging ad windows workstations such seeing a mapped drive created logon script or something, rather when log in, see in front of them home folder. keep in mind, using ftp app, such wsftp, filezilla client, it's 1 of changes made ftp 7.0 in iis 7/7.5, , works same way, except have ability use user's ad account settings set ftp home folder.

 

are there additional required steps don't know ?

pdf: hosting multiple ftp sites ftp user isolation (iis 6.0):
"this article take step step show how create ftp users ... ftp site setup using ftp site creation wizard. can use ... parameter, specify either ad, active directory isolation, or local, local isolation."
http://www.fullcontrol.net/qsa/ftpisolation.pdf

see link tiger posted, too.

 

i had more elaborate post other day, inadvertently deleted when tried fix formatting. hope find helpful.

ace

---

ace fekay
mvp, mct, mcitp enterprise administrator, mcts windows 2008 & exchange 2007 & exchange 2010, exchange 2010 enterprise administrator, mcse & mcsa 2003/2000, mcsa messaging 2003
microsoft certified trainer
microsoft mvp - directory services
complete list of technical blogs: http://www.delawarecountycomputerconsulting.com/technicalblogs.php

this posting provided as-is no warranties or guarantees , confers no rights.

Windows Server  >  Network Infrastructure Servers