« Previous Next »

• 11-07-2009, 10:13 PM

  shapper Joined on 11-28-2004, 9:15 PM Posts 47

  IIS FTP or FileZilla? Multiple FTP Accounts Reply Contact Hello, I am using Windows 2008 Server Standard and IIS7. I am trying to create multiple FTP web sites, one for each web site. I have only one IP. I think the port for FTP is 21. Is it possible to create multiple ftps like: ftp.domain1.com, ftp.domain2.com using the same IP and Port? I suppose that is the only option I have. Probably I should use some binding?! The VPS I am working has FileZilla installed because they said it was better then using FTP in IIS because it does allow only one account ... I thinks this is strange. Is this true? Thanks, Miguel

• 11-08-2009, 1:43 AM

  In reply to

  lextm Joined on 10-22-2008, 12:18 AM Shanghai, PRC Posts 1,433	Re: IIS FTP or FileZilla? Multiple FTP Accounts Reply Contact Spread the words, as FTP 7.5 supports multiple sites and multiple accounts. http://learn.iis.net/page.aspx/310/what-is-new-for-microsoft-and-ftp-75/ Lex Li Support Engineer at Microsoft --------------------------- This posting is provided "AS IS" with no warranties, and confers no rights.

• 11-08-2009, 9:51 AM

  In reply to

  shapper Joined on 11-28-2004, 9:15 PM Posts 47

  Re: IIS FTP or FileZilla? Multiple FTP Accounts Reply Contact I just informed the company to which I buy the VPS for that. And I just installed the new FTP 7.5. A Question: I have create 2 web sites on IIS7. For the FTP I need: 1. All of them need FTP.     The first site needs only one FTP user and the second needs 2 FTP users. 2. All FTP users can have access only to the web site root folder and subfolders.     And they can read, write, delete, modify, everything on web site root folder and subfolders. How should I create the FTP for these 2 sites? > Right click Sites in IIS and choose "Add FTP Sites" OR > Right click on Site1 or Site2 and choose "Add FTP Publishing"? Thanks, Miguel

• 11-08-2009, 9:58 PM

  In reply to

  lextm Joined on 10-22-2008, 12:18 AM Shanghai, PRC Posts 1,433

  Re: IIS FTP or FileZilla? Multiple FTP Accounts Reply Contact Add FTP publishing is recommended since you already have web sites there. Note that to build up several FTP bindings on port 21, you can utilize virtual host names, http://learn.iis.net/page.aspx/303/adding-ftp-to-a-web-site/ http://learn.iis.net/page.aspx/320/using-ftp-virtual-host-names/ But about how to set up users, consider what kind of authentication method you plan to use. Check out "Authentication for Non-Windows Accounts" section in this article, http://learn.iis.net/page.aspx/310/what-is-new-for-microsoft-and-ftp-75/   Lex Li Support Engineer at Microsoft --------------------------- This posting is provided "AS IS" with no warranties, and confers no rights.

• 11-10-2009, 8:46 PM

  In reply to

  shapper Joined on 11-28-2004, 9:15 PM Posts 47

  Re: IIS FTP or FileZilla? Multiple FTP Accounts Reply Contact Hello, I read all those articles and I got confused about authentication. Basically I need to create an FTP access to a web site. The user will use a normal Windows FTP software like SmartFTP for example. The access cannot be anonymous and must provide a username and password. Where do I create a user? Should I use IIS Manager Authentication? I am not sure what is the difference between IIS Manager Authentication or Windows Authentication? They both work when I user uses a windows FTP software like SmartFTP or  VoyagerFTP? Thanks, Miguel

• 11-10-2009, 9:08 PM

  In reply to

  lextm Joined on 10-22-2008, 12:18 AM Shanghai, PRC Posts 1,433

  Re: IIS FTP or FileZilla? Multiple FTP Accounts Reply Contact You can choose from IIS Manager authentication and Windows authentication. They both work and you only need one of them. For Windows authentication, you need to create a Windows user (or a domain user if this is in AD). For IIS Manager, refer to relevant articles on how to create users. Lex Li Support Engineer at Microsoft --------------------------- This posting is provided "AS IS" with no warranties, and confers no rights.

• 11-11-2009, 11:11 AM

  In reply to

  robmcm Joined on 05-27-2006, 1:05 AM Redmond, WA Posts 126

  Re: IIS FTP or FileZilla? Multiple FTP Accounts Reply Contact You can use either Basic Authentication or IIS Manager Authentication for FTP - both will work in your situation, the choice is based on the level or type of security that you want to implement. Here are some things to consider: Basic Authentication – this requires the use of physical accounts. PROs: Accounts can be in a domain, therefore they are easily reused between servers and are kept in a secure store. CONs: You are creating actual Windows accounts for your users, therefore all of the account security needs to be considered. (e.g. can users physically log in to your network.) Due to the way that the underlying FTP protocol is designed, FTP traffic is very easy to sniff on the network, so the possibility of account compromise is high unless you use FTP over SSL. IIS Manager Authentication - this uses accounts that are created through the IIS Manager. PROs: Accounts are not real Windows accounts, therefore you significantly decrease your surface area of attack. If an account is compromised, the account cannot be used to gain access to the physical server. CONs: IIS Manager Authentication requires some additional setup, which is documented in the "Configure FTP with IIS 7.0 Manager Authentication" walkthrough. IIS manager accounts are stored in administration.config, which is local to your server and therefore the accounts are not easily portable between systems. OTHER: IIS Manager may be shared with IIS site management tasks - this could be a PRO or CON depending on how you implement your IIS management, but that's outside the scope of this answer. ;-] Since you have a single IP, you can use FTP virtual hosts by adding a host name to each FTP binding, e.g. ftp.contoso.com, ftp.fabrikam.com, etc. When your FTP users log in, they just need to specify the FTP virtual host name as part of their login, e.g. ftp.contoso.com|user1, ftp.fabrikam.com|user2, etc. Jaroslav discussed the FTP useDomainNameAsHostName attribute in one of his blog posts, which allows you to use a backslash ("\") instead of a pipe ("|") character, so you can use login strings like ftp.contoso.com\user1, ftp.fabrikam.com\user2, etc. FWIW - I wrote the following blog post that specifically describes using FileZilla with FTP 7.x: http://blogs.msdn.com/robert_mcmurray/archive/2008/12/17/ftp-clients-part-4-filezilla.aspx Robert McMurray (MSFT, IIS)

• 11-11-2009, 11:23 AM

  In reply to

  robmcm Joined on 05-27-2006, 1:05 AM Redmond, WA Posts 126

  Re: IIS FTP or FileZilla? Multiple FTP Accounts Reply Contact BTW - On one of my servers, I do not use either Basic Authentication or IIS Manager Authentication for FTP ; I use FTP extensibility to create custom authentication providers for all of my FTP sites. This requires a little bit of coding, but it allows you to create custom authentication providers for FTP that do not use Windows accounts or IIS Manager accounts; this allows you the highest level of security because your FTP accounts do not have to be shared with any other technology, and accounts do not have physical access to the server. Details on how to create your own custom authentication providers are on the "Developing for FTP 7.5" section of the IIS.NET web site. The following information is probably way more information than you needed for your environment... ;-] My favorite provider that I use on several of my combined HTTP/FTP sites is an amalgamation of two FTP extensibility walkthroughs: the XML-based authentication provider and the custom home directory provider. This allows me to create an authentication provider that uses an XML file for FTP accounts and reads a custom home directory from the FTP settings that is different than the HTTP root directory. In addition, the XML file can be shared with .NET Membership by following the details in the "How to use the Sample Read-Only XML Membership and Role Providers with IIS 7.0" walkthrough, which allows you to use forms authentication to restrict sections of your HTTP content to accounts that are stored in the XML file. Robert McMurray (MSFT, IIS)

• 11-12-2009, 11:34 AM

  In reply to

  shapper Joined on 11-28-2004, 9:15 PM Posts 47

  Re: IIS FTP or FileZilla? Multiple FTP Accounts Reply Contact Hello, I followed the steps but when I access it using an FTP Client from my computer it does not work: [16:30:48] SmartFTP v3.0.1027.9 [16:30:48] Resolving host name "ftp.mydomain.pt" [16:30:49] Connecting to xxx.xx.xxx.xx Port: 21 [16:31:10] A connection attempt failed because the connected party did not properly respond after a period of time, or established connection failed because connected host has failed to respond. [16:31:10] Connect failed. Waiting to retry (30s)... [16:31:10] Client closed the connection. What might be wrong? I have been reviewing my steps and they seem ok. Thanks, Miguel

• 11-12-2009, 5:46 PM

  In reply to

  lextm Joined on 10-22-2008, 12:18 AM Shanghai, PRC Posts 1,433

  Re: IIS FTP or FileZilla? Multiple FTP Accounts Reply Contact As SmartFTP does not even connect to port 21, I think something is wrong on the server side firewall. What if you execute "ftp" at a command prompt on the server itself? Can you paste that output here? Lex Li Support Engineer at Microsoft --------------------------- This posting is provided "AS IS" with no warranties, and confers no rights.

• 11-12-2009, 6:10 PM

  In reply to

  shapper Joined on 11-28-2004, 9:15 PM Posts 47

  Re: IIS FTP or FileZilla? Multiple FTP Accounts Reply Contact lextm: As SmartFTP does not even connect to port 21, I think something is wrong on the server side firewall.   I had opened port 21 on the server. I thought it was opened by default. But now I get the following error: [22:58:43] Connection attempt 2... [22:58:43] Resolving host name "ftp.mydomain.pt" [22:58:43] Connecting to xxx.xx.xxx.xx Port: 21 [22:58:46] Connected to ftp.mydomain.pt. [22:58:46] 220 Microsoft FTP Service [22:58:46] USER myuser [22:58:46] 530 Valid hostname is expected. [22:58:46] Active Help: http://www.smartftp.com/support/kb/51 [22:58:46] QUIT [22:58:46] 221 Goodbye. [22:58:46] Connect failed. Waiting to retry (30s)... [22:58:46] Server closed connection In http://www.smartftp.com/support/kb/51 it says it is a Username/Password not working. But I went to IIS > IIS Manager Users and the user is there with the correct password. IISManagerAuth is enabled as well as Basic Authentication. And on IIS >  FTP Authorization Rules I have the User with allow and Read/Write. I am not sure what am I missing. Any idea?

• 11-12-2009, 6:12 PM

  In reply to

  lextm Joined on 10-22-2008, 12:18 AM Shanghai, PRC Posts 1,433	Re: IIS FTP or FileZilla? Multiple FTP Accounts Reply Contact If you have used FTP virtual host name, the user name must be provided as, host name|user name Regards, Lex Li Support Engineer at Microsoft --------------------------- This posting is provided "AS IS" with no warranties, and confers no rights.

• 11-12-2009, 6:47 PM

  In reply to

  shapper Joined on 11-28-2004, 9:15 PM Posts 47

  Re: IIS FTP or FileZilla? Multiple FTP Accounts Reply Contact Yes, I am using FTP Virtual host name because I have only 1 IP and multiple web sites and I want one FTP account for each web site. So for each web site I created a FTP account selecting "Add FTP Publishing". And yes I am using as username: ftp.mydomain.pt|username       Correct? I double checked the password and even used only 12345 and the same error always happen. I really not sure why this is not working.

• 11-12-2009, 6:56 PM

  In reply to

  lextm Joined on 10-22-2008, 12:18 AM Shanghai, PRC Posts 1,433	Re: IIS FTP or FileZilla? Multiple FTP Accounts Reply Contact The style is correct. Then what authentication method is currently used on the site? Do you use basic or another one? Lex Li Support Engineer at Microsoft --------------------------- This posting is provided "AS IS" with no warranties, and confers no rights.

• 11-12-2009, 7:08 PM

  In reply to

  shapper Joined on 11-28-2004, 9:15 PM Posts 47

  Re: IIS FTP or FileZilla? Multiple FTP Accounts Reply Contact I selected the site and then in site Features I selected: FTP Authentication: Basic Authentication and IISManagerAuth enabled. FTP Authorization Rules: I get an error saying "Filename ApplicationHost.config Line 956: Cannot add duplicate collection of type "add" with combined key attributes "users, roles, permissions" respectively set to "bonsalunos" Read Write. Maybe there is a problem here?