FTP 530-User cannot login - Win32 Unspecified error

Question

FTP 530-User cannot login - Win32 Unspecified error

Simon Bennetts 66

Hi

We're moving all our resources from on-prem to Azure and my next one is a passive FTP site.

I've created a VM using Windows Server 2022 with IIS and FTP installed.

I want to enable FTP user isolation. We have a LocalUser folder in the ftproot and uploads below that and have give my myuser permission to it. When using filezilla locally, I am getting an unexpected error:

Command:	USER myuser
Response:	331 Password required
Command:	PASS *************
Response:	530-User cannot log in.
Response:	 Win32 error:   Unspecified error 
Response:	 Error details: An error occurred during the authentication process.
Response:	530 End
Error:	Critical error: Could not connect to server

Everything looks to be set up correctly.

Anyone had this and able to resolve?

Thanks
Simon

Anusree Nashetty 4,375 Reputation points Microsoft External Staff Moderator

2025-06-16T20:51:01.4666667+00:00

Hi Simon Bennetts,

You're trying to set up FTP User Isolation on a Windows Server 2022 VM in Azure, and you're hitting a 530 error during login via FileZilla.

Ensure that the FTP site is configured to use “User name physical directory” isolation mode and that a folder named LocalUser\myuser exists under the FTP root directory (e.g., C:\inetpub\ftproot\LocalUser\myuser). Restart the FTP service after making changes. https://techcommunity.microsoft.com/blog/iis-support-blog/ftp-530-user-cannot-log-in-home-directory-inaccessible-error-and-solution-/4222577

Confirm Windows Account Validity: Ensure myuser is a local Windows user. The account must have Log on locally rights. https://techcommunity.microsoft.com/blog/iis-support-blog/ftp-%E2%80%9C530-user-cannot-log-in%E2%80%9D-error-and-solution/364570

If you have any further queries, let me know.
Simon Bennetts 66 Reputation points

2025-06-17T09:13:54.3966667+00:00

Hi - thank you for your reply. FTP site configured as suggested with "User name directory" (I don't want global virtual directories) and the correct folder structure is in place.

I've enabled IisManagerAuth and created the users in IIS rather than as local users. This is how I have it set up on prem. With that setup, I don't think I need local windows users?

Still getting the 530 with the *Unspecified error
*
Any other thoughts?

Simon Bennetts 66

I'm seeing the following warning each time it fails

The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID 
{GUID}
 and APPID 
{GUID}
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-20) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Mounika Reddy Anumandla 6,495 Reputation points Microsoft External Staff Moderator

2025-06-24T06:55:49.74+00:00

Hello Simon Bennetts,

Just checking to see if you had a chance to review the response provided to your question!

If you have any further queries, please let us know.

If the information is helpful, please "upvote" to let us know.

1 answer

Your answer

Anusree Nashetty 4,375 Reputation points Microsoft External Staff Moderator

2025-06-16T20:51:01.4666667+00:00

Hi Simon Bennetts,

You're trying to set up FTP User Isolation on a Windows Server 2022 VM in Azure, and you're hitting a 530 error during login via FileZilla.

Ensure that the FTP site is configured to use “User name physical directory” isolation mode and that a folder named LocalUser\myuser exists under the FTP root directory (e.g., C:\inetpub\ftproot\LocalUser\myuser). Restart the FTP service after making changes. https://techcommunity.microsoft.com/blog/iis-support-blog/ftp-530-user-cannot-log-in-home-directory-inaccessible-error-and-solution-/4222577

Confirm Windows Account Validity: Ensure myuser is a local Windows user. The account must have Log on locally rights. https://techcommunity.microsoft.com/blog/iis-support-blog/ftp-%E2%80%9C530-user-cannot-log-in%E2%80%9D-error-and-solution/364570

If you have any further queries, let me know.
Simon Bennetts 66 Reputation points

2025-06-17T09:13:54.3966667+00:00

Hi - thank you for your reply. FTP site configured as suggested with "User name directory" (I don't want global virtual directories) and the correct folder structure is in place.

I've enabled IisManagerAuth and created the users in IIS rather than as local users. This is how I have it set up on prem. With that setup, I don't think I need local windows users?

Still getting the 530 with the *Unspecified error
*
Any other thoughts?
Simon Bennetts 66 Reputation points

2025-06-17T09:24:32.1533333+00:00

I'm seeing the following warning each time it fails

The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID {GUID} and APPID {GUID} to the user NT AUTHORITY\SYSTEM SID (S-1-5-20) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Mounika Reddy Anumandla 6,495 Reputation points Microsoft External Staff Moderator

2025-06-24T06:55:49.74+00:00

Hello Simon Bennetts,

Just checking to see if you had a chance to review the response provided to your question!

If you have any further queries, please let us know.

If the information is helpful, please "upvote" to let us know.

Answer 1

Hello Simon Bennetts,

Given that setup, the 530-User cannot log in error combined with the DCOM warning in the Event Viewer points to a permissions issue rather than a misconfiguration of the FTP site itself.

I would suggest you verify few below mentioned points since you are using IIS Manager users for FTP

First, make sure the IIS Management Service is installed and running. This service is required to support IIS Manager authentication. Then, allow the IIS Manager user access to the FTP site. In the FTP Authentication settings, make sure “IIS Manager Authentication” is enabled. If you’re not using Basic or Anonymous authentication, those can be disabled to avoid conflicts.
Now, about the DCOM error you’re seeing that’s a known issue in some FTP setups and can prevent authentication from completing.

To fix this, goto component services (dcomcnfg) and go to Computers > My Computer > DCOM Config.

dcom

Look for the application matching the CLSID in the Event Viewer warning.

Go to Properties > Security tab, and under “Launch and Activation Permissions,” click “Edit.”

Add NT AUTHORITY\SYSTEM and make sure it has both “Local Launch” and “Local Activation” permissions. Also check file system permissions for the folder. The IIS Manager user doesn’t map directly to a Windows account, but the FTP process still needs read/write access to the user’s folder. Usually, granting access to the IIS_IUSRS group or the Application Pool identity should cover this.
After all the above is verified, restart both the FTP service and the IIS Management Service

Restart-Service ftpsvc
Restart-Service wmsvc

Then try connecting again using FileZilla. Let me know how it goes. Thanks

Share via

FTP 530-User cannot login - Win32 Unspecified error

1 answer

Your answer