userIsolation Element for ftpServer for site for sites [IIS Settings Schema]

Article
10/21/2021

Note

For more information about the userIsolation element, see the following topic on the Microsoft IIS.net Web site: FTP User Isolation <userIsolation>.

This element is used to start or restrict FTP clients in specific sections of an FTP site.

Syntax

Attributes and Elements

The following sections describe attributes, child elements, and parent elements for this section.

Attributes

mode

Optional enum attribute.

Specifies the user isolation mode.

Value	Description
StartInUsersDirectory	Specifies that user isolation should not be used, but start a session in user's directory if it exists. The numeric value is 0.
IsolateRootDirectoryOnly	Specifies that user isolation should isolate only the root directory. Users' home directories must be physical directories, and global virtual directories can still be used. The numeric value is 1.
ActiveDirectory	Isolates users based on Active Directory settings. The numeric value is 2.
IsolateAllDirectories	Specifies that user isolation should isolate all directories. User's home directories can be either physical directories or virtual directories, but global virtual directories are ignored; all virtual directories must be explicitly created under each user’s home path. The numeric value is 3.
None	Specifies that no user isolation should not be used. The numeric value is 4.
Custom	Specifies that a custom FTP provider will implement the user isolation. The numeric value is 5.

When using either the IsolateRootDirectoryOnly or IsolateAllDirectories modes for user isolation, the physical or virtual directory paths must use the following hierarchy:

User Account Types	Home Directory Syntax
Anonymous users	%FtpRoot%\LocalUser\Public
Local Windows user accounts (Requires Basic authentication)	%FtpRoot%\LocalUser\%UserName%
Windows domain accounts (Requires Basic authentication)	%FtpRoot%\%UserDomain%\%UserName%
IIS Manager or ASP.NET custom authentication user accounts	%FtpRoot%\LocalUser\%UserName%

The default value is None

Child Elements

Element	Description
activeDirectory	Optional element. Specifies the connection credentials and time-out for communicating with an Active Directory server.

activeDirectory

Optional element.

Specifies the connection credentials and time-out for communicating with an Active Directory server.

Parent Elements

Element	Description
configuration	Specifies the root element in every configuration file that is used by IIS 7.
system.applicationHost	Specifies the root element for configuring Web process settings.
sites	Defines all sites on the server, and all applications and virtual directories in those sites.
site	Specifies configuration settings for a site.
ftpServer	Specifies the site-level settings for FTP features for FTP sites.

Remarks

For more information about the userIsolation element, see the following topic on the Microsoft IIS.net Web site: FTP User Isolation <userIsolation>.

Element Information

Configuration locations	ApplicationHost.config
Requirements	IIS 7

Share via