Configuring Basic FTP Authentication
Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1
To establish an FTP connection with your Web server by using the Basic FTP authentication method, users must log on with a user name and password corresponding to a valid Windows user account.
Important
You must be a member of the Administrators group on the local computer to perform the following procedure or procedures. As a security best practice, log on to your computer by using an account that is not in the Administrators group, and then use the runas command to run IIS Manager as an administrator. At a command prompt, type runas /User:Administrative_AccountName "mmc systemroot\system32\inetsrv\iis.msc".
Procedures
To enable the Basic FTP authentication method
Create a Windows user account appropriate for the authentication method. If appropriate, add the account to a Windows user group.
Configure NTFS permissions for the directory or file for which you want to control access.
In IIS Manager, right-click the FTP site, directory, virtual directory, or file, and then click Properties.
Click the Security Accounts tab.
Clear the Allow anonymous connections check box.
Click OK.
Set the appropriate NTFS permissions for the account.
Important
If you change the security settings for your Web site or virtual directory, your Web server prompts you for permission to reset the security settings for the child nodes of that site or directory. If you choose to accept these settings, the child nodes inherit the security settings from the parent site or directory.
Related Information
For information about creating Windows user accounts, see Best Practices for Securing Files with NTFS Permissions.
For information about setting NTFS permissions for an anonymous account, see Setting NTFS Permissions for Directories or Files.
For information about setting metabase properties, see Configuring the Metabase.