Use the FTP Authentication feature page to configure the authentication methods that FTP clients can use to gain access to your content. You can sort this list by name, status, or type by clicking the appropriate column heading. By using the Group by drop-down list, you can also group authentication features by type or status.

By default, no authentication methods are enabled; you will have to enable an authentication method if you want to allow FTP users to access your content. There are two types of authentication methods: Built-In and Custom.

  • Built-In authentication methods are integral parts of the FTP server. These authentication methods can be enabled or disabled, but cannot be removed from the FTP server.

  • Custom authentication methods are implemented through an installable component. These authentication methods can be enabled or disabled, and they can be added to or removed from the FTP server.

    Note

    Clicking Custom Providers in the task list displays the FTP Custom Providers Dialog Box dialog box.

    Note

    Basic authentication will work with Active Directory (AD) user isolation. However, if you enable Custom authentication or any other form of authentication when AD user isolation is already enabled, that other form of authentication will not work. For more information on FTP user isolation, including AD user isolation, see Configuring FTP 7 User Isolation.

    Note

    "FTP" and "Anonymous" are reserved words. You cannot create IIS Manager user accounts that contain these names.

UI Element List

The following tables describe the UI elements that are available on the feature page and in the Actions pane.

Feature Page Elements

Element Name Description

Anonymous Authentication

Anonymous authentication is a built-in authentication method that allows any user to access any public content by providing an anonymous user name and password. By default, Anonymous authentication is disabled.

Note

Use Anonymous authentication when you want all clients who visit your FTP site to be able to view its content.

ASP.NET Authentication

ASP.NET authentication is a custom authentication method that requires users to provide a valid .NET user name and password to gain access to content. The .NET account can be from an ASP.NET user database that is shared with your Web content, or from a separate ASP.NET user database.

Note

ASP.NET authentication requires that a provider and possibly a connection string be configured for access to an ASP.NET user database.

Basic Authentication

Basic authentication is a built-in authentication method that requires users to provide a valid Windows user name and password to gain access to content. The user account can be local to the FTP server, or a domain account.

Note

Basic authentication transmits unencrypted passwords across the network. You should use Basic authentication only when you know that the connection between the client and the server is secured using SSL.

IIS Manager Authentication

IIS Manager authentication is a custom authentication method that requires users to provide a valid IIS Manager user name and password to gain access to content. IIS Manager authentication requires that the IIS Management Service is installed and configured to use both Windows credentials and IIS Manager credentials. (The IIS Management Service does not have to be running when you use IIS Manager authentication.)

Note

IIS Manager authentication transmits unencrypted passwords across the network. You should use IIS Manager authentication only when you know that the connection between the client and the server is secured using SSL.

Actions Pane Elements

Element Name Description

Custom Providers

Opens the Custom Providers dialog box so that you can enable the default custom providers or your own custom providers.

Enable

Enables the selected provider. This option is only available if the selected provider is disabled.

Disable

Disables the selected provider. This option is only available if the selected provider is enabled.

Edit

Enables you to edit settings for Built-In providers.

Note

To edit settings for Custom providers, you must access the Custom Providers dialog box from the global level and click Edit.

Remove

Removes the selected provider. This option is not available for Built-in providers.

Note

When you configure your FTP authentication settings, you should also configure your FTP authorization settings.

See Also


Table Of Contents