Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

Connecting via FTP without specifying an Active Directory Domain?

0 views
Skip to first unread message

Dustin Travis

unread,
Jan 30, 2002, 11:38:09 AM1/30/02
to
I have been looking all arround but I cannot find any documentation on
this...

Currently we have a web site that a client can connect to via FTP, but must
specify the domain (Active Directory) in which the user's account is on
(such as domain\user) in order to login successfully. Is it possible to
somewhere specify for the web site (IIS) to use a particular domain for user
authentication so the person does not have to specify manually the domain
when logging in? The server is joined to the active directory domain, but
hasn't been dcpromoed. Any help would be greatly appreciated. Thank you.

Dustin Travis


Dustin Travis

unread,
Jan 30, 2002, 11:42:05 AM1/30/02
to
This is a Windows 2000 Advanced Server box by the way. Thanks.

Nico C. Kalteis

unread,
Jan 30, 2002, 11:56:21 AM1/30/02
to
First of all why would you dcpromo an ftp/web server? That would make it a
domain controller.

Secondly,

If you let people FTP to a web site then I'm assuming your ftproot is the
same as your wwwroot. Either way, it's not the website that doesn the
authentication of ftp users but the ftp site. Check your authentication
settings on that.

Nico


"Dustin Travis" <dus...@hotmail.com> wrote in message
news:8hV58.25$tt6....@news1.atlantic.net...

Dustin Travis

unread,
Jan 30, 2002, 12:25:08 PM1/30/02
to
Sorry, I meant to say do a dcpromo and then undo it in hopes that windows
would unerstand. I know it would make it a DC at that temprorary time.

Actually the ftp site doesn't do the authentication either, it's the actual
permissions on the file system that allows for someone to login on a
particular FTP site. I guess I understand what you're saying, but anyway,
that doesn't solve the issue.

BTW, I like your web site photos, especially the various babe photos. :-)

Dustin

"Nico C. Kalteis" <ni...@kalteis.com> wrote in message
news:egLME8aqBHA.1864@tkmsftngp07...

Nico C. Kalteis

unread,
Jan 30, 2002, 12:31:55 PM1/30/02
to
Glad you like the pics :-)

Once other thing you can try is to set up - as a test - a local user on the
ftp/www server. Make sure that local user has NTFS permissions then try and
log in as that user without a domain. It should authenticate against the
local ACL.

Nico


"Dustin Travis" <dus...@hotmail.com> wrote in message

news:tVV58.29$tt6....@news1.atlantic.net...

Dustin Travis

unread,
Jan 30, 2002, 6:13:24 PM1/30/02
to
Yeah, setting up a local user works without having to type in the local
computer name (computer\user). That doesn't solve it though... :-)
Supposedly dcpromoing and then un-dcpromoing makes 2k not look at a local
users list, though I thought you couldn't undcpromo (maybe that's only for
NT4?) Anyway, we'll see.


"Nico C. Kalteis" <ni...@kalteis.com> wrote in message

news:#OoX8PbqBHA.2540@tkmsftngp04...

George Hester

unread,
Jan 30, 2002, 9:03:44 PM1/30/02
to
Make sure on the Default FTP Site in Right Click | Properties | Security
Accounts that Allow Anonymous Connections is checked and Allow IIS to
control Password. Do not check Allow only anonymous connections. The for
those site you do not want anonymous access to, remove IUSR_MachineName or
Everyone if that is what you have there. Make sure each folder you want the
access on to have DomainUsers and Network in NTFS permissions. Also Full
Control for Administrator and System.

--
George Hester
_________________________________


"Dustin Travis" <dus...@hotmail.com> wrote in message

news:m6%58.162259$Tl.19...@news.easynews.com...

Dustin Travis

unread,
Jan 31, 2002, 10:01:47 AM1/31/02
to
Answer: Q200475 Resolution 4

"Dustin Travis" <dus...@hotmail.com> wrote in message

news:tdV58.24$tt6....@news1.atlantic.net...

0 new messages