[This is preliminary documentation and subject to change]

Basic FTP Authentication

To establish an FTP connection with your Web server by using Basic FTP authentication, users must log on with a user name and password corresponding to a valid Windows user account. If the FTP server cannot verify a user's identity, the server returns an error message. FTP authentication is not very secure because the user transmits password and user name across the network in an unencrypted form. For more information, see About Access Control.

Digest and Integrated Windows authentication cannot be used with FTP sites. Available authentication settings must be set at the site level for FTP sites.

To enable the basic FTP authentication method

  1. Create a Windows user account appropriate for the authentication method. If appropriate, add the account to a Windows user group. For more information about creating Windows user accounts, see Securing Your Files with NTFS.
  2. Configure NTFS permissions for the directory or file for which you want to control access. For more information, see Setting NTFS Permissions for a Directory or File.
  3. In the IIS snap-in, select a site, directory, or file, and open its property sheets.
  4. Select the Security Accounts property sheet, and uncheck the Allow Anonymous Connections check box.
  5. Click OK.
  6. Set the appropriate NTFS permissions for the account. For more information, see Setting NTFS Permissions for a Directory or File.

important Important    If you change the security settings for your Web site or virtual directory, your Web server prompts you for permission to reset the security settings for the child levels of under that site or directory. If you choose to accept these settings, the child levels inherit the security settings from the parent site or directory. For more information about setting properties, see Configuring the Metabase.

© 1997-2001 Microsoft Corporation. All rights reserved.