آبجی
10th March 2010, 03:44 PM
هدف از این آموزش راه اندازی یک Isolated Ftp Site میباشد که هر زمان کاربری با نام و پسورد خود وارد سایت شد بصورت پیش فرض وارد فولدر خودش بشود.
کلمه Isolate از همین جا میاید که فولدر هر کاربر مجزا از بقیه میباشد.
در IIS 6.0 سه حالت برای سایتهای FTP وجود دارد :
1-Do not isolate users - در این حالت هیچ گونه جداسازی صورت نمیگیرد و کلیه کاربران از یک فولدر مشترک استفاده میکنند همانند ورژن های قبلی IIS
Isolate users-2 - در این حالت کاربران باید در برابر حسابهای کاربری محلی (Local) یا دومین اهراز هویت شوند تا به دایرکتوری خانگی خود که مطابق با نام کاربری آنهاست دسترسی داشته باشند.
3-Isolate users using Active Directory - در این حالت هویت کابران در برابر Active Directory container متناظر بررسی میشود بجای جستجوی کلیه Active Directory که پروسه ای زمانبر است.
در این آموزش به راه اندازی FTP سرور در حالت دوم یعنی Isolate users میپردازیم.
فرض من بر این است که شما از Add/Remove program سرویس FTP را نصب کرده اید.
برای مشاهده آموزش کلیک کنید (http://www.persianadmins.com/swf/isolateftp.htm)
برای دانلود کلیک کنید (http://www.persianadmins.com/swf/isolateftp.tar.gz)
لینک های پشتیبان
برای مشاهده آموزش کلیک کنید (http://www.parsaspace.com/behroozi//swf/isolateftp.htm)
برای دانلود کلیک کنید (http://www.parsaspace.com/behroozi//swf/isolateftp.zip)
MORE INFORMATION
IIS 6.0 introduce 3 new modes for ftp site:
a) Do not isolate users - This mode does not enable FTP user isolation and it work similarly to earlier versions of IIS.
b) Isolate users - This mode authenticates users against local or domain accounts before they can access the home directory that matches their user name. All user home directories are in a directory structure under a single FTP root directory where each user is placed and restricted to their home directory. Users are not permitted to navigate out of their home directory.
c) Isolate users using Active Directory - This mode authenticates user credentials against a corresponding Active Directory container, rather than searching the entire Active Directory, which requires large amounts of processing time. Specific FTP server instances can be dedicated to each customer to ensure data integrity and isolation.
Note: This article focus on Isolate users in normal mode (b)
To create a new FTP site that isolates users
1. In IIS Manager, expand the local computer, right-click the FTP Sites folder, point to New, and click FTP Site.
2. Provide the required information in the FTP Site Description and IP Address and Port Settings dialog boxes, and click Next.
3. In the FTP User Isolation dialog box, click Isolate users, and click Next.
4. In the Path box, type or browse to the directory that contains, or will contain, the site content, and then click Next.
5. Select the check boxes for the FTP site access permissions you want to assign to your users, and then click Next.
6. Click Finish.
To create FTP root-point and user folders
If users of the local computer log in with their individual account user names, create the subdirectories LocalUser under the FTP site root directory you specified when you creating the FTP site.
For Example -
FTP root directory -> D:\MyFTP\
LocalUser locate at D:\MyFTP\LocalUser
For individual user, you need to create folder in this format - LocalUser\username
User: Susan locate at D:\MyFTP\LocalUser\Susan
If users of different domains log on with their explicit domain\username credentials, create a subdirectory for each domain (by using the name of the domain) under the FTP site root directory you specified when you creating the FTP site.
For Example -
Domain Name: Account
FTP root directory -> D:\MyFTP\
LocalUser locate at D:\MyFTP\Account
For individual domain user, you need to create folder in this format - Domain\username
Domain User: Nancy locate at D:\MyFTP\Account\Nancy
Anonymous access in isolated ftp site
If anonymous access is allowed, create the subdirectories LocalUser and LocalUser\Public under the FTP site home directory.
Note: All user home directories are in a directory structure under a single FTP root directory where each user is placed and restricted to their home directory. Users are not permitted to navigate out of their home directory. If users need access to dedicated shared folders, you can also establish a virtual root.
http://support.microsoft.com/kb/555018
کلمه Isolate از همین جا میاید که فولدر هر کاربر مجزا از بقیه میباشد.
در IIS 6.0 سه حالت برای سایتهای FTP وجود دارد :
1-Do not isolate users - در این حالت هیچ گونه جداسازی صورت نمیگیرد و کلیه کاربران از یک فولدر مشترک استفاده میکنند همانند ورژن های قبلی IIS
Isolate users-2 - در این حالت کاربران باید در برابر حسابهای کاربری محلی (Local) یا دومین اهراز هویت شوند تا به دایرکتوری خانگی خود که مطابق با نام کاربری آنهاست دسترسی داشته باشند.
3-Isolate users using Active Directory - در این حالت هویت کابران در برابر Active Directory container متناظر بررسی میشود بجای جستجوی کلیه Active Directory که پروسه ای زمانبر است.
در این آموزش به راه اندازی FTP سرور در حالت دوم یعنی Isolate users میپردازیم.
فرض من بر این است که شما از Add/Remove program سرویس FTP را نصب کرده اید.
برای مشاهده آموزش کلیک کنید (http://www.persianadmins.com/swf/isolateftp.htm)
برای دانلود کلیک کنید (http://www.persianadmins.com/swf/isolateftp.tar.gz)
لینک های پشتیبان
برای مشاهده آموزش کلیک کنید (http://www.parsaspace.com/behroozi//swf/isolateftp.htm)
برای دانلود کلیک کنید (http://www.parsaspace.com/behroozi//swf/isolateftp.zip)
MORE INFORMATION
IIS 6.0 introduce 3 new modes for ftp site:
a) Do not isolate users - This mode does not enable FTP user isolation and it work similarly to earlier versions of IIS.
b) Isolate users - This mode authenticates users against local or domain accounts before they can access the home directory that matches their user name. All user home directories are in a directory structure under a single FTP root directory where each user is placed and restricted to their home directory. Users are not permitted to navigate out of their home directory.
c) Isolate users using Active Directory - This mode authenticates user credentials against a corresponding Active Directory container, rather than searching the entire Active Directory, which requires large amounts of processing time. Specific FTP server instances can be dedicated to each customer to ensure data integrity and isolation.
Note: This article focus on Isolate users in normal mode (b)
To create a new FTP site that isolates users
1. In IIS Manager, expand the local computer, right-click the FTP Sites folder, point to New, and click FTP Site.
2. Provide the required information in the FTP Site Description and IP Address and Port Settings dialog boxes, and click Next.
3. In the FTP User Isolation dialog box, click Isolate users, and click Next.
4. In the Path box, type or browse to the directory that contains, or will contain, the site content, and then click Next.
5. Select the check boxes for the FTP site access permissions you want to assign to your users, and then click Next.
6. Click Finish.
To create FTP root-point and user folders
If users of the local computer log in with their individual account user names, create the subdirectories LocalUser under the FTP site root directory you specified when you creating the FTP site.
For Example -
FTP root directory -> D:\MyFTP\
LocalUser locate at D:\MyFTP\LocalUser
For individual user, you need to create folder in this format - LocalUser\username
User: Susan locate at D:\MyFTP\LocalUser\Susan
If users of different domains log on with their explicit domain\username credentials, create a subdirectory for each domain (by using the name of the domain) under the FTP site root directory you specified when you creating the FTP site.
For Example -
Domain Name: Account
FTP root directory -> D:\MyFTP\
LocalUser locate at D:\MyFTP\Account
For individual domain user, you need to create folder in this format - Domain\username
Domain User: Nancy locate at D:\MyFTP\Account\Nancy
Anonymous access in isolated ftp site
If anonymous access is allowed, create the subdirectories LocalUser and LocalUser\Public under the FTP site home directory.
Note: All user home directories are in a directory structure under a single FTP root directory where each user is placed and restricted to their home directory. Users are not permitted to navigate out of their home directory. If users need access to dedicated shared folders, you can also establish a virtual root.
http://support.microsoft.com/kb/555018