Launch an FTP site on Windows Server (intranet)
- The content of this page has been reworked in this page .
The contents introduced here are premised on the following conditions.
- Basic authentication only
- Do not use SSL
- Use port 21
- Intranetwork environment
Create an account for the FTP connection
Since you will set up a connection by basic authentication this time, create an account when connecting. You create a Windows user account.
Right-click on "Start Menu" and select "Computer Management".
Right-click Users and select New User.
Specifies the user name and password to use when connecting by FTP.
Prevents the user from logging on to Windows because the user you create will only be used for FTP connections. Double-click the user you created.
Select the Groups I belong to tab and delete Users.
Create a folder to use for the FTP connection destination
Create a folder to use for uploading or downloading when you connect by FTP. You create a Windows physical folder.
You can create it anywhere you want. However, don't use folders tied to your Windows account or anywhere else that might change depending on your environment. Here we are creating "C:\FtpFolder\".
Set permissions so that the FTP account can access the files in the folder. Open the properties of the folder you want to use for FTP and click the Edit button from the Security tab.
Click the Add button.
Specifies the account for the FTP that you created. (I think that the server name in the figure is different, so please replace it with the target server name)
Select the registered account and allow the "Modify" permission.
Just in case, place a confirmation file to make sure you are connected properly when you connect by FTP.
Building an FTP server
Install the FTP server role on Windows Server.
Run Server Manager from the taskbar.
Click Add Roles and Features.
Ensure that Role-Based or Feature-Based Installation is checked, and then click Next.
Ensure that the server on which you want to install the FTP server role is selected, and then click Next.
Check Web Server (IIS).
A confirmation dialog is displayed, so click the "Add Function" button.
On the "Select Function" screen, do nothing and click "Next".
Check FTP Server.
When you are done checking, click the "Install" button.
Wait until the installation is complete. Close the screen when the installation is complete.
Building an FTP Site
Since you have just installed the FTP feature, you still don't have access to the FTP site. In this section, we will build an FTP site.
From Server Manager, select the Tools menu and select Internet Information Services (IIS) Manager.
Right-click Sites and select Add FTP Site.
Set the FTP site name to arbitrary. For Physical Path, specify the folder path for FTP that you created earlier.
I'll leave the binding as it is for now. Since SSL is not used this time, SSL is checked to "None".
Since authentication is mandatory for the account, check only "Basic".
When you return to the IIS Shopify admin, double-click FTP IP Address and Domain Restrictions to open it. Here you can limit the IP addresses of the PCs you can connect to. This setting is optional.
From the Actions menu on the right, click Add Permission Entry.
Here you can specify the IP addresses that can be connected. In the figure, the IP address is "192.168.0.0" and the mask is "255.255.255.0", so the range that can be accessed is "192.168.0.0 ~ 192.168.0.255". Find out for yourself what IP addresses and masks mean.
Next, open FTP Authorization Rules. Here you can limit who can connect.
From the Actions menu on the right, click Add Authorization Rule.
You can do it arbitrarily, but only FtpUser can access it by FTP.
Configure the firewall settings to allow FTP access from outside the server. For basic authentication without SSL, add a rule because it is not accessible with standard firewall settings.
From Server Manager, select the Tools menu and select Windows Firewall with Advanced Security.
Right-click Inbound Rules and choose New Rule.
Select TCP and set the port number to 21.
Check "Allow connection".
You can check all of them, but if it's an intranetwork, you can remove "public".
Keep the name of the rule you added descriptive. This completes the FTP site building.
Verifying the connection by FTP
Try to see if you can access it via FTP from another PC. If you can connect via FTP, you can use tools and so on. In the figure, it is accessed using FTP commands. For details on how to use it, please check "FTP command". Below are the simple steps.
- Launch Command Prompt
- Type ftp to start using the FTP command
- Connect to the server with "Open < Server Name >"
- Enter your username
- Enter Password
- Use the "ls" command to display a list of files and folders in the root folder
- Disconnect FTP with "quit"
Depending on the client, the firewall permission confirmation screen will be displayed, so allow it.