Launch an FTP site on Windows Server (intra)

Page update date :
Page creation date :
  • The content of this page has been reworked in this page .


The contents introduced here are premised on the following conditions.

  • Basic authentication only
  • Do not use SSL
  • Use port 21
  • Intranetwork environment

Create an account for the FTP connection

Since you will set up a connection by basic authentication this time, create an account when connecting. You create a Windows user account.

Right-click on "Start Menu" and select "Computer Management".


Right-click Users and select New User.


Specifies the user name and password to use when connecting by FTP.


Prevents the user from logging on to Windows because the user you create will only be used for FTP connections. Double-click the user you created.


Select the Groups I belong to tab and delete Users.

Users を削除

Create a folder to use for the FTP connection destination

Create a folder to use for uploading or downloading when you connect by FTP. You create a Windows physical folder.

You can create it anywhere you want. However, don't use folders tied to your Windows account or anywhere else that might change depending on your environment. Here we are creating "C:\FtpFolder\".

FTP 用フォルダ作成

Set permissions so that the FTP account can access the files in the folder. Open the properties of the folder you want to use for FTP and click the Edit button from the Security tab.

セキュリティ - 編集

Click the Add button.


Specifies the account for the FTP that you created. (I think that the server name in the figure is different, so please replace it with the target server name)


Select the registered account and allow the "Modify" permission.


Just in case, place a confirmation file to make sure you are connected properly when you connect by FTP.


Building an FTP server

Install the FTP server role on Windows Server.

Run Server Manager from the taskbar.

サーバー マネージャー

Click Add Roles and Features.


Click Next.


Ensure that Role-Based or Feature-Based Installation is checked, and then click Next.


Ensure that the server on which you want to install the FTP server role is selected, and then click Next.


Check Web Server (IIS).


A confirmation dialog is displayed, so click the "Add Function" button.

Web サーバー (IIS)

On the "Select Function" screen, do nothing and click "Next".


Click Next.

Web サーバーの役割 (IIS)

Check FTP Server.


When you are done checking, click the "Install" button.

インストール オプションの選択

Wait until the installation is complete. Close the screen when the installation is complete.


Building an FTP Site

Since you have just installed the FTP feature, you still don't have access to the FTP site. In this section, we will build an FTP site.

From Server Manager, select the Tools menu and select Internet Information Services (IIS) Manager.

ツール - インターネット インフォメーション サービス (IIS) マネージャー

Right-click Sites and select Add FTP Site.

サイト - FTP サイトの追加

Set the FTP site name to arbitrary. For Physical Path, specify the folder path for FTP that you created earlier.


I'll leave the binding as it is for now. Since SSL is not used this time, SSL is checked to "None".

バインドと SSL の設定

Since authentication is mandatory for the account, check only "Basic".


When you return to the IIS Shopify admin, double-click FTP IP Address and Domain Restrictions to open it. Here you can limit the IP addresses of the PCs you can connect to. This setting is optional.

FTP IP アドレスとドメインの制限

From the Actions menu on the right, click Add Permission Entry.


Here you can specify the IP addresses that can be connected. In the figure, the IP address is "" and the mask is "", so the range that can be accessed is " ~". Find out for yourself what IP addresses and masks mean.


Next, open FTP Authorization Rules. Here you can limit who can connect.

FTP の承認規則

From the Actions menu on the right, click Add Authorization Rule.


You can do it arbitrarily, but only FtpUser can access it by FTP.


Firewall settings

Configure the firewall settings to allow FTP access from outside the server. For basic authentication without SSL, add a rule because it is not accessible with standard firewall settings.

From Server Manager, select the Tools menu and select Windows Firewall with Advanced Security.

セキュリティが強化された Windows ファイアウォール

Right-click Inbound Rules and choose New Rule.

受信の規則 - 新しい規則

Select Ports.


Select TCP and set the port number to 21.


Check "Allow connection".


You can check all of them, but if it's an intranetwork, you can remove "public".


Keep the name of the rule you added descriptive. This completes the FTP site building.


Verifying the connection by FTP

Try to see if you can access it via FTP from another PC. If you can connect via FTP, you can use tools and so on. In the figure, it is accessed using FTP commands. For details on how to use it, please check "FTP command". Below are the simple steps.

  1. Launch Command Prompt
  2. Type ftp to start using the FTP command
  3. Connect to the server with "Open < Server Name >"
  4. Enter your username
  5. Enter Password
  6. Use the "ls" command to display a list of files and folders in the root folder
  7. Disconnect FTP with "quit"

FTP 接続確認

Depending on the client, the firewall permission confirmation screen will be displayed, so allow it.