I am a student and for my dissertation I need to configure a Windows Server to be a file server which uses FTP over SSL for file sharing so a user can download a file from the server.
What do I need to do that in terms of setting up the service and calling it from another machine later on?
Thanks in advance.
Step 1. Install an SSL certificate on the server.
You can buy the SSL certificate from your webhost
Your webhost should also have instructions for installing the certificate
If you can't find instructions, try this: GoDaddy SSL Instructions
Step 2. Set up an FTP server on your Windows server
You can set up an FTP server using IIS (Internet Information Services) which is installed by default on every Windows Server.
Once you open IIS, right click on the Server name and select add FTP Site.
Give it a name and a location where you want to save the files that you'll be uploading
You can leave the IP on All Unassigned and port on 21
Select Require SSL and use the Select button to navigate to your certificate
Enable basic authentication, leave anonymous disabled
Step 3. Grant user permissions
Open Computer Management and navigate to "Users" under System Tools / Local Users and Groups.
If there is no user called ftpuser, create one.
In File Explorer, right click on the folder where you'll be storing your files, select Properties and go to the Security tab.
Click the Edit button, then Add
Enter in the name of your ftp user, click Check Names, then OK.
Your ftp user should now be listed in the security tab. Select this user and then grant Modify, Read & execute, List folder contents, Read, Write. Click OK.
In IIS, select your ftp site and then double click "FTP Authorization Rules". Add a new rule for a specific user (ftpuser) and select Read and Write.
Step 4. Connect to your FTP server from your local machine
There are many ways to connect to your ftp server including a browser or file explorer, but arguably the best way to do this is to use an FTP client.
A good free FTP client is Cute FTP. I recommend it, but there are many others.
After you've installed an ftp client, enter in your host name (domain or server ip), user (ftp user you created), password and port number (should be 21).
Now you can drag and drop from and to your server.
Bob's your uncle.
Related
I have inherited an ASP.net web application running on Windows server 2012 and IIS. The application works fine but there was no Test instance. When attempting to set one up I tried browsing both Live and Test instances within IIS on the server but both continually prompt for credentials as set to Windows Authentication. While a Client connection to the Live instance works fine with Windows Authentication. I checked Windows Authentication was setup within the Web Server's security role on the server manager. I have tried moving NTLM up above negotiate for these sites' Windows Authentication Providers. The only thing i found that worked was setting up a registry key for "DisableLoopbackCheck" by doing the following,
In Regedit go to HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa
Right-click Lsa >> New >> DWORD Value.
Name this DisableLoopbackCheck, and then press ENTER.
Right-click DisableLoopbackCheck, and then click Modify.
In the Value data box, type 1, and then click OK.
Quit Registry Editor, and then restart the website in IIS
However, I wish to ask the following to clarify,
a) Is this the only way to achieve this? Is there a better way?
b) Will this registry amendment affect the client users on their own machines?
Maybe you can try this way:
Open the internet properties on the task bar and select security.
Choose Internet click custom level. You’ll find user authentication at the bottom of list.
Change the policy to automatic logon with current username and password.
I've got a website in a DMZ that available on the internet. There is an admin site in our LAN that is used to maintain the DMZ site. One of the functions is to add files that need to be accessible on the DMZ site. There is a section of the site on the LAN site where a user can upload a file, that file needs to get saved to the site on the DMZ I have a share created on the DMZ server and have it mapped to a drive on the LAN computer and I can copy, move, and update files directly on the share from the LAN in windows explorer. However, everytime I try to save a file there from within the website on the LAN server I get a permissions error.
I assume I need to use a different identity for the application pool but I can't figure out what to use. There is a local user on the DMZ computer that has read/write access to the share, I used that user to map the drive from the LAN machine. I tried to set that user as the identity in the app pool but that didn't work. I also tried to create a local user on the LAN machine with the same name and password and use that as the identity, but that also didn't work.
They're both windows 2012 machines.
I figured this out .. it wasn't the application pool identity that had to be changed. I had to change the anonymous user identity associated with the anonymous authentication on the site.
Create a local user on both servers with the same name and password.
On the target (DMZ) server make sure that user has permission to do what it needs to do in the directories.
On the source (LAN) server go into IIS and select the site. Double click the "Authentication" feature then right click "Anonymous Authentication" and select edit.
Chose the "Specific user" option and set it to be the user you created that matches the one on the DMZ server.
There is no need to actually map the drive on the LAN server you can just access it with the UNC path (\server\share).
i am using php in iis in our windows R2 server, the default localhost path is C:\inetpub\wwwroot and i want to change it to D for the reason that C might be full.
Thanks for the help.
Look here for IIS6:
To change the home directory of a Web site using IIS Manager
In IIS Manager, expand the local computer, expand the Web Sites directory, right-click the Web site you wish to change, and click
Stop.
Use Windows Explorer, to rename the LocalDrive:\Inetpub\Wwwroot directory to the name of your choice. Alternatively, you can copy the
entire \Wwwroot directory tree to a new location.
In IIS Manager, right-click your Web site, and click Properties.
Click the Home Directory tab, and under The content for this resource should come from, click A directory located on this computer,
A share located on another computer, or A redirection to a URL,
depending on where your home directory is located.
In the Local path box, type the path name, share name, or URL of your directory.
Note If you select a directory on a network share, you might need
to enter a user name and password to access the resource.
IUSR_computername is the default account used if another account is
not specified. If you use an account with administration credentials
on the server, clients can gain access to server operations. This
seriously jeopardizes the security of your network. For more
information on security user rights see, "Security Best Practices" in
Help and Support Center for Windows Server 2003.
In IIS Manager, expand the Web Sites folder, right-click the Web site you just changed, and click Start.
Yes you can do.... Just do below steps:
1. Open IIS Manager. For information about opening IIS Manager,
see Open IIS Manager (IIS 7).
2. In the Connections pane, expand the Sites node in the tree, and
then click to select the site in which you want to change the physical path
for virtual directory content.
3. In the Actions pane, click View Virtual Directories.
4. From the Virtual Directories page, select a virtual directory in the list.
5. In the Actions pane, click Basic Settings.
6. In the Physical path box, change the path of the virtual directory content.
7. Click OK.
This is my first go at Sharepoint.
I have installed and configured Sharepoint 2013 in a Single VM according to the Hardware and Software Requirements.
Now I have created a site that has the following url:
http://win-5a8pp4v402g/sharepoint_test/site_1/
win-5a8pp4v402g is the part that got pre-pended on its own. It is the computer name.
I am running the Sharepoint Server on port 6666. Also the VM has a local IP assigned for the moment.
When I access the VM through Remote Desktop, and open the browser in the VM itself, the url above works fine obviously.
My problem is that I want to access this site from another system withing the same local network. I can access the Central Administration from the remote system using the local_ip:6666
But how do I access the site from the remote system?
I am asking because I want to use the Sharepoint REST API to do some tasks from the client side and until and unless I can access the site I cant really proceed. Some help here please? I am a little confused.
Moified /etc/hosts file by adding a mapping of the IP address of the VM in the remote system. Since the VM and the remote system are in the same domain, I did this in hosts file:
local_ip win-5a8pp4v402g
hi if you want configure dns server to all computers, how we can do that, can yop please give the steps,
you means adding the domain to the system or something else
To join CLIENT1 to the CORP domain
Click Start, right-click Computer, and then click Properties.
On the System page, click Advanced system settings.
In the System Properties dialog box, click the Computer Name tab. On the Computer Name tab, click Change.
In the Computer Name/Domain Changes dialog box, click Domain, type corp.contoso.com, and then click OK.
When you are prompted for a user name and password, type the user name and password for the User1 domain account, and then click OK.
When you see a dialog box that welcomes you to the corp.contoso.com domain, click OK.
When you see a dialog box that prompts you to restart the computer, click OK.
In the System Properties dialog box, click Close. Click the button that restarts the computer.
After the computer restarts, log on as CORP\User1.
I need to create a self signed SSL certificate and the install the same certificate on two different web servers. For this specific scenario I have two web servers (Win2K3 w/ II6) in a network load balanced configuration.
I have installed the IIS resource tool kit and can use the SelfSSL tool to make a certificate. However my confusion comes from that the tool only registers the certificate on the current machine. How do I go about extracting the certificate in a form that I can then register it on the other web server?
I am not partial to the SelfSSL tool at all, so if I am going about this entirely wrong I am open to alternative instructions. I have seen instructions on how to generate .cer files using OpenSSL but I was really trying to hold off on install OpenSSL unless I really had to.
Thanks!
Preface
These instructions are probably not of much help to anyone, since both Windows 7 and IIS 7 are not supported anymore. However, I felt compelled to answer this question because it was currently the oldest unanswered question on Stackoverflow and I felt I could provide an accurate answer based on multiple sources.
With that out of the way, you should be able to extract the certificate generated by SelfSSL through the Microsoft Management Console and subsequently install it on other web servers using IIS Manager. Since you asked this question in 2008, the following instructions should be appropriate for your timeframe.
Step 1: Extracting the certificate
These are the relevant steps from this article on HowToGeek.
First, run the command mmc to open the Management Console:
In the console, go to File > Add/Remove Snap-in.
Add Certificates from the left side.
Select Computer account.
Select Local computer.
Click OK to view the Local Certificate store.
Navigate to Personal > Certificates and locate the certificate you setup using the SelfSSL utility.
Step 2: Installing the certificate.
Now that you have successfully extracted the certificate, the next step is to install it into an IIS web server. Again, these instructions from SSL Store for IIS 7 should be appropriate for your timeframe.
1. Launch IIS Manager
Click Start, Control Panel, Administrative Tools, and then select Internet Information Services (IIS) Manager.
2. Select your server name
In the left Connections menu, select the server name (host) where you want to install the certificate.
3. Navigate to the Security section
In the center menu, click the Server Certificates icon under the Security section near the bottom.Microsoft IIS 7 Step4
4. Click Complete Certificate Request
In the right Actions menu, click Complete Certificate Request.Microsoft IIS 7 Step5
5. Browse to your Server Certificate
In the Complete Certificate Request wizard, click “…” to browse and select Your Server Certificate file that was previously saved on your server’s desktop.
6. Name your certificate
Enter a Friendly Name which is an internal reference name to distinguish the file later. We recommend including the CAs name and expiration date.Microsoft IIS 7 Step7
7. Click OK
Click OK and the newly installed certificate should appear in the refreshed Server Certificate List.