UserIsolationMode

  • Article

The UserIsolationMode property defines the isolation type desired on the corresponding FTP site.

If UserIsolationMode is set to 0, there is no user isolation. This setting is the default and is backwards-compatible.

If the property is set to 1, a client authenticates using local or domain accounts, then is sent to a folder under the root matching the user name. This setting is known as "Isolated (Locally)", and supports users who do not want to use Active Directory (AD).

If the property is set to 2, user isolation is dependent on Active Directory. This setting is known as "Isolated (Active Directory)" and is primarily of use to Internet service providers (ISPs) and other customers who want to set up large numbers of FTP accounts.

If you set this property to 2, you should also set DefaultLogonDomain, ADConnectionsPassword, and ADConnectionsUserName.

Schema Attributes

Attribute Name

Value

ADSI/WMI Data Type

DWORD

ABO Data Type

DWORD_METADATA

Schema Default

0

Internal Default

Not specified.

Upper Bound

2

Lower Bound

Not specified

Internal ID

5012

Friendly ID

MD_USER_ISOLATION

Property Attributes

INHERIT

User Type

IIS_MD_UT_SERVER

Configurable Locations

You can configure this property at the following locations in the IIS metabase.

Metabase Path

IIS Admin Object Type

/LM/MSFTPSVC

IIsFtpService

/LM/MSFTPSVC/n

IIsFtpServer

Flags

There are no flags for this property.

Requirements

Server: Requires or Windows Server 2003.

Product: IIS

See Also