User Authorization Types |
Top Previous Next |
Robo-FTP Server offers four types of user authentication: native Robo-FTP Server Authentication, SSH public key only, Windows Authentication, and Anonymous user accounts.
Robo-FTP Server Authentication Robo-FTP Server Authentication provides password-based account verification for all connection types and optional SSH public key authentication for SFTP connections. When using a password, enter the same value into both the Password and Verify Password fields on the User Settings form. When using an SSH public key, import the key that the user will present during authentication. If a user account with Robo-FTP Server Authentication is configured with both a password and a key, the user will be able to authenticate using either method.
To enable public key authentication you must first ask the user to provide a copy of their public key file in OpenSSH format. Once you have the user's key, open the Server Console program to the Users menu and then edit the account settings and click the button labeled Manage SSH Public Keys to display the list of imported keys:
If the user's public key was provided as a small file, click the "Import" button and browse to select it. If the public key was sent via email, copy into onto the Windows clipboard (CTRL+C) and then click the "Paste" button. Now that the key is displayed on this form, click the "OK" button to close it and then click the "Apply" button on the account settings form.
Important SSH public key authorization only works if the user configures their SFTP client software to use the SSH private key that matches the SSH public key that they sent to you.
SSH Public Key Only This authentication type is equivalent to SSH key authentication in Robo-FTP Server Authentication mode except it does not allow a user to authenticate with a password. This user authentication type is only available when the value of Connection Type is set to "SFTP" only, not "Both."
Windows Authentication In this type of authentication, access is granted if the user name and password are verified by the Windows operating system. Click the Browse button to choose a Windows user name to use for authentication. If you select a local account then the computer name will appear in the Domain field.
Windows Group Authentication This is an enterprise feature. For this type of authentication, access is granted if the user name and password are verified by the Windows operating system for the domain specified here and the user is found to be a member of the selected group. The home directory defaults to the the user name as a sub-directory of server root. This is shown as the macro $USERNAME. Click the Browse button to choose a Windows group to use for authentication. If you select a local group then the computer name will appear in the Domain field.
Anonymous user account In this type of authentication is selected, the user name default's to "anonymous" and any password is accepted. Over HTTP(S) anonymous accounts can be accessed by placing their user name into the URL. ie: http://hostname.com/anonymous/ |