Updated April 12, 2017
This article provides different steps to configure Serv-U MFT integration with Windows AD. Serv-U Managed File Transfer (MFT) Server can integrate with Windows Active Directory (AD).
This enables Active Directory authentication for user login, instead of authenticating against regular Serv-U user credentials, or those stored in a Database.
All Serv-U versions
Note: Serv-U MFT Server must be installed on a server that is a member of the Windows domain.
Serv-U uses the home directory of the client's Windows account. It is possible not to have any home directories associated with the Windows user account.
Windows account credentials are sufficient when an Active Directory user logs in to Serv-U.
If the user is already logged in to their Windows account, these credentials are sent to Serv-U for authentication.
You can configure all Windows users in a group, instead of configuring individual user accounts. Same settings are assumed by all the members of the group. You can change IP access, rules, limitations, and more.
Windows and Active Directory user accounts do not require any directory access rules to be configured. This is because Serv-U applies the New Technology File System (NTFS) permissions of the user accounts.
Windows Groups utilizes NTFS permissions, but configuration is only at the Organizational Unit and does not connect to Security Groups.
You can find more than one LDAP server if you need Serv-U to perform a backup of the server. This is in the event that the primary LDAP server is down, or if you need Serv-U to try LDAP credentials against multiple servers.
Home directories and permissions are manually configured and overwritten in the Windows User Group configuration page.
Serv-U MFT Server allows login with multiple Active Directory or Windows accounts when these accounts are part of the AD environment where Serv-U is installed.
Users who are part of the Windows group can create virtual paths and share folders.
When users log in, their home directory will contain a shortcut to their shared files. These are visible to all users who belong to this Windows User Group.
Using the Organizational Unit (OU) group settings, you can create additional Windows subgroups to assign different permissions and settings:
For more information, watch the video tutorial here.