Home Back to Tutorial Online Help

Default user profile for external authentication

The default user profile is used to give some default settings to all external authentication users (Active Directory, LDAP, Database). Those settings will apply to all users who passed external authentication. If the same user settings exist in the external sources such as Active Directory, LDAP server etc., they will override the default value.

The default user profile is used in cases where either the company policy doesn't allow storing users' FTP settings in the external source or a quick setup is needed for all FTP users from external authentication. For example, some companies don't allow the use of the extended schema for Active Directory. As a result, The FTP disk quotas setting can not be stored in the Active Directory. In this case, the default user profile can be used to assign default FTP disk quotas for Active Directory users.

Home directory in the default user profile

The home directory in the default user profile can be used to assign the FTP home directory for all external users in Active Directory, LDAP or database when the external source is used for authentication purposes only. The home directory supports the variable %username% and %username% will be replaced with the actual user name after his login. For example, if you want to have all users' home directories under the "C:\ftp" directory, you can set up the home directory in the default user profile as "C:\ftp\%username%", as shown in the picture below. If the user's home directory doesn't exist when he logs in, it will be created automatically.


The home directory in the default user profile will be overridden by the same value stored in the external source. For example, if the same user has his "homeDirectory" attribute value set in the active directory, it will override the home directory of the default user profile. If you don't want this kind of override to happen, you can select the Xlight FTP Server Active Directory option "only check username and password". When this option is selected, Xlight FTP Server will only authenticate the user against Active Directory, but not read any user attribute value from Active Directory. So the override will not happen.