Active Directory administration if getting info from AD under specified user account role.

If you made paths for users based of their group membership then your users should have permissions to read own "group membership" info. Then user login and run HTTP Commander it runs with logon user permissions. It gets own group membership info from Active Directory.
In same cases then Active Directory users permissions are too limited you can get error like "Access is denied" then application trying to get group membership info.
Also logon user with a high probability havn't permissions to create or delete FTP folders.
To fix these problems you can create new user, set needed permissions for this user and to run code that gets AD info under this user role.

A. Open HTCOMNET\web.config file in NotePad. Find string <add key="GET_AD_INFO_TYPE" value="somevalue" /> and replace with the <add key="GET_AD_INFO_TYPE" value="HCADSI_USER" /> , save file.

B. Make user
1) In web.config file you can find HCADSI_USER_NAME and HCADSI_USER_PASSWORD keys. You can set here user under which role will execute hcADSI module. You need to create new user in Administrative Tools->Computer management or Active Directory Users and Computers tool. If you want to use Administrator's credentials here do it only for testing purposes! it is not safe to store admin password in file.

2) In Administrative Tools->Domain Security Policy open Security Settings->Local Policies->User Rigths Assignment node. Grant ASPNET user to "Act as part of the operating system". See screenshot

3) Restart server!

D. Set FTP site info.
In web.config file you can find keys:
<add key="FTP_SERVER_NAME" value="COMPUTERNAME" />
<add key="FTP_SERVER_GLOBAL_NAME" value="ftp://yourcite.com" />
<add key="FTP_SITE_INDEX" value="1" />
<add key="FTP_FOLDER_NAME" value="" />

Set needed values. To get correct FTP site index in IIS 6.0 site index shown in IIS->FTP sites under "Identifier" column.
In IIS 5 run "C:\Inetpub\AdminScripts\adsutil.vbs ENUM MSFTPSVC"
and see index at the bottom line. something like [/MSFTPSVC/1] - site index is 1

You can also download file adsutil.vbs on our web site http://www.element-it.com/download/adsutil.vbs

Grant created new user for permissions to create/delete FTP folders:
a) To grant user for needed permissions in Windows 2003 or Windows XP with IIS 6 installed you can use Metabase Explorer, part of the IIS 6.0 Resource Kit Tools
1. Download IIS6.0 Resource Kit and install it.
2. Run Metabase Explorer and set "Full Control" permissions for user seted at HCADSI_USER_NAME to Computername->LM->MSFTPSVC->[siteindex]->Root node.*
See screenshot.

* We don't know why, but in same cases user also should have permissions to whole web server i.e Computername node.

b) To grant user for needed permissions without Metabase Explorer (Windows 2000, WindowsXP with IIS 5) you can use Microsoft Metaacl.vbs application. Download it here and extract http://download.microsoft.com/download/5/7/3/57316f36-ded6-41f0-b694-8b0102ade818/metaacl.exe or you can download it from our web site http://www.element-it.com/download/metaacl.vbs

Your FTP web site has system path like: IIS://[COMPUTERNAME]/MSFTPSVC/[SiteIndex]/Root
1. Save Metaacl.vbs to C:\
2. Run in new window of Command Prompt: "C:\Metaacl.vbs IIS://[COMPUTERNAME]/MSFTPSVC/[SiteIndex]/Root" (Replace [COMPUTERNAME] and [SiteIndex] constant with corect values!). Application must show current permissions for users to FTP site. If something wrong may be you entered wrong [COMPUTERNAME] or [SiteIndex].
3. Run "C:\Metaacl.vbs IIS://[COMPUTERNAME]/MSFTPSVC/[SiteIndex]/Root [COMPUTERNAME]\NewUserName RWSUED" to grant user for permissions to create and delete FTP folders*.
You can run step 2 again to check if you seted permissions correctly.

* We don't know why, but in same cases user also should have permissios to whole web server i.e run C:\Metaacl.vbs IIS://[COMPUTERNAME] [COMPUTERNAME]\NewUserName RWSUED.