I'm not too experienced with SFTP and OpenSSH, but I need to set up two distinct SFTP directories with different users on the same Windows Server 2019 instance. This is for my company, which has an Azure server, to share images and spec sheets with retailers. Our sister company has similar needs but requires separate users and products because they operate in a different building. What is the best method to achieve this setup while keeping everything secure and outside our network?
4 Answers
Yes, you can definitely set this up! While it's simpler on Linux, Windows adds some complexity due to its permissions system. You’ll create separate user accounts and directories for each company, then adjust your SSH configuration. In the `C:ProgramDatasshsshd_config` file, you'll need to set up specific rules for each group. For example, you can restrict Company 1 to their directory with something like `Match Group company1sftp` and specify `ChrootDirectory D:SFTPCompany1`. The same goes for Company 2. However, depending on your needs, you might want to explore using a dedicated Linux server or an SFTP SaaS solution, which can be easier to manage.
If you're primarily sharing files for download, you might want to rethink the approach. Using HTTPS with authentication could simplify things, as users wouldn't need to deal with an SSH client, which might be ideal for Company 1. But I understand Company 2 is committed to SFTP, so just keep that in mind!
If you're leaning towards a self-hosted option, Bitvise is a solid SSH/SFTP server that can handle this task effectively for Windows. It's pretty straightforward to set up, and you should find it meets your needs for both companies.
For a simpler solution, consider using FTP server software like CRUSH or Filezilla. They are user-friendly and work well with Windows servers.
That's a good point! I'll discuss the HTTPS option for Company 1, but I know Company 2 will stick with SFTP.