Security issue: Need to be able to only allow certain users (customer and employee) access to FTPS rather than everyone or nobody as today. Customers ask us for this capability to comply with their own security controls.
In order to fully utilize FTP/FTPS, the user would need upload and download access to folders. Without any folder access, users cannot do anything other than login and logout because a) they can't see any directories to access and b) the root level does not allow files. It would be no different than logging in to the website with the user account and seeing nothing because you were not granted any access. You would also need access to a large range of outbound ports in order to use FTPS, and restricting access to those would prevent the user from functioning properly on an FTPS connection to us. So even if you have a login, if all the outbound ports we need are blocked, the connection would end up self-terminating after looking like it succeeded because it cannot communicate. I realize that it is not you but your customers who are requesting this. Did they elaborate on how this is a security issue?