Key Takeaways
- Stateful FTP inspection controls FTP connections in the firewall.
- It opens data ports automatically for file transfer.
- This makes FTP communication easier and faster.
- Sometimes disabling it helps avoid FTP connection errors.
- Intune allows admins to enable or disable this setting easily.
Hey, let’s discuss about Microsoft Intune Stateful FTP Filtering Setting for Secondary Connections. Stateful FTP inspection is a firewall feature that monitors the FTP control channel and automatically opens the required ports for the data channel. This helps FTP work smoothly because FTP uses separate connections for control and data transfer. By tracking these connections, the firewall ensures that data transfers are allowed without needing manual port configuration.
Table of Contents
Table of Contents
Microsoft Intune Stateful FTP Filtering Setting for Secondary Connections
This setting works like a simple ON/OFF switch that controls stateful FTP filtering in the firewall. When the option is turned OFF (FALSE), the firewall performs stateful File Transfer Protocol (FTP) filtering, which helps manage and allow secondary FTP connections properly.
- Easy Method to Install Allway Sync App through Intune Enterprise App Catalog App
- Protect Sensitive Data in Transit with Network Level Authentication using Intune Policy
- Turn Off Customer Experience Improvement Program to Prevent Enterprise Data Sharing using Intune Policy
How to Create a Policy
You can start the policy creation of the Automatic HTTPS in Intune. Using simple steps, you can easily complete the policy creation. Open the Intune admin center. Go to Devices >Configuration > Policies> + Create > New policy.
- Platform – Windows 10 and later
- Profile type – Settings catalog
Basic Tab for Name and Description
After creating a profile, your next step is to add the basic details. These usually include the name, description, and platform information. You should give the policy name (Disable Stateful Ftp), so it’s easy to identify later. You can also add a description to help you understand the purpose of the policy in the future.
Configure Stateful Ftp Policy
On this page, we click on the+ Add Settings hyperlink. Then you will get a settings picker that will show different types of categories to select specific settings. Here, I choose to Firewall category and select the Disable stateful Ftp settings.
After closing the Settings Picker, you will see it on the Configuration Settings page. Here we have only two settings: Enable or Disable. By default, stateful Ftp will be set to Disabled. Click Next to proceed.
Enable Stateful Ftp Policy
If you want to enable this policy, look for the toggle switch from left to right next to the Disable Stateful Ftp. Click Next to continue. When the option is turned ON (TRUE) stateful FTP filtering is disabled, and the firewall will not automatically handle those secondary FTP connections. Click Next to continue.
What is Scope Tag
The next section is the Scope tag and which is not a mandatory step. It helps to assign this policy to a defined group of users or devices. Here, I skip the section and click on the next button
What is the Role of Assignment Tab
The assignments tab is the crucial step that determines which groups can be selected to assign the policy. Click on the +Add groups option under included groups. Select the group from the list of groups on your tenant. Click on the Select button. And you can see the selected group on the Assignments tab. Click on the Next button to proceed.
Review + Create Tab
In this section, you can see a summary of everything you entered in the previous steps, such as basic details, configuration settings, assignment details, and more. If you want to change or edit anything, you can easily go back to the previous section. Click Create to finish, and a message will confirm that the Disable Stateful Ftp created successfully.
Device and User Check-in Status
To view a policy’s status, go to Devices > Configuration in the Intune portal, select the policy (Disable Stateful Ftp), and check that the status shows Succeeded (1). Use manual sync in the Company Portal to speed up the process.
How to Remove Assigned Group from Stateful Ftp Policy
After creating the policy, if you want to remove the specific group that you previously selected, you can easily do that. First, go to Devices > Configuration policies. In the Configuration policy section, search and select the policy. In the Assignment section, you will find an Edit option and click on it. Then, click the Remove option and Review+ save button.
For detailed information, you can refer to our previous post – Learn How to Delete or Remove App Assignment from Intune using by Step-by-Step Guide.
How to Delete Stateful Ftp Policy from Intune
If you want to delete this policy for any reason, you can easily do so. First, search for the policy name in the configuration section. When you find the policy name, you will see a 3-dot menu next to it. Click on the 3 dots, then click the Delete button.
For detailed information, you can refer to our previous post – How to Delete Allow Clipboard History Policy in Intune Step by Step Guide.
Need Further Assistance or Have Technical Questions?
Join the LinkedInPage and Telegram group to get the latest step-by-step guides and news updates. Join our Meetup Page to participate in User group meetings. Also, Join the WhatsApp Community and WhatsApp Channelto get the latest news on Microsoft Technologies. We are there on Reddit as well.
Author
Anoop C Nair has been Microsoft MVP from 2015 onwards for 10 consecutive years! He is a Workplace Solution Architect with more than 22+ years of experience in Workplace technologies. He is also a Blogger, Speaker, and Local User Group Community leader. His primary focus is on Device Management technologies like SCCM and Intune. He writes about technologies like Intune, SCCM, Windows, Cloud PC, Windows, Entra, Microsoft Security, Career, etc.