I found that Windows Authentication method can only Map to the connected AD OU level
If your users are in different OU's, you may need to replicate the AD structure in the Windows groups area of MFT and assign application permissions to the application groups you created
My Users are all in the same OU and I found that the users were able to log in to the web console, but then due to permissions on the folder structure in MFT they were then denied.
This did not meet my org security, so I needed to go down the LDAP path and replicate my OU and group structure to assign permissions via the MFT App
Then I had to replicate the AD OU structure of my domain to the Users OU in order for my test users to log in
I then took the next step to replicate my AD user groups in the servu application so that only the users in these groups gained access to serv-u
Very clunky way of integration but made it work to requirements.
Re the customization of the web interface, you can set this in Limits and settings\Custom HTML of your domain
If you run Windows there are some custom HTML samples in
Install Directory\Serv-U\Custom HTML Samples
I copied one and customized the Header, logo, etc
We have used Citrix netscaler as load balancer\reverse proxy
User connects to HTTPS - converts to HTTP at backend
Have a look at my Call "MULTIPLE FTP DOMAINS WITH SEPERATE HOME DRIVES AND ACCESS VIA ACTIVE DIRECTORY GROUPS"
Hope this helps