I've got ProFTPD installed and running on my machine. I created a Virtual user via gadmin-proftpd. Got everything working with SSL and created a certificicate. I'm able to login via this user I created. Even got directory access working exactly how I want it. Note, the user I created has the same user name as a system user - but different password.

Then I created a second user - also Virtual. This user did NOT exist on the system. I set up the user and gave it a password - and couldn't log in. I fiddled around and tried to find more information about user creation and administration on the Internet, but I couldn't log in as the second user - until I created it on the system. Not only that, ProFTPD only allows the user to log in via the user's system password - not the one I assigned it in ProFTPD. This now presents a problem because this user can now have SSH access, etc., which I want to avoid or I'll have to fiddle with whitelisting users on SSH.

Can someone help me understand how ProFTPD works in regard to users.

i'm not the authority on this, but i have two virtual users that are working and do not allow login.

in my /etc/proftpd/proftpd.conf , i have:
i use the tool 'ftpasswd' to manipulate those files. i use the '--shell /bin/false' option to make certain they cannot login via console or ssh.

my ftpd.password file looks something like this:
Now you will see they are set to 1000:1000. i am unsure if this is ultimately proper. this relates to my personal local account user id / group id. I THINK that more properly would be to create a system user named ftpuser with no home, no shell and assign your virtual users to it.

then manipulate file/folder rights with that user (chown/chmod). [??? maybe]

more info here: http://www.proftpd.org/docs/howto/VirtualUsers.html
notice the quote "Important: proftpd will use all authentication mechanisms by default."