Forum Discussion

andrewvinci's avatar
andrewvinci
Brass Contributor
Aug 12, 2020

Local Network Share with Azure AD Users

We're a small business of about 15 people, and have just moved to Microsoft 365 for email, and with it has come AAD user management which makes my life simple.   We have some simple file shares tha...
Azure AD
Azure AD Connect
Charbelhanna's avatar
Charbelhanna
Brass Contributor
Aug 13, 2020
Hello there,

You are right about the write-back feature of AAD, however, I do not see that it is required for your scenario if I have correctly understood.

moreover, I do not think that there's a reason to grant AAD users access to your local file shares, if you have already have your on-premises users synchronized to AAD using AAD Connect, you can simply keep access to local shares as it is configured for AD users.

awaiting your feedback
Charbel
  • andrewvinci's avatar
    andrewvinci
    Brass Contributor
    Aug 13, 2020
    Hey Charbel,

    Thanks for the reply.

    After an entire day of fiddling and messing around with ImmutableIDs and whatnot, I have managed to pull user accounts down from AAD to our on-prem AD! 🙂

    The issue is user laptops are connected to AAD not on-prem AD, so if the user changes their password, they wont connect/authenticate with the on-prem file shares.

    We can't justify $8/ser/mo, so I guess i'm going to have to ask users nicely for their passwords haha.
    • Charbelhanna's avatar
      Charbelhanna
      Brass Contributor
      Aug 13, 2020

      andrewvinci it seems you are now using AAD as primary user repo and authentication engine, therefore, it might be easier to either ask for the passwords, or move the file shares to the cloud that would be the best solution but not the cheapest one 🙂 

       

      Regards,

      Charbel Hanna

      • andrewvinci's avatar
        andrewvinci
        Brass Contributor
        Aug 26, 2020

        Charbelhanna Hello Charbel,

         

        Thanks for the reply. Actually moving files to the cloud is technically and functionally impossible for us.

         

        I have asked for some help on this, but i don't think there is a solution. https://techcommunity.microsoft.com/t5/sharepoint/sharing-a-shortcut-and-hyperlink-in-file-explorer/m-p/1570970#M43668

         

        The issue is a lot of our core files need sharable location paths. A simple example is a folder path for an excel macro. There is no way we can get a path for User A that is the same as User B. Unfortunately this is preventing our move to cloud folders.

         

        I have just resorted to asking users for passwords. It just looks incredibly unprofessional and people are wondering why Microsoft has such a half baked solution. I tell them it costs $10/user/mo to sync passwords, and now they just think Microsoft is stingy haha. 

Resources