Forum Discussion
Access EntraID-joined Windows Server SMB share as "SYSTEM" from Windows365
Hello,
is it somehow possible for a Windows365 machine to reach a SMB share (configured with Authenticated Users Read on Share+NTFS) on a EntraID-joined Windows Server as the machine itself (SYSTEM)? Specifically there is a scheduled task that runs as SYSTEM on the Windows365 machine that should update a software from the share.
The users itself access the share without problems with their EntraID identity.
Traditionally in an AD environment this was possible, as long as the share allows the Computer Objects to access it (Domain Computers, Authenticated Users), like it is always configured on netlogon/sysvol for the computer GPOs to be applied.
1 Reply
- Accessing an EntraID-joined Windows Server SMB share as 'SYSTEM' from a Windows 365 environment could be tricky since SYSTEM accounts in Windows 365 might not have direct permissions on the server. You could consider creating a dedicated service account or configure access through a GPO, ensuring proper delegation. Alternatively, mapping the share with user credentials could also work, depending on the setup. Have you tried leveraging Microsoft Endpoint Manager for more granular access control?
