SOLVED

Azure file share on windows 10 no domain

Copper Contributor

Hi,

 

i have an azure AD and Azure AD DS. i have host pool for wvd and Azure file for fileshare.

 

On Wvd users have access to fileshare.

 

Users windows machine are not in domain because not have local server. 

 

It's possible to mount azure file share on users computers with users Azure AD (or AD DS) credentials (I know it's possible with storage account and storage key but users should not have admin access to file share) ? 

3 Replies

It is possible to mount an Azure Files SMB share with NTFS support in an Azure AD Domain Services or Windows AD environment.  However, the client computer has to be domain joined.  That is a requirement for the Kerberos authentication between Active Directory Domain Services and the storage account.

https://docs.microsoft.com/en-us/azure/storage/files/storage-files-identity-auth-active-directory-do...

Hi @Travis Roberts ,

 

thank's for you reply. If I understand, I need local server with AD for mount azure file share with NTFS support on my local computer ? It's possible to join Azure AD for this or local AD is necessary ?

best response confirmed by jeep92 (Copper Contributor)
Solution

@jeep92 

The local computer would need to join the domain to get NTFS access.  Azure AD joined is not enough for SMB and NTFS support. 

Also, an Azure File Share can host a SMB share with NTFS for Azure AD DS or Windows AD (local), but not both.  So even if you stood up a DC locally, that domain would not be able to participate in the same share that is attached to Azure AD DS.

1 best response

Accepted Solutions
best response confirmed by jeep92 (Copper Contributor)
Solution

@jeep92 

The local computer would need to join the domain to get NTFS access.  Azure AD joined is not enough for SMB and NTFS support. 

Also, an Azure File Share can host a SMB share with NTFS for Azure AD DS or Windows AD (local), but not both.  So even if you stood up a DC locally, that domain would not be able to participate in the same share that is attached to Azure AD DS.

View solution in original post