I have a doubt regarding ACLs for the fileshare. please clarify. 1.case 1:-If I have a fileshare on onprem(location:-Hyd) with access level set to a group. If I change or modify ACL here,will the ACL of the fileshare updated(location:-delhi) with cloudendpoint in azure. 2.case-2:-What if I have all permissions on cloud endpoint and only reader permission defined to that fileshare on on-prem(or vice-versa).Will I be able to edit file on on-prem and on cloud endpoint?According to the features of the fileshare,since I have all permissions defined on the cloudendpoint,will that ACL replicated back to the on-prem and giving me full access to the file share on the on-prem? is this possible?
Question if you don't mind....Why go through the process of creating the file share as a local computer object etc etc when you can just use Private Endpoints? I don't understand what one way has over the other?
The video shows how to connect to a Azure File Share using SMB over a Private Endpoint to permit users to connect privately (from a client device) and not over the internet via a Expressroute connection or VPN using a private IP address. So the endpoint would be typically remote connecting via a VPN or on-premise via ExpressRoute/VPN and Azure files in the cloud subscription/virtual network.
Hey man. first of all. thank you for this video. It got me through most of the setup I am trying to achieve. However, I got stuck trying to mount the file share from a Windows machine with an Azure AD hybrid user. I am unable to ping the DNS name(private endpoint) or the IP address. I didn't use your video for setting the P2S VPN with the radius and all. Instead, I used a simple Azure AD authentication setup. I've been trying to set up this for days. Your help will be much appreciated. Thanks.
Hello, Thank you for this amazing videos. Question : what are the prerequisites needed to migrate azure files precisely, what are privilieges needed in the Local AD and what are privileges needed in Azure in order to create a resource group, storage account, fileshare,...? Thank you
Thanks Taoufik. Check out the Azure Files planning Microsoft article on prerequisites learn.microsoft.com/en-us/azure/storage/files/storage-files-planning
Hi Enzo, Thanks for your comment. Take at look at this article for further information. learn.microsoft.com/en-us/answers/questions/884391/file-share-in-azure-for-azure-ad-(only-)-joined-pc
hey , i cant run the command "select-azsubscription" , "The term 'select-azsubscription' is not recognized as the name of a cmdlet, function..." What can i do?
Hi Taoufik, yes used AD connect to syncronise users. Heres a video in the channel to show you how. ua-cam.com/video/898r84nVqaA/v-deo.html All the best.
Hi, you can configure directory and file level permissions over SMB using Windows ACLs that operate at a granular level controlling what user can access at the directory or file level. Azure RBAC share level permissions can be applied at the share root setting permissions for share level access. See this article for more details docs.microsoft.com/en-us/azure/storage/files/storage-files-identity-ad-ds-configure-permissions
Hi Soukaina. As long as you are sure and confirmed that all users endpoints are now pointing, including mapped drives to the new Azure File Share. Togther with files migrated etc.
Thanks for the video! Does Azure files share support NTFS? I am in search for a cloud solution to my on prem file server on Azure but NTFS file permission is not available as I heard. Is that true. I am also trying to understand your video.
Thanks for explaining what Microsoft could not.
Glad to help Jeroen
I have a doubt regarding ACLs for the fileshare. please clarify.
1.case 1:-If I have a fileshare on onprem(location:-Hyd) with access level set to a group. If I change or modify ACL here,will the ACL of the fileshare updated(location:-delhi) with cloudendpoint in azure.
2.case-2:-What if I have all permissions on cloud endpoint and only reader permission defined to that fileshare on on-prem(or vice-versa).Will I be able to edit file on on-prem and on cloud endpoint?According to the features of the fileshare,since I have all permissions defined on the cloudendpoint,will that ACL replicated back to the on-prem and giving me full access to the file share on the on-prem? is this possible?
Question if you don't mind....Why go through the process of creating the file share as a local computer object etc etc when you can just use Private Endpoints? I don't understand what one way has over the other?
Am assuming that both the server and the endpoint/client were hosted in Azure?
The video shows how to connect to a Azure File Share using SMB over a Private Endpoint to permit users to connect privately (from a client device) and not over the internet via a Expressroute connection or VPN using a private IP address. So the endpoint would be typically remote connecting via a VPN or on-premise via ExpressRoute/VPN and Azure files in the cloud subscription/virtual network.
Hey man. first of all. thank you for this video. It got me through most of the setup I am trying to achieve. However, I got stuck trying to mount the file share from a Windows machine with an Azure AD hybrid user. I am unable to ping the DNS name(private endpoint) or the IP address. I didn't use your video for setting the P2S VPN with the radius and all. Instead, I used a simple Azure AD authentication setup.
I've been trying to set up this for days. Your help will be much appreciated.
Thanks.
Hello,
Thank you for this amazing videos.
Question : what are the prerequisites needed to migrate azure files precisely, what are privilieges needed in the Local AD and what are privileges needed in Azure in order to create a resource group, storage account, fileshare,...?
Thank you
Thanks Taoufik. Check out the Azure Files planning Microsoft article on
prerequisites learn.microsoft.com/en-us/azure/storage/files/storage-files-planning
Great video, i have a question for you. Can a synchronized user on an azure ad joinded device access Azure File share ?
Hi Enzo, Thanks for your comment. Take at look at this article for further information.
learn.microsoft.com/en-us/answers/questions/884391/file-share-in-azure-for-azure-ad-(only-)-joined-pc
hey , i cant run the command "select-azsubscription" , "The term 'select-azsubscription' is not recognized as the name of a cmdlet, function..."
What can i do?
Hello,
How did synchronize your users and groups from your local AD to Azure AD? Did you already do that by using AD connect?
Hi Taoufik, yes used AD connect to syncronise users. Heres a video in the channel to show you how. ua-cam.com/video/898r84nVqaA/v-deo.html All the best.
Great video thanks for making these. One question is there any way to control file share access without an on-premise AD server? Thanks
Yes, you can control it using Azure AD DS.
Hi, you can configure directory and file level permissions over SMB using Windows ACLs that operate at a granular level controlling what user can access at the directory or file level.
Azure RBAC share level permissions can be applied at the share root setting permissions for share level access.
See this article for more details docs.microsoft.com/en-us/azure/storage/files/storage-files-identity-ad-ds-configure-permissions
Thank you great videos.
After the last step, can i decomission my on-premises Fileserver that is windows server 2012?
Hi Soukaina. As long as you are sure and confirmed that all users endpoints are now pointing, including mapped drives to the new Azure File Share. Togther with files migrated etc.
@@CloudInspired Hello, Does the ntfs permissions migrated also with files & folders to azure or we have make it manually for every user/group?
Thanks for the video! Does Azure files share support NTFS? I am in search for a cloud solution to my on prem file server on Azure but NTFS file permission is not available as I heard. Is that true. I am also trying to understand your video.
Hello, thanks for your comment. Azure Files supports the full set of NTFS basic and advanced permissions.
Love your content. Do you offer any consulting services for small businesses? If so, what's the best way to connect with you ? 🙂
To make contact please use the form on www.cloudinspired.com/contact/
hello sir, can u send this pdf or ppt step by step??