Setup role-based access control on file and folder

Divyam 1 Reputation point

we have created the File share under storage account and within the account we are going to create many containers and in which container we are going to have multiple folders and file.


we want to grant permissions for different users for specific containter and also for specific folder within container, but I noticed that we can grant the access permissions per Container only.
so how I can grant the access per each folder (within Container) ?

Azure Files
Azure Files
An Azure service that offers file shares in the cloud.
1,049 questions
Azure Storage Accounts
Azure Storage Accounts
Globally unique resources that provide access to data management services and serve as the parent namespace for the services.
2,315 questions
Azure Disk Storage
Azure Disk Storage
A high-performance, durable block storage designed to be used with Azure Virtual Machines and Azure VMware Solution.
511 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. SaiKishor-MSFT 16,936 Reputation points

    @Divyam Thanks for reaching out to Microsoft Q&A. I understand that you want to setup role-based access control on file and folder.

    Are you referring to Azure File shares here or Containers or both?

    If you are referring to Azure File shares, please see: Configure directory and file level permissions over SMB: After you assign share-level permissions, you must first connect to the Azure file share using the storage account key and then configure Windows access control lists (ACLs), also known as NTFS permissions, at the root, directory, or file level. While share-level permissions act as a high-level gatekeeper that determines whether a user can access the share, Windows ACLs operate at a more granular level to control what operations the user can do at the directory or file level.

    If you are referring to containers, you need to use ADLS Gen2 for more granular access. Access control lists (ACLs): ACLs give you the ability to apply "finer grain" level of access to directories and files. An ACL is a permission construct that contains a series of ACL entries. Each ACL entry associates security principal with an access level. To learn more, see Access control lists (ACLs) in Azure Data Lake Storage Gen2.

    Please let us know if you have any more questions and we will be glad to assist you further. Thank you!


    Please accept an answer if correct. Original posters help the community find answers faster by identifying the correct answer. Here is how.

    Want a reminder to come back and check responses? Here is how to subscribe to a notification.

    1 person found this answer helpful.
    0 comments No comments