Hybrid AAD join local group policy

mehar 21 Reputation points
2023-03-29T15:44:53.2833333+00:00

Hi,

I need to know if it is possible to add permission on a given folder for a single AAD user only . let's say that I have a folder that I want to make it readable only by admins and user_1. I can't choose any of my users or group from the azure active directory (only I can choose admin users). How can I make the AAD users and groups visible to set permission properly. I have the same issue with local strategy groups.

Is it possible to force it using script? I mean to connect to azure and force local permissions (same for local GPO)

Thanks

User's image

Windows 11
Windows 11
A Microsoft operating system designed for productivity, creativity, and ease of use.
8,418 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,846 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. Akshay-MSFT 16,436 Reputation points Microsoft Employee
    2023-03-30T07:42:24.1166667+00:00

    @mehar

    Thank you for posting your query on Microsoft Q&A. From you statement above I did got the following conclusion for your objective:

    Give shared folder access to Azure AD (Cloud only) users/group.

    There is no direct way to do it. You may try the following:

    • Sync Cloud users groups using groupwriteback feature of AAD connect.
    • This should allow the user in security group to be synced on-prem.
    • Then you may try to give access to specific file share.

    I would recommend to test this for a small group of 2-5 users before deploying in production as this is still in preview.

    Still, if this does not meet the requirement then I would recommend to have a feedback posted here, as this is monitored by our product group team

    Please do let me know if you have any further queries in the comments section.

    Thanks,

    Akshay Kaushik

    Please "Accept the answer" (Yes/No), and share your feedback if the suggestion works as per your business need. This will help us and others in the community as well.

    0 comments No comments