Azure Files
An Azure service that offers file shares in the cloud.
1,424 questions
Any thoughts on this issue please?
Unable to mount FileShares using AD DS auth
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(89.60000000000001, 35%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJP%3C/text%3E%3C/svg%3E)
Janus Palacio
85
Reputation points
We have VPN set up for the users (they use their own PCs) they can map the file share using Storage account key so the connection is ok and the SMB port is allowed over VPN. TestNetConnection shows okay.
We can mount the File Shares in Azure to a Domain Joined PC using different accounts that has given storage account contributor but not with a computer that is not domain joined over VPN.
Azure Files
{count} votes
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(150.4, 64%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENR%3C/text%3E%3C/svg%3E)
Nehruji R 8,181 Reputation points Microsoft External Staff Moderator2024-08-27T12:44:43.2833333+00:00 Hi, we hope the below answer helped if yes please accept the answer, else please let us know if you have any further queries.
-
Nehruji R 8,181 Reputation points Microsoft External Staff Moderator
2024-09-02T06:29:54.7466667+00:00 Hi, we hope the below answer helped if yes please accept the answer else, please let us know if you have any further queries. I’m happy to assist you further.
Sign in to comment
2 answers
Sort by: Most helpful
-
-
Nehruji R 8,181 Reputation points Microsoft External Staff Moderator
2024-08-26T12:39:25.2933333+00:00 Hello Janus Palacio,
Greetings! Welcome to Microsoft Q&A Platform.
I understand that you are running into issues with non-domain joined PCs over VPN in mounting the file share. You can enable the feature on a new or existing on-premises AD DS environment. Identities used for access must be synced to Azure AD or use a default share-level permission. The Azure AD tenant and the file share that you are accessing must be associated with the same subscription.
There is video which explain how connect azure file share using Azure Active Directory Service
Hope you have provided the Share level access (Access control (IAM)to the storage account and File share (Can you please cross verify). If you experience issues in connecting to Azure Files, refer to the troubleshooting tool we published for Azure Files mounting errors on Windows.
- Make sure that the non-domain joined PC's can resolve the Fully Qualified Domain Name (FQDN) of the azure storage account.
- The user accessing the file share must have an identity and credentials in the AD domain. You can provide explicit credentials such as username@domainFQDN . This helps in contacting the domain controller to request and receive Kerberos tickets.
- Please check if your IP is blocking the port 445, which is required for SMB traffic. If port 445 is blocked.
Hope this answer helps! Please let us know if you have any further queries. I’m happy to assist you further.
Please do not forget to "Accept the answer” and “up-vote” wherever the information provided helps you, this can be beneficial to other community members.