Share via

Azure Files AD Authentication - Can't change permissions

Allister Wade 6 Reputation points
2021-04-22T01:21:56.667+00:00

I have managed to setup Azure Files (what a complicated nightmare) with local AD authenication. I can mount the Azure Files share successfully. As an account that has "Owner" permission on the share I can create files/folders all good, but I noted the permissions are not in line with what I would expect of a file server including Creator Owner set which I would like to cleanup.

On attempting to change/remove or set any permissions though I get "Failed to enumerate objects in the container. Access is denied".

I see there are these dicky "SMB" roles back in the Azure portal side and they seem to control this.. Isn't this meant to be a replacement for Windows File Servers? How can we have stupid rubbish like Creator Owner turned on and it replace anything? Or what am I missing here?

Azure Files
Azure Files
An Azure service that offers file shares in the cloud.
1,425 questions
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. deherman-MSFT 38,021 Reputation points Microsoft Employee Moderator
    2021-04-22T20:42:16.247+00:00

    @Allister Wade
    Sorry that you are having a frustrating experience with Azure Files. I will pass on this feedback to the Azure files team. It sounds like you might not have the proper RBAC role assigned. Can you doublecheck that you have assigned the Storage File Data SMB Share Elevated Contributor role? For more information you can refer to this page.

    Hope this helps. If this doesn't resolve your issue please let me know and we can work with you furhter on identifying the issue.

    -------------------------------

    Please don’t forget to "Accept the answer" and “up-vote” wherever the information provided helps you, this can be beneficial to other community members.

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.