ACL's for AzureFiles
I've started experimenting with Azure Files. One of the features I'm lacking is the fact that you cannot give access to Folders/Files on AzureFiles based on Active Directory credentials. If you setup a typical fileshare one would like to be able to grant/revoke access to folders and files based on information of users in AD.
We announced earlier today the public preview of Active Directory authentication and authorization support for Azure Files. With this feature, just like a traditional on-premises file server, you can domain join your storage account to your regular Active Directory domain and set file/folder ACLs on your file shares just like you expect! This preview release makes it seamless for Azure Files to work with existing Active Directory with no change in the client environment.
To learn more, please see our blog post here: https://azure.microsoft.com/blog/preview-of-active-directory-for-authentication-on-azure-file
Our public preview for Azure Files and AD DS is distinct from our existing support for Azure AD DS, which we will continue to support as generally available feature.
Please don’t hesitate to reach out to us if you have further questions about how to setup and deploy this feature or about other features. You can reach us at AzureFiles@microsoft.com.
Senior Program Manager, Azure Files
Gary Bond commented
Any update on when this might become available?
Last update from MS is June 25 2015 it's on the backlog.
[Deleted User] commented
Any update on this? it’s a critical feature that everyone is waiting for..
Damien J. commented
We look forward to these features .
Jonathan PREVOT commented
Now Azure Active Directory is perfectly launch can we hope this feature will be really planned? It's a very important and interesting for most of our customers.
Ravi Patil commented
We have so many customers looking for storage with user access policies. Following features required. File versioning, file modifying/deletion logs (Ex: which user modified files).
Scott M commented
Yep.. Move it up! AD integration should have been on the top of the list. If I cannot assign permissions to files and directories in a file storage resource using AD credentials. The resource is useless.
763 votes and this has been open for approx 3.5 years.
Can we have a "real" update on this ? i.e. 3.5 year delay seems like its not going to happen and the current status of "planned" is not correct.
This would be awesome! Azure files shouldn't have left preview without it.
tim D commented
I would highly recommend that Microsoft raise the priority of this functionality. This is very much preventing us from furthering our research into using Azure active directory. Without proper and adult access controls on file shares, this is not even a remotely viable option. Meaning migrating from premise active directory to AAD is a non-starter until we begin to see proper security controls, patch management and access controls on files.
This is something our organization needs. I hope is a feature that gets added soon!
James D commented
Waiting for this
James D commented
Waiting for this!
Azure Storage becomes useless without AD integration. AWS can do it, why can't you Microsoft, why can't you?!?!?
Rikard Strand commented
Hope this can get attention.
I want to use file storage as on-pre file server.
Please give file storage much more flexible access control.
Branislav Susa commented
Thumbs up for this feature. We have now run into a snag as we cannot authenticate via AAD creds. Please push this to the top of the queue.
Dennis Eichler commented
I don't think it would be in Microsoft best interest to give people access to azure files with added ACLs, because then Microsoft wouldn't be able to 'rent' you VM with windows server software ,so that you can reproduce your data center in the cloud.
I see this as highly unlikely. Maybe google or amazon will do it, because those companies simply can reduce the cost for companies.
Fredrik Liljemark commented
Please get it done =)
Andrew Jackman commented
I would like to see this ASAP. without it, Azure is useless for us.