When working with Azure Files, the following items must be in place for NTFS permissions and NTFS replication to work.
- Azure Active Directory Domain Services authentication MUST be enabled on Azure Files.
- Azure Active Directory Domain Services MUST be enabled on the Azure tenant.
Share-level permissions are the high-level gatekeeper that determines whether a user can access the share. In comparison, NTFS permissions act more granularly to determine what operations the user can do at the directory or file level. Without the correct share-level permissions required before you modify the NTFS permissions.
- REQUIRED
- Full administrative control of a file share, including the ability to take ownership of a file, requires using the storage account key. Full administrative control isn't supported with identity-based authentication.
To replicate Owner Permissions, you MUST follow the steps provided in the section,
How to find my Mount command
- You can find data storage and file shares on your Azure files management page.
- Select your File share on the right side, and you will see three dots. Click Connect
- Pick Windows and Storage Account Key
- Click Show Script
- Copy the section between
- # Save the password so the drive will persist on reboot
and - # Mount the drive
- # Save the password so the drive will persist on reboot
- Use these lines to fill in the next steps.
Mounting Azure Files with Storage Account Key - Script job
- Create a New Script Job
- Under the Script section, select Run AS Powershell
- Replace line 3 with your script from the Azure storage account
- Copy the section between
# Save the password so the drive will persist on reboot
and
# Mount the drive
- Set your Job Schedule for when and how often the job should run.
- When at the Summery Tab, Save and run your job manually for the first time.