I have created a file share by using azure file share and the drive is mounted in my windows 10 client . but when i am trying to add someone else i am getting an error " Make sure the pc is azure domain joined "
I need help is solving this . please share any article or steps to grant the permissions to other users in Ad to access these file shares in Azure
Regards
Abhay
To do this your PC must be a member of the Azure AD domain. See : https://learn.microsoft.com/en-us/azure/storage/files/storage-files-identity-auth-active-directory-domain-service-enable
Related
I have been trying to create an Azure Function using the documentation. For example, here:
https://learn.microsoft.com/en-us/learn/modules/develop-azure-functions/5-create-function-visual-studio-code
Every time, and with every Azure account, I can't get past the step where you sign in to your Azure account from the Azure Functions VSCode extension. This is the error I am getting:
"Selected user account does not exist in tenant 'Microsoft Learn Sandbox' and cannot access the application 'aebc6443-996d-45c2-90f0-388ff96faa56' in that tenant. The account needs to be added as an external user in the tenant first. Please use a different account."
The Microsoft Learn Sandbox error message is a red herring to me, as I am not trying to do anything with it, only with Azure Functions. The same error appears even with a completely different Azure account.
I have tried looking at several possible solutions, including switching directories (but I only have one directory, so this didn't work), changing settings in Azure AD Connect (but I don't have Azure AD Connect configured, so this didn't work), and I deleted several local .config files and directories on my machine (CentOS 7, btw). If the solution is related to my .config files, I couldn't tell which files I should actually be deleting though.
In my situation, the problem is it was trying to use my "learning" account but I wanted to use my "work" account.
Following the answer here: https://learn.microsoft.com/en-us/answers/questions/696758/how-do-i-sign-in-to-azure-from-vs-code?page=1&orderby=Helpful&comment=answer-697695#newest-answer-comment
Go to the Azure portal and sign out (https://portal.azure.com/) Now
open Visual Studio and Open the Command Palette (Ctrl + Shift + P)
search for Azure: Sign Out and click on it. It will signout you from the Visual Studio extension
Then (this is the important part) it allowed me the option to Clear my Tenant ID.
Then you can sign in again with the new account
Hope this helps someone else!
I am desperately looking for a solution. Posting this question after wasting almost 4 days. We have a file storage application and we are using Azure File Share to manage the files. The file shared can be connect as a Drive in PC or VM using SMB 3.0 protocol. We are good in this stage. The problem is starting just after it.
Support we have a file shared named Our Projects. Inside of this file share lets have 3 project folders.
Project 1
Project 2
Project 3
We are using AD for user authentication. So, when a user attach a file share into own PC, expecting a solutions like that
User One have the access on Project 1 folder only
User Two have the access on Project 2 and Project 3 folders
After lot's of googling getting suggestions to do it using Azure AD Domain Service and VM. I have watched some tutorials on Azure File Share on Pluralist as well. But, I am not getting confident to active our expected solutions.
Looking for expert suggestions or what could be the best approach to achieve it?
Or is it really possible in azure, what I am expecting?
I really really looking for a good solutions from azure experts desperately.
I am new user in Azure Active Directory and Active Directory Domain Service. Please receive lot's of thanks in advance.
Please read here, https://learn.microsoft.com/en-ca/azure/storage/files/storage-files-active-directory-overview#ad-ds
You can either give users access through either Azure ad ds, or on-prem ad ds by making sure you have a hybrid environment with Azure ad connect so that your users are properly synced across.
After that, you create the Azure file share, then you can mount it and set directory level permissions in that share like you normally would with an on prem server.
https://learn.microsoft.com/en-ca/azure/storage/files/storage-files-active-directory-overview#configure-directory-or-file-level-permissions-for-azure-files
After i Creat On-Premise gateway localy in my computer using the same account with azure, But still i got error message that says No Installed Instance were found for ther curent users. I Already make the region same to SEA but still no instance were found . I already tried to uninstall the On-Premise gateway but the result still the same. For the reference i'm using this tutorial https://blogs.biztalk360.com/access-on-premise-sql-server-data-from-azure-logic-apps-via-on-premises-data-gateway/ .How to fix this, and what cause that happen ? and fyi im using Invitation from Default Directory to acces Azure is that what caused this ?
The user must be created inside the same Azure directory where the gateway is created.
I was trying to use an AD account invited from another directory and it doesn't work. How can you tell if a user has been invited? The "User principal name" will contain #EXT# just before the '#' sign.
In my case the solution was to create a new AD user specifically for the gateway.
Does anyone know where I can find my Azure Active Directory Graph Client ID in Azure?
I have searched everywhere within Azure itself and still no luck. Or if anyone know the powershell command to get the information?
Hopefully someone could point me in the right direction.
Many thanks.
You also could get it on Azure Portal.
You could register a new application using the Azure portal, more information about this please refer to this link.
Client Id is your app's application id.
You also need grant Graph permission to your app, you also could check the link I provided.
No worries I managed to find it. Had to create B2C tenant through the use of powershell using this link:
https://github.com/blumu/azure-content/blob/master/articles/active-directory-b2c/active-directory-b2c-devquickstarts-graph-dotnet.md#register-a-service-application-in-your-tenant
From there it will generate your Client ID. Ensure to make a copy and paste it somewhere for future use.
I have two additional AD I have created in addition to the one which is associated to the subscription. I want to delete those but my attempt fails with the message "Directory has one or more applications that were added by a user or administrator"
I can see below two common application in both directories, where I don't see a delete button.
Office 365 management apis
Visual Studio Team Services
How can I delete this AD?
Thanks,
Shiju
I ran into the same issue. The only solution I was able to find was to step into PowerShell and get it done. You can find the steps in these two posts:
https://social.msdn.microsoft.com/Forums/en-US/afbfb7b3-92c9-4af6-9128-ba96795de5a6/not-able-to-delete-b2c-tenant
https://social.msdn.microsoft.com/Forums/en-US/e041555c-aa36-4369-bbb9-1f23ae317304/how-to-remove-active-directory-from-windows-azure
The main gist is that you need to have a global admin account which is a direct member of the directory. You can't use your Microsoft/subscription account even though it may have been granted global admin permissions. You then connect using these credentials in PowerShell, find the Service Principals (aka Applications) which exist, and remove them. You can then drop the Admin account for the directory and delete the directory itself.
I also wrote a blog page on how to delete an active directory tenant. I have updated the process to use the new portal and the newer AzureAD PowerShell cmdlets.
https://blog.nicholasrogoff.com/2017/01/20/how-to-delete-an-azure-active-directory-add-tenant/