All Products
Search
Document Center

Cloud Storage Gateway:Add Active Directory domain users and groups to an SMB share

Last Updated:Jun 20, 2026

This topic describes how to add Active Directory (AD) domain users and AD groups to an SMB share of a file gateway.

Prerequisites

  1. A Server Message Block (SMB) share is created for the gateway. For more information, see Create a share.

  2. The gateway is added to an AD domain. For more information, see How do I join a file gateway to an Active Directory domain?

  3. The gateway version must be V1.9.3 or later. If the gateway is earlier than V1.9.3, update the gateway. For more information, see Update a gateway.

Add AD domain users

After the gateway is added to an AD domain, you can allow existing users in the domain to access the SMB share for user-authenticated access to the SMB share.

Procedure

  1. Log on to the CSG console. On the Gateways page, find and click the target file gateway.

  2. On the Shares tab, find the target share, and in the Actions column, click Settings.

  3. In the SMB Share Settings dialog box, configure the Read/Write Users and Read-only Users fields.

    Note

    When you add AD domain users, use the <Domain username>@<domain> format.

    Parameter

    Example

    Description

    Read/Write Users

    user1@xxx.com

    The users who have read and write access to the SMB share.

    Read-only Users

    user2@xxx.com

    The users who have read-only access to the SMB share.

    Note

    If you grant both the read-only and read/write permissions to a user, only the read-only permission takes effect for the user.

  4. After completing the configuration, click OK. You can then view the list of authorized users in the share details on the console.

Add Active Directory groups

After the gateway is added to an AD domain, you can allow existing groups in the domain to access the SMB share for group-authenticated access to the SMB share.

Procedure

  1. Log on to the CSG console. On the Gateways page, find and click the target file gateway.

  2. On the Shares tab, find the target share, and in the Actions column, click Settings.

  3. In the SMB Share Settings dialog box, configure the Read/Write Users and Read-only Users fields.

    Note

    When you add AD groups, use the <Domain>\<Group> format.

    Parameter

    Example

    Description

    Read/Write Users

    xxx\group1

    The users who have read and write access to the SMB share.

    Read-only Users

    xxx\group2

    The users who have read-only access to the SMB share.

    Note

    If you grant both the read-only and read/write permissions to a group of users, only the read-only permission takes effect for the group.

  4. After completing the configuration, click OK. You can then view the list of authorized groups in the share details on the console.

Access the share

You access the SMB share from a Windows client. For more information, see Access an SMB share.