This topic describes how to add Active Directory (AD) domain users and AD groups to an SMB share of a file gateway.
Prerequisites
A Server Message Block (SMB) share is created for the gateway. For more information, see Create a share.
The gateway is added to an AD domain. For more information, see How do I join a file gateway to an Active Directory domain?
The gateway version must be V1.9.3 or later. If the gateway is earlier than V1.9.3, update the gateway. For more information, see Update a gateway.
Add AD domain users
After the gateway is added to an AD domain, you can allow existing users in the domain to access the SMB share for user-authenticated access to the SMB share.
Procedure
-
Log on to the CSG console. On the Gateways page, find and click the target file gateway.
-
On the Shares tab, find the target share, and in the Actions column, click Settings.
-
In the SMB Share Settings dialog box, configure the Read/Write Users and Read-only Users fields.
NoteWhen you add AD domain users, use the <Domain username>@<domain> format.
Parameter
Example
Description
Read/Write Users
user1@xxx.com
The users who have read and write access to the SMB share.
Read-only Users
user2@xxx.com
The users who have read-only access to the SMB share.
NoteIf you grant both the read-only and read/write permissions to a user, only the read-only permission takes effect for the user.
-
After completing the configuration, click OK. You can then view the list of authorized users in the share details on the console.
Add Active Directory groups
After the gateway is added to an AD domain, you can allow existing groups in the domain to access the SMB share for group-authenticated access to the SMB share.
Procedure
-
Log on to the CSG console. On the Gateways page, find and click the target file gateway.
-
On the Shares tab, find the target share, and in the Actions column, click Settings.
-
In the SMB Share Settings dialog box, configure the Read/Write Users and Read-only Users fields.
NoteWhen you add AD groups, use the <Domain>\<Group> format.
Parameter
Example
Description
Read/Write Users
xxx\group1
The users who have read and write access to the SMB share.
Read-only Users
xxx\group2
The users who have read-only access to the SMB share.
NoteIf you grant both the read-only and read/write permissions to a group of users, only the read-only permission takes effect for the group.
-
After completing the configuration, click OK. You can then view the list of authorized groups in the share details on the console.
Access the share
You access the SMB share from a Windows client. For more information, see Access an SMB share.