Skip to content

Commit c95cf67

Browse files
yuemluyuemlu
authored
Update storage-files-identity-auth-active-directory-domain-service-enable.md
1 parent 985fddd commit c95cf67

File tree

1 file changed

+6
-6
lines changed

1 file changed

+6
-6
lines changed

articles/storage/files/storage-files-identity-auth-active-directory-domain-service-enable.md

Lines changed: 6 additions & 6 deletions
Original file line numberDiff line numberDiff line change
@@ -57,16 +57,16 @@ Before you enable Azure AD DS Authentication over SMB for Azure file shares, ver
5757

5858
Next, do the following things to grant access to Azure Files resources with Azure AD credentials:
5959

60-
- Enable Azure AD DS authentication over SMB for your storage account to register the storage account with the associated Azure AD DS deployment.
61-
- Assign access permissions for a share to an Azure AD identity (a user, group, or service principal).
62-
- Configure NTFS permissions over SMB for directories and files.
63-
- Mount an Azure file share from a domain-joined VM.
60+
1. Enable Azure AD DS authentication over SMB for your storage account to register the storage account with the associated Azure AD DS deployment.
61+
2. Assign access permissions for a share to an Azure AD identity (a user, group, or service principal).
62+
3. Configure NTFS permissions over SMB for directories and files.
63+
4. Mount an Azure file share from a domain-joined VM.
6464

6565
The following diagram illustrates the end-to-end workflow for enabling Azure AD DS authentication over SMB for Azure Files.
6666

6767
![Diagram showing Azure AD over SMB for Azure Files workflow](media/storage-files-active-directory-enable/azure-active-directory-over-smb-workflow.png)
6868

69-
## Enable Azure AD DS authentication for your account
69+
## 1. Enable Azure AD DS authentication for your account
7070

7171
To enable Azure AD DS authentication over SMB for Azure Files, you can set a property on storage accounts by using the Azure portal, Azure PowerShell, or Azure CLI. Setting this property implicitly "domain joins" the storage account with the associated Azure AD DS deployment. Azure AD DS authentication over SMB is then enabled for all new and existing file shares in the storage account.
7272

@@ -131,7 +131,7 @@ az storage account update -n <storage-account-name> -g <resource-group-name> --e
131131

132132
[!INCLUDE [storage-files-aad-permissions-and-mounting](../../../includes/storage-files-aad-permissions-and-mounting.md)]
133133

134-
You have now successfully enabled Azure AD DS authentication over SMB and assigned a custom role that provides access to an Azure file share with an Azure AD identity. To grant additional users access to your file share, follow the instructions in the [Assign access permissions](#assign-access-permissions-to-an-identity) to use an identity and [Configure NTFS permissions over SMB sections](#configure-ntfs-permissions-over-smb).
134+
You have now successfully enabled Azure AD DS authentication over SMB and assigned a custom role that provides access to an Azure file share with an Azure AD identity. To grant additional users access to your file share, follow the instructions in the [Assign access permissions](#2-assign-access-permissions-to-an-identity) to use an identity and [Configure NTFS permissions over SMB sections](#3-configure-ntfs-permissions-over-smb).
135135

136136
## Next steps
137137

0 commit comments

Comments
 (0)