You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/azure-netapp-files/create-active-directory-connections.md
+6-3Lines changed: 6 additions & 3 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -12,7 +12,7 @@ ms.service: azure-netapp-files
12
12
ms.workload: storage
13
13
ms.tgt_pltfrm: na
14
14
ms.topic: how-to
15
-
ms.date: 11/23/2022
15
+
ms.date: 11/28/2022
16
16
ms.author: anfdocs
17
17
---
18
18
# Create and manage Active Directory connections for Azure NetApp Files
@@ -50,7 +50,7 @@ Several features of Azure NetApp Files require that you have an Active Directory
50
50
* Alternatively, an AD domain user account with `msDS-SupportedEncryptionTypes` write permission on the AD connection admin account can also be used to set the Kerberos encryption type property on the AD connection admin account.
51
51
52
52
>[!NOTE]
53
-
>It's _not_ recommended or required to add the Azure NetApp Files AD admin account to the AD domain groups listed above. Nor is it recommended or required to grant `msDS-SupportedEncryptionTypes` write permission to the Azure NetApp Files AD admin account.
53
+
>It's _not_ recommended nor required to add the Azure NetApp Files AD admin account to the AD domain groups listed above. Nor is it recommended or required to grant `msDS-SupportedEncryptionTypes` write permission to the Azure NetApp Files AD admin account.
54
54
55
55
If you set both AES-128 and AES-256 Kerberos encryption on the admin account of the AD connection, the highest level of encryption supported by your AD DS will be used.
56
56
@@ -100,7 +100,7 @@ Several features of Azure NetApp Files require that you have an Active Directory
100
100
* **AD Site Name (required)**
101
101
This is the AD DS site name that will be used by Azure NetApp Files for domain controller discovery.
102
102
103
-
The default site name for both ADDS and AADDS is `Default-First-Site-Name`. Follow the [naming conventions for site names](/troubleshoot/windows-server/identity/naming-conventions-for-computer-domain-site-ou.md#site-names) if you want to rename the site name.
103
+
The default site name for both ADDS and AADDS is `Default-First-Site-Name`. Follow the [naming conventions for site names](/troubleshoot/windows-server/identity/naming-conventions-for-computer-domain-site-ou#site-names) if you want to rename the site name.
104
104
105
105
>[!NOTE]
106
106
> See [Understand guidelines for Active Directory Domain Services site design and planning for Azure NetApp Files](understand-guidelines-active-directory-domain-service-site.md). Ensure that your AD DS site design and configuration meets the requirements for Azure NetApp Files. Otherwise, Azure NetApp Files service operations, SMB authentication, Kerberos, or LDAP operations might fail.
@@ -245,6 +245,9 @@ Several features of Azure NetApp Files require that you have an Active Directory
245
245
246
246
247
247
248
+
>[!IMPORTANT]
249
+
>Although Active Directory supports 256-character passwords, Active Directory passwords with Azure NetApp Files **cannot** exceed 64 characters.
250
+
248
251
3. Select **Join**.
249
252
250
253
The Active Directory connection you created appears.
Copy file name to clipboardExpand all lines: articles/azure-netapp-files/modify-active-directory-connections.md
+2-2Lines changed: 2 additions & 2 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -5,7 +5,7 @@ author: b-hchen
5
5
ms.service: azure-netapp-files
6
6
ms.workload: storage
7
7
ms.topic: how-to
8
-
ms.date: 11/02/2022
8
+
ms.date: 11/28/2022
9
9
ms.author: anfdocs
10
10
---
11
11
@@ -38,7 +38,7 @@ Once you have [created an Active Directory connection](create-active-directory-c
38
38
| Backup policy users | You can include additional accounts that require elevated privileges to the computer account created for use with Azure NetApp Files. See [Create and manage Active Directory connections](create-active-directory-connections.md#create-an-active-directory-connection) for more information. | Yes | None*| The specified accounts will be allowed to change the NTFS permissions at the file or folder level. |
39
39
| Administrators | Specify users or groups that will be given administrator privileges on the volume | Yes | None | User account will receive administrator privileges |
40
40
| Username | Username of the Active Directory domain administrator | Yes | None*| Credential change to contact DC |
41
-
| Password | Password of the Active Directory domain administrator | Yes | None*| Credential change to contact DC |
41
+
| Password | Password of the Active Directory domain administrator | Yes | None*<br></br> Password cannot exceed 64 characters. | Credential change to contact DC |
42
42
| Kerberos Realm: AD Server Name | The name of the Active Directory machine. This option is only used when creating a Kerberos volume. | Yes | None*||
43
43
| Kerberos Realm: KDC IP | Specifies the IP address of the Kerberos Distribution Center (KDC) server. KDC in Azure NetApp Files is an Active Directory server | Yes | None | A new KDC IP address will be used |
44
44
| Region | The region where the Active Directory credentials are associated | No | None | N/A |
![prmerger-automator[bot]](https://avatars.githubusercontent.com/u/22479449?v=4&size=40){kind=avatar}
0 commit comments