![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(86.4, 93%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBS%3C/text%3E%3C/svg%3E)
Azure Files
An Azure service that offers file shares in the cloud.
1,352 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(134.4, 71%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAC%3C/text%3E%3C/svg%3E)
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(57.599999999999994, 31%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVK%3C/text%3E%3C/svg%3E)
Hi @Ben Slade
Welcome to Microsoft Q&A, thanks for posting your query.
When migrating from an on-premises file share to Azure File Shares, it's important to carefully manage user access to ensure a smooth transition without disrupting the synchronization process
Before removing user access to the on-premises file share, ensure the sync group relationship remains intact prior to the final synchronization to Azure File Share. Although removing the 'Everyone' and 'Authenticated Users' AD user groups may impact access, it should not disrupt the sync group relationship.
To proceed safely, verify that all necessary data has been synced to Azure. Subsequently, you can remove user access. It is recommended to make the on-premises share read-only This prevents any modifications, deletions, or additions to the files during the final synchronization process. You can do this by adjusting the NTFS permissions or modifying the share permissions. or adjust the ACLs to prevent changes during the final sync. This ensures no new changes occur after initiating the final synchronization.
Once you have confirmed that the final sync is complete and the data is stable, you can proceed to remove the 'Everyone' and 'Authenticated Users' groups from the on-premises file share. This step can be done safely since the data has already been synchronized. After the transition, monitor access to the Azure File Share to ensure that users can access the files as intended and that permissions are correctly applied.
Additional Considerations:
- Testing: If possible, conduct a test with a small group of users to ensure that the process works as expected before rolling it out to all users.
- Documentation: Keep detailed documentation of the migration process, including any changes made to permissions and the steps taken during the final synchronization.
- Backup: Consider backing up critical data before making significant changes to permissions or access.
Hope the above answer helps! Please let us know do you have any further queries.
Please do not forget to "Accept the answer” and “up-vote” wherever the information provided helps you, this can be beneficial to other community members.