Overview:
I have two Azure storage accounts with Azure Files.
\\storagez.file.core.windows.net\share1 (Identity based access set to Microsoft Entra Kerberos) \\storagex.file.core.windows.net\share2 (Identity based access set to AD DS)
I have successfully setup Microsoft Entra kerberos authentication for my hybrid identity XYZ\Username that is syncing from ADDS to AzureAD.
I followed this instruction: https://learn.microsoft.com/en-us/azure/storage/files/storage-files-identity-auth-hybrid-identities-enable?tabs=azure-portal#prerequisites
Problem:
I want to map a network drive to \\storagex.file.core.windows.net\share2
This portion of the article talks about mapping the AD DS realm
I mapped the realm using ksetup /addhosttorealmmap storagex.file.core.windows.net XYZ
I rebooted and confirmed this was added to the registry on my client machine.
I have tried using both my hybrid account AzureAD credential and my XYZ\username AD DS account.
I receive System error 86 has occurred. The specified network password is not correct.
The AzureAD group that provides permission to storageX and storageZ includes my username identity.
What could I be missing to configure coexistence so that my AzureAD joined computer an authenticate to my StorageX storage account?
