Get Support
Forums
Knowledge Base
Data Recovery
Security Notices
Downloads
Warranty Information
Find and download the latest product firmware, utility or driver.
Partner Program
Red Rewards
Deal Registration
Case Studies & White Papers
Webinars
Helpful Tips & Articles
About Buffalo
Buffalo Compliance Information
Trademarks
Legal
Press Releases
Search by either entering keywords/KB_ID or by selecting a category.
OR
KB ID: 5946
Product: TS5020 Series | TS71210 Series | TS3030 Series | TS Essentials Series 2025
Last Updated: 09/08/2025
Prerequisites • Deployment: Microsoft Entra Domain Services (formerly Azure AD DS) is deployed in an Azure Virtual Network (VNet). • Network Connectivity: Establish a secure connection (e.g., Site-to-Site VPN) between your on-premises network and the Azure VNet hosting Azure AD DS.
Reference Tutorial: Create and configure a Microsoft Entra Domain Services managed domain Tutorial: Create a site-to-site VPN connection in the Azure portal
Ensure Network and Time Synchronization 1. Ensure the NAS uses DNS servers capable of resolving the Azure AD DS domain (either via on-prem DNS with conditional forwarding or by directly using Azure AD DS DNS IPs).
2. Ensure the NAS synchronizes time with the same NTP servers used by Azure AD DS (e.g., time.windows.com). This prevents Kerberos authentication issues.
Join the NAS to Azure AD DS 1. From Settings > Network, click the settings icon to the right of “Workgroup/Domain".
2. Click Edit and select “Active Directory”, then click Next.
3. Enter the DNS server IP of the Azure AD DS and click Search. To view the DNS server IP, navigate to your managed domain > Properties > IP addresses.
4. The domain controller on the Azure AD DS will be detected and required settings will be populated into each field automatically.
Enter Credentials: • Use a user account from the Azure AD DS Admin Group. • The format is either: o yourdomain\username o username@yourdomain.com Note: Since Azure AD DS does not expose the domain controllers as NTP servers for clients to synchronize time, uncheck the “Configure domain controller as an NTP server” option. Continue using Microsoft’s time servers (time.windows.com) for the NAS.
5. Once the NAS successfully joins Azure AD DS, click OK.
6. Azure AD DS users will now be available in the User list.
7. You will be able to restrict Azure AD DS User Access to Shared Folders as needed.
This site uses cookies in order to improve your user experience and to provide content tailored specifically to your interest. By continuing to browse our site, you agree to our use of cookies. You can view our Privacy Notice here.
