How to securely web enable access to CIFS / SMB File Shares

One of the predominant use cases that companies have is to enable file sync and mobile access to file share data that lives behind the corporate firewall without the need for a VPN and without reconfiguring permissions whilst using Active Directory or LDAP for authentication.

In many cases this is done for compliance or security reasons or perhaps because there has been a  large investment in internal storage that has yet to be realised, and of course during the recent Covid-19 pandemic there was a pressing need to enabled such access for remote workers.

Cloud File Server Architecture

Accessing files over CIFS/SMB network over VPN using a mobile network is possible but access can be patchy, clients apps limited and it is often extremely slow.

The File Fabric enables this using its built in CIFS / SMB connector. This blog post will step through how to web enable SMB file shares.

In our example we have the following Windows File Share that we wish to make available:

winshare

We have installed a branded Enterprise File Fabric instance that resides behind the users firewall onsite with access to the same subnet as the windows share.

First we will login to the Appliance.

SME Login

Next, as we have not yet added a storage provider we will are asked to select a storage system to use, we will choose CIFS:

CIFS Cloud File Server

This will invoke the CIFS wizard:

Windows file shares cloud

Once we fill in the relevant authentication details for the CIFS share the File Fabric will connect and sync the metadata (no files are copied or replicated).

CIFS Cloud File Sharing

Once this is complete the SMB file shares can be access via the File Fabric Web File Manager.

CIFS Windows files

The File Fabric can be given a public URL for external access to internal SMB file shares in which users authenticate using existing Active Directory or LDAP credentials and in which password lockout policies and GEO / IP restrictions can be applied for enhanced security.

Bring Your Own Device (BYOD) is also supported with full restrictive control over all users and client access:

CIFS BYOD

Also the Windows Shares are available from the variety of mobile and desktop Apps that the File Fabric supports. Below is an Android App example.

Android CIFS

Additionally such shares can also be accessed through the File Fabric’s desktop cloud drive which appears to the end user as a network share or as a ‘home drive’ similar to what they are used to using from the office.

It is also important to note that the File Fabric’s access is totally proprietary and bi-modal ie. access can still be direct with no usage of the File Fabric. Any new files will just be picked up next time the user logs in. If you are talking with another vendor we recommend you ask whether the data is encrypted in any way and access can only be via their product. If it is, you are completely locked in and your data is completely locked into their product.

In summary we have stepped through how to add and configure a CIFS / SMB File Fabric connector to enable SMB file shares to be easily exposed and accesses using the Enterprise File Fabric.

Next Steps:

Take a trial of our enterprise product and test out remote access to your own company shares.

Watch a video demo of remote access to SMB shares.

Facebooktwitterredditpinterestlinkedinmailby feather
The following two tabs change content below.
The Leading Enterprise File Fabric