Cloud Gateways Switching WiFi Physical Security Integrations
What's New Support
User
Sign Up UniFi Site Manager
Help Center Help Articles Professional Support Professional Integrators Community RMA & Warranty Downloads Tech Specs
User
Sign Up UniFi Site Manager
Help Center Help Articles Professional Phone Support Professional Integrators Community RMA & Warranty Downloads Tech Specs
Cloud Gateways Switching WiFi Physical Security Integrations

Social

Facebook Twitter Youtube Instagram

Company

Careers Contact Us Investors

Training

Courses Calendar Trainers Become a Trainer

Tools

WiFiman UISP Design Center
  1. Ubiquiti Help Center
  2. UniFi
  3. Drive
  4. Features & Configuration

Using Active Directory Credentials for SMB Access in UniFi Drive

UniFi Drive makes it easy to integrate with Active Directory (AD) credentials for SMB access, allowing users to transfer files or set up Time Machine backups simply using their AD credentials. If you're looking to add UniFi Drive to your desktop via SMB, click here

Requirements

  • UniFi OS 4.4.11 or later
  • UniFi Drive application 3.3.10 or later

Integrating Active Directory with UniFi Drive

  1. Navigate to Drive application > Settings > Identity > Directory Integration > Set Up and select Active Directory.
  2. Enter the following information and click Add.
    • AD Server's Hostname or IP Address
    • Port
    • Use SSL Connection
    • Base DN
    • Username
    • Password

Important:

  • Ensure your UNAS can resolve your AD domain through DNS. In most environments, the DHCP-assigned DNS server handles this automatically, so no manual configuration is required. 
  • However, if your DHCP server does not provide this DNS information, go to Drive application > Settings > Control Plane > Console > Network Settings > IP Configuration and select Static, and manually specify the domain controller’s IP address as the DNS server.

Enabling Active Directory Credentials for SMB Access

  1. Navigate to Drive application > Settings > Services > File Service > SMB and enable Use Active Directory Credentials for SMB Access.

Enabling this option immediately disconnects all existing SMB sessions (including Time Machine). Users will need to re-authenticate using one of the following formats:

Use Case

Username Format
File Services (macOS/Windows AD-joined) .\[File Service Username]
Active Directory Account & Time Machine [AD Domain Name]\[AD Username]
  • If you can't sign in with the full domain name (e.g., corp.example.com\username), try using the NetBIOS domain prefix instead (e.g., CORP\username). This often resolves issues caused by incorrect DNS configuration.
  • For Time Machine backups, macOS automatically authenticates using the AD domain. After enabling this option, you must sign in with an AD account.

FAQs

What happens if I disable AD integration later?

All active SMB sessions authenticated via AD will be terminated. Users must re-enter their File Services & Time Machine credentials to reconnect. Such credentials are configured in UNAS > Admins & Users > select a user > Settings > Assignments.  

After enabling "Use Active Directory Credentials for SMB Access," why doesn't the Identity Endpoint auto-mount the SMB share right away?

The system may take 5–10 minutes to finalize the integration. Once synchronization is complete, the SMB share will auto-mount.

After pointing DNS to the AD server, why can't I mount the SMB share using its IP address immediately?

The system may take 5–10 minutes to finalize the integration. Once synchronization is complete, the SMB share will auto-mount.

Can I sign in to the UniFi Drive Portal using my AD credentials?

Yes. After integrating AD, go to UNAS > Settings > Identity > Directory Integration > Settings icon > Settings > Advanced and enable Delegated Authentication. Once enabled, you can sign in to the Drive Portal (https://[Enter_UNAS_IP]/unifi-drive/login) using your AD credentials.

When Delegated Authentication is enabled, sign-ins using File Services & Time Machine credentials are disabled.

Was this article helpful?