Create a file share - Amazon Storage Gateway
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

Amazon FSx File Gateway documentation has been moved to What is Amazon FSx File Gateway?

Volume Gateway documentation has been moved to What is Volume Gateway?

Tape Gateway documentation has been moved to What is Tape Gateway?

Create a file share

In this section, you can find instructions on how to create a file share that can be accessed using the Network File System (NFS) or the Server Message Block (SMB) protocol.

When you create an NFS share, anyone who has access to the NFS server can access the NFS file share by default. You can limit access to clients by IP address.

When you create an SMB file share, you can use one of three modes of authentication:

  • A file share with Microsoft Active Directory (AD) access. Any authenticated Microsoft AD user gets access to this file share type.

  • An SMB file share with limited access. Only certain domain users and groups that you specify are allowed access (through an allow list). Users and groups can also be denied access (through a deny list).

  • An SMB file share with guest access. Any user who can provide the guest password has access to this file share.

    Note

    File shares that are exported through the gateway for NFS file shares support POSIX permissions. For SMB file shares, you can use access control lists (ACLs) to manage permissions on files and folders in your file share. For more information, see Using Windows ACLs to limit SMB file share access.

A File Gateway can host one or more file shares of different types. You can have multiple NFS and SMB file shares on a File Gateway.

Important

To create a file share, a File Gateway requires you to activate Amazon Security Token Service (Amazon STS). If Amazon STS isn't activated in the Amazon Web Services Region where you create your File Gateway, activate it. For information about how to activate Amazon STS, see Activating and deactivating Amazon Security Token Service in an Amazon Region in the Amazon Identity and Access Management User Guide.

Topics