My Cloud Active Directory Prerequisites and Limitations


Device Time and Time Zone

Ensure the time zone of My Cloud and Domain server match and are within 5 minutes of each other.


AD Users and Group Limits

The My Cloud supports the following user and group limits:

  • Up to 800 total AD user accounts
  • Up to 200 total AD groups
  • User names must be an alphanumeric value from 1 to 16 characters, and the first character must be a letter
  • User names with dots are not supported (e.g. John.Doe)

AD Admin Account Membership

The account used to add the My Cloud to an Active Directory Domain must be a member of each of the following AD groups:

  • Domain Users
  • Domain Admins
  • Schema Admins
  • Enterprise Admins

Server Operating System (OS) and Functional Levels

  • Server 2003 through 2012
  • Domain Functional level 2003 through 2012, and not in mixed mode
  • Forrest Functional level 2003 or 2012, and not in mixed mode

The Domain Name Requirements and Support

  • Fully Qualified Domain Name (FQDN) (e.g. wd.com or custom.local) must be used when configuring My Cloud for Active Directory join.
  • My Cloud does not support non FQDN without the dot [.] (e.g. wd or custom)
  • My Cloud does not support sub-domains (e.g. name.wd.com or name.custom.local)

  • Domain Name Support Status
    WD.COM Supported
    CUSTOM.LOCAL Supported
    WD non FQDN Not Supported (must have name.domain)
    CUSTOM non FQDN Not Supported (must have name.domain)
    NAME.WD.COM Sub-domains Not Supported
    NAME.CUSTOM.LOCAL Sub-domains Not Supported

     ** Joining a My Cloud to an unsupported environment can result in inconsistent product functionality


Domain Name Resolution (DNS Server)

Enter the address of the network's DNS server. (e.g. Domain Controller running the DNS server role or a router).
Forward and reverse name resolution is a requirement for My Cloud Active Directory Domain joining.


Default Permissions on Imported AD Users and AD Groups

All Active Directory users and groups imported into the My Cloud will have the Deny permission by default. To grant access to a share on the My Cloud, the user account and any group(s) in which the user is a member must also be configured accordingly. Additionally, if any of these groups are members of another group(s) (nested groups), must also be configured accordingly.


IMPORTANT Important: For more information, please refer to Answer ID 11882: Private Shares are Inaccessible (Access Denied) after joining a My Cloud to an Active Directory Domain


The following table lists the effective permission by scenario.

User Domain Users group Domain Admins group = Effective permission
Read / Write Read Only Deny = Deny
Read / Write Deny Read / Write = Deny
Deny Read / Write Read Only = Deny
Read / Write Read Only Read Only = Read / Write

Return to Top






In case the answer did not answer your question, you can always visit the WD Community for help from WD users.

Please rate the helpfulness of this answer