How do I access a file share on a Windows 10 PC using a domain user when I'm not in the domain?

Jeremiah Mercier 121 Reputation points
2020-03-18T02:41:02.75+00:00

I have two Windows 10 laptops. One is a work laptop and one is my personal laptop. I work from home and both laptops are connected to the same network at my house. From time to time I need to access files on my work laptop from my personal laptop, so I've tried to connect to the administrative file share on my work laptop using \COMPUTERNAME\c$ but no matter what credentials I use, I get "The user name or password is incorrect." This has nothing to do with the administrative share; the same thing happens when I simply try to connect to the computer using \COMPUTERNAME.

I log into my personal laptop with my personal Microsoft account. I log into my work laptop with my company email address, and I can also log in using DOMAIN\USERNAME. Windows Settings on my work laptop shows it is connected to my company's Azure AD, but it is not joined to the domain. (It is a member of WORKGROUP.) Local Users and Groups does not show my user account listed as a local account, but it is listed as a member of the local Administrators group as DOMAIN\USERNAME. I am able to VPN to my company network as needed, but most of the time I do not use the VPN. My work laptop has never been physically connected to my company network. (I work from home in a different state.)

How do I access file shares on my work laptop from my personal laptop? When I try to connect using \COMPUTERNAME I am prompted for credentials. No matter what I use, I get the error "The user name or password is incorrect." I've tried all of the following:

username@keyman .com

DOMAIN\USERNAME

domain.com\username

MicrosoftAccount\username@keyman .com

PCNAME\USERNAME

.\USERNAME

I've verified that I can log on locally to my work laptop with username@keyman .com or DOMAIN\USERNAME, so I know I'm using the correct password. I've also verified that my account is not duplicated in Azure AD and I am not locked out. I am not trying to connect to anything on premises. This is a connection between two laptops on a private network using Azure AD.

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,453 questions
0 comments
Accepted answer
  1. Jeremiah Mercier 121 Reputation points
    2020-03-24T17:30:24.193+00:00

    After posting variations of this question on two different sites, no one has provided any solution to the question as stated. Based on feedback from @AmanpreetSingh-MSFT in the comments, it appears that it is not possible to connect to a target computer with credentials for a domain account (even if it is not joined to the domain) unless the source computer is also connected to Azure AD. So the first workaround is to join the source computer to Azure AD (Settings -> Accounts -> Access work or school -> Connect).

    Since this is a personal laptop, I don't wish to connect it to my work Azure AD. So the other workaround would be to create a local (non-domain) account on the target (work) computer, grant access to the file share, and connect using this account. I don't like that it requires creating an additional account that I will never use to log in locally, but it seems to be the better of the two undesirable choices.

    Thanks to @AmanpreetSingh-MSFT for his assistance.

    1 person found this answer helpful.
    0 comments

3 additional answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. AmanpreetSingh-MSFT 56,306 Reputation points
    2020-03-19T09:28:59.297+00:00

    @Jeremiah Mercier In this scenario, both of your machines should be joined to same Azure AD tenant. Once your home laptop is joined to same Azure AD Tenant, you need to login using the same Azure AD user account on your personal laptop to access the shares of your work laptop. That way you would be using Azure AD only and you won't need to connect to VPN for connectivity to your on-prem environment.

    -----------------------------------------------------------------------------------------------------------

    Please "Accept as answer" wherever the information provided helps you to help others in the community.

    1 person found this answer helpful.
  2. Marco Brizi 1 Reputation point Microsoft Employee
    2020-03-24T19:12:14.97+00:00

    Even though I'm not a network expert to give you a response, I can propose a workaround.
    Why don't you use a OneDrive synchronized folder to share the contents? Configuring on both the laptops the same OneDrive account, you have the possibility to access and edit all the contents you want maintaining them synchronized between the two (or even more) devices.
    Ciao!

  3. Jim McLachlan 1 Reputation point
    2020-10-29T03:31:00.04+00:00

    I ran into this exact same situation. The solution for me was quite simple, once I went through all of the same frustration you are experiencing. On your work computer, create a user, just a local user, with no connection to any outside authentication resource. It is this user you will sign in as when connecting to the work PC's share from your personal PC. You can delete the local user on the work PC once finished sharing. If you are unable to create a local user on your work PC, for whatever reason, this solution will not work for you.

    0 comments