We are using Azure File sync and have a server on-premises acting as an endpoint. This endpoint was our original File Server and has lots of granular NTFS permissions for users. The whole setup works great as the end users had no idea i started tiering files to Azure.
In the future we want to move away from this on-premises endpoint and have people connect directly to the File Share over SMB3.
My question is when I enable on-premises AD DS Authentication (I'm going to use on-premises AD as it's synced to Azure) to the share, will this have any affect on the existing permissions within the endpoint? I want to enable this and slowly move people over so there will be a time where some are directly connecting over SMB3 and others still using the endpoint. I understand I will need to configure permissions at the Azure end with a domain joined device that has the share connected via the pre shared key using properties of the file(s)\folder(s) but what do i need to be aware of regarding people accessing the files via the endpoint? Will things break for them at all?
I can't seem to find any documentation on what will happen when I enable it.