@Handian Sudianto Welcome to Microsoft Q&A Forum, Thank you for posting your query here!
There are multiple ways in which you can achieve the migration
If you want to continue using the on-prem servers as cache and move the data to Azure, you can consider using Azure File Sync Deploy Azure File Sync | Microsoft Learn
If you are looking at de-commissioning the on-prem servers and migrate the data, there are couple of ways in which you can transfer the data to Azure Files - using Azure Storage Mover, ROBO copy or AzCopy tool. All of these support full fidelity copies and allow copying the folder structure.
Migrate to SMB Azure file shares using Azure Storage Mover | Microsoft Learn
Migrate to Azure file shares using RoboCopy | Microsoft Learn
Transfer data to or from Azure Files by using AzCopy v10 | Microsoft Learn
Copying data using the migration tools is a multi-step process and involves downtime for cut over. When it comes to authentication, there are multiple authentication options supported by Azure Files, but given that you want to Azure AD joined clients to access the file share without proving credentials and non-Azure AD joined clients to access the file share with explicit credentials, you can use Microsoft Entra Domain Services identity-based authentication
Use Microsoft Entra Domain Services to authorize user access to Azure Files over SMB | Microsoft Learn
Please let us know if you have any further queries. I’m happy to assist you further.
Please do not forget to "Accept the answer” and “up-vote” wherever the information provided helps you, this can be beneficial to other community members.