In view of the problems of traditional file sharing schemes， such as easy leakage of files， difficult control of file destination， and complex access control， as well as the application requirements of cloud file hierarchical classification management and sharing， a hierarchical file access control scheme with identity-based multi-conditional proxy re-encryption was proposed. Firstly， the permission level of file was taken as the condition of ciphertext generation， and the trusted hierarchical management unit was introduced to determine and manage the user levels. Secondly， the re-encryption key of user’s hierarchical access permission was generated， which solved the problem that the identity-based conditional proxy re-encryption scheme only restricts the re-encryption behavior of proxy servers， and lacks the limitation of the user’s permission. Meanwhile， the burden of client was reduced， which means only encryption and decryption operations were needed for users. The results of comparison and analysis of different schemes show that， compared with the existing access control schemes， the proposed scheme has obvious advantages， it can complete the update of the user’s access permission without the direct participation of users， and has the characteristic of uploader anonymity.