We use a reg key (or you can do via intune) to turn on OneDrive Health. Then it reports into that showing uses who have issues with their one drives or if they have known folder redirection on or off and for what etc. Gives you a nice insight into that area.
Interesting food for thought. Maybe follow up with a more in depth “best practices” on some key settings? Such as managing temp files on local devices or managing 3rd party plugins. Good stuff
License requirements you mentioned that it is also available for Microsoft 365 Business Premium, but with my experience the most policies are not working on Microsoft 365 Apps for Business (included in Premium) and are only working for Microsoft 365 Apps for Enterprise... This is also mentioned in the Microsoft Docs in a note: "You can create a policy configuration for Microsoft 365 Apps for business, but only policy settings related to privacy controls are supported."
Many thanks for your insights Andy. One question, when we are dealing with the settings on a user devices, it can be frustrating to know what mechanism takes priority. When using policy configurations under M365, if a machine is already attached to local AD, will the settings be over ridden with local AD policies? PS. HNY.
If you have an intune license, you can manage both software and device settings. The software settings will automatically show up intune as these are just essentially shortcuts. So no there won’t be any conflicts or issues. It’s important to note here as well that if you do have in tune, you would generally do the set up in intune.
when was this functionality created or deployed to the users as a whole? it seems this duplicate of intune, purview, defender . compliance settings , what is advantage of this over other older methods? thank you for this training
Yeh seems MS tends to duplicate things in different places. Is this a symptom of different dev teams doing their own thing trying to outdo other dev teams and there is no internal control over what dev team is working on what?
The advantage for orgs that don’t have all that other functionality. Also it’s tied to the user rather than a device. So any settings follow the user rather than the device 🙂
Nice video. One question. You said you can enforce this for guests. I assume that to mean the type of guest account you create when in Entra Admin Under Identity, All Users, New User, invite external user? You also said it supports purview, does that mean we need to give this guest user an E5 license?
We use a reg key (or you can do via intune) to turn on OneDrive Health. Then it reports into that showing uses who have issues with their one drives or if they have known folder redirection on or off and for what etc. Gives you a nice insight into that area.
This solves a mystery I have been chasing with a client of mine since March! Thank you.
What was the mystery?
Very useful!! Thank you!!
Excellent information
Thank you. Just an FYI, this is also available in the Intune Portal under Apps and then Policies for Office Apps.
Yes, it is, you are correct. But this license gives you the ability to manage both user and device settings.
Thanks lot sir...
Interesting food for thought. Maybe follow up with a more in depth “best practices” on some key settings? Such as managing temp files on local devices or managing 3rd party plugins. Good stuff
Great idea, thank you. 👍 and a happy New Year.
License requirements you mentioned that it is also available for Microsoft 365 Business Premium, but with my experience the most policies are not working on Microsoft 365 Apps for Business (included in Premium) and are only working for Microsoft 365 Apps for Enterprise... This is also mentioned in the Microsoft Docs in a note: "You can create a policy configuration for Microsoft 365 Apps for business, but only policy settings related to privacy controls are supported."
You are incorrect I’m afraid. Apps for business are a separate cheaper subscription. Enterprise apps are included with business premium.
Fantastic
Many thanks for your insights Andy. One question, when we are dealing with the settings on a user devices, it can be frustrating to know what mechanism takes priority. When using policy configurations under M365, if a machine is already attached to local AD, will the settings be over ridden with local AD policies? PS. HNY.
Yes
If you have group policy’s setup in intune for office , will these policies create a issue or conflict
If you have an intune license, you can manage both software and device settings. The software settings will automatically show up intune as these are just essentially shortcuts. So no there won’t be any conflicts or issues. It’s important to note here as well that if you do have in tune, you would generally do the set up in intune.
when was this functionality created or deployed to the users as a whole? it seems this duplicate of intune, purview, defender . compliance settings , what is advantage of this over other older methods? thank you for this training
Yeh seems MS tends to duplicate things in different places. Is this a symptom of different dev teams doing their own thing trying to outdo other dev teams and there is no internal control over what dev team is working on what?
The advantage for orgs that don’t have all that other functionality. Also it’s tied to the user rather than a device. So any settings follow the user rather than the device 🙂
I agree
It is not duplicate functionality but a design choice to expose those features in M365 plans that don’t otherwise include them.
Nice video. One question. You said you can enforce this for guests. I assume that to mean the type of guest account you create when in Entra Admin Under Identity, All Users, New User, invite external user?
You also said it supports purview, does that mean we need to give this guest user an E5 license?
By guest users, it means anonymous users that you share files with. With ID it’s the auditing functions, so guests do not require an E5 license.
Hi! :)
Lots of new privacy infrictions and data collection. To get you overwatched and controlled.