The seamless integration of OneDrive into the Microsoft 365 suite offers undeniable benefits for collaboration and file storage. However, there are scenarios where organizations might need to restrict access to OneDrive, especially when dealing with sensitive data or specific compliance requirements. If you’re looking to manage OneDrive access within your organization, this guide will walk you through the process of disabling it using Conditional Access Policies.
How to Restrict Access
To restrict access to OneDrive, you must first block SharePoint Online access. This can be achieved using Conditional Access Policies. To set up these policies, you need one of the following licenses:
- Azure Active Directory Premium P1 or P2
- Microsoft 365 Business Premium
- Microsoft 365 E3 or E5
- Enterprise Mobility and Security E3 or E5
To create the policy, simply follow the numbered screenshots provided for easy guidance.
Step1
In admin.microsoft.com, choose “Identity”
Step 2:
You will be directed to the Microsoft Entra Admin Center. On the left side, select “Protection,” then “Conditional Access,” and click on “Create New Policy.”
Step 3:
Give the policy a name, then select “Specific users included.” You can now specify which users to include or exclude from this policy.
Step 4:
In the “Target Resources” section, choose the policy that applies to “Cloud Apps,” and then select “Office 365 SharePoint Online.”
Step 5:
In the “Network” section, set the option to “Yes” to include all networks and locations.
Step 6:
In the “Conditions” section, set “Device Platform” to “Any Device.” For “Cloud Apps,” select “Yes” and choose all clients as shown in the screenshot below.
Step 7:
In the “Grant” section, select “Grant Access”.
Step 8
In the “Session” section, choose “Use app-enforced restrictions” and click on Select.
Step 9:
Change “Enable policy” to ON and click on “Create”.
n conclusion, the seamless integration and collaborative power of OneDrive and SharePoint within Microsoft 365 are undeniable. However, maintaining control over sensitive information and ensuring compliance requires more than just default settings. AGAT Software’s SphereShield offers a robust solution to address these concerns, providing granular control and flexibility to manage file uploads, sharing, and access permissions across OneDrive and SharePoint.
With AGAT, you can prevent unauthorized access, enforce data segregation policies, and maintain strict compliance standards. Whether you need to restrict file uploads, prevent sharing between specific groups, or control site access, AGAT empowers you to tailor your security measures to your unique requirements.
By implementing SphereShield, you can confidently leverage the benefits of OneDrive and SharePoint while safeguarding your sensitive data and ensuring regulatory compliance. Don’t let uncontrolled file access create risks for your organization. Take control with SphereShield and experience a secure, compliant, and collaborative environment.