testingopk.blogg.se - How to use onedrive on pc

About 30 minutes later, my OneDrive Client (Which was previously syncing fine) showed the “Your IT Dept requires your machine be domain-joined” and OneDrive was blocked. I put all 3 GUID’s in the the “Allow box” and hit save. I ran the Get-ADForest command as instructed in your example, from my local domain-joined system at my place of business and received 3 ObjectGUID’s. For that you should use a device access policy, or use Intune. The policy will not restrict sync to mobile devices.The domain join requirement does not apply to Macs, however you can enable or disable Mac sync as a separate restriction in the OneDrive admin portal (or via PowerShell).

Computers that already have files synced to their local hard drive will not have the files removed.

When you restrict OneDrive sync to specific domains you should be aware of the following caveats: For assistance, contact your IT Department. Your IT Department requires that you use a computer that is joined to an approved domain to sync this folder. Please contact support.Īny existing sync relationships for computers that are not domain joined will begin showing a “sync blocked” message in the system tray, and when OneDrive is opened from the system tray will display a more detailed error message. Sorry, OneDrive can’t add your folder at this time. After the new configuration is in place, a user trying to add a OneDrive account to a computer that is not domain joined will receive an error message after they sign in and choose a location to sync to. The sync policy change takes around an hour before it is effective. To retrieve the domain GUID, run the following command from a computer or server that has the Active Directory PowerShell module available.

OneDrive sync restrictions can be configured using the OneDrive admin portal, or the SharePoint Online PowerShell module.īefore you can restrict OneDrive to domain joined computers, you first need to know the GUID of the Active Directory domains that will be allowed to sync. The general idea is that a domain-joined computer that is within the control of corporate IT will be more secure than the average personal computer that staff own. To address those concerns it’s possible to restrict OneDrive so that it only synchronizes files to domain-joined computers. If the personal computers are not well secured, such as having encrypted drives and good antivirus software, or if the personal computers are shared with unauthorized people, then the corporate data could be exposed. For some organizations there is a concern when deploying OneDrive for Business that users will access corporate data from their personal computers.